Installations
npm install @outroll/specsDeveloper Guide
Typescript
Yes
Module System
ESM
Node Version
18.16.0
NPM Version
9.5.1
Releases
Contributors
Languages
TypeScript (71.67%)
Vue (26.29%)
SCSS (0.82%)
CSS (0.4%)
Liquid (0.4%)
JavaScript (0.38%)
Dockerfile (0.03%)
HTML (0.02%)
Developer
Download Statistics
Total Downloads
98
Last Day
4
Last Week
8
Last Month
8
Last Year
71
GitHub Statistics
28,949 Stars
12,608 Commits
4,042 Forks
323 Watching
174 Branches
447 Contributors
Bundle Size
512.00 B
Minified
306.00 B
Minified + Gzipped
Maintainers
Package Meta Information
Latest Version
1.0.5
Package Id
@outroll/specs@1.0.5
Unpacked Size
266.50 kB
Size
34.12 kB
File Count
6
NPM Version
9.5.1
Node Version
18.16.0
Publised On
21 Nov 2023
Total Downloads
Cumulative downloads
Total Downloads
98
Last day
0%
4
Compared to previous day
Last week
0%
8
Compared to previous week
Last month
100%
8
Compared to previous month
Last year
163%
71
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
1
Dev Dependencies
4
🐰 Introduction
Welcome to API specification for Directus.
⚙️ Installation
Start the swagger dev environment
Run
npm run dev
✨ Updating
TODO
🔧 Contributing
Please report any and all quirks / issues you come across as an issue.
Pull requests are more than welcome and always appreciated. Seeing this is in active development, please make sure to reach out a member of the core team in an issue or on Discord before you start working on a feature or bug to ensure you don't work on the same thing as somebody else :)
❤️ Supporting Directus
Directus is a GPLv3-licensed open source project with development made possible by support from our core team, contributors, and sponsors. It's not easy building premium open-source software; if you would like to help ensure Directus stays free, please consider becoming a sponsor.
📄 License
Directus is released under the GPLv3 license. Monospace Inc. owns all Directus trademarks and logos on behalf of our project's community. Copyright © 2006-2020, Monospace Inc.
No vulnerabilities found.
Reason
30 commit(s) and 13 issue activity found in the last 90 days -- score normalized to 10
Reason
all changesets reviewed
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
packaging workflow detected
Details
- Info: Project packages its releases by way of GitHub Actions.: .github/workflows/release.yml:68
Reason
license file detected
Details
- Info: project has a license file: license:0
- Warn: project license file does not contain an FSF or OSI license.
Reason
SAST tool detected but not run on all commits
Details
- Info: SAST configuration detected: CodeQL
- Warn: 0 commits out of 30 are checked with a SAST tool
Reason
3 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-5359-pvf2-pw78
- Warn: Project is vulnerable to: GHSA-c76h-2ccp-4975
- Warn: Project is vulnerable to: GHSA-vg6x-rcgg-rjx6
Reason
security policy file detected
Details
- Info: security policy file detected: security.md:1
- Warn: no linked content found
- Warn: One or no descriptive hints of disclosure, vulnerability, and/or timelines in security policy
- Info: Found text in security policy: security.md:1
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Info: jobLevel 'actions' permission set to 'read': .github/workflows/codeql-analysis.yml:16
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/codeql-analysis.yml:17
- Warn: no topLevel permission defined: .github/workflows/blackbox.yml:1
- Warn: no topLevel permission defined: .github/workflows/check.yml:1
- Warn: no topLevel permission defined: .github/workflows/codeql-analysis.yml:1
- Warn: no topLevel permission defined: .github/workflows/docs.yml:1
- Warn: no topLevel permission defined: .github/workflows/release.yml:1
- Warn: no topLevel permission defined: .github/workflows/sync-dockerhub-readme.yml:1
- Info: no jobLevel write permissions found
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/blackbox.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/blackbox.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/blackbox.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/blackbox.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/check.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/check.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/check.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/check.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/check.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/check.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check.yml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/check.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cla.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/cla.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cla.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/cla.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cla.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/cla.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/codeql-analysis.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/codeql-analysis.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/codeql-analysis.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/codeql-analysis.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/codeql-analysis.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docs.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/docs.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/lock-threads.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/lock-threads.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/release.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/release.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/release.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:74: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/release.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/release.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:80: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/release.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:83: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/release.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:92: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/release.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:104: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/release.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:111: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/release.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:119: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/release.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/stale-issues.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/stale-issues.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sync-dockerhub-readme.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/sync-dockerhub-readme.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/sync-dockerhub-readme.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/directus/directus/sync-dockerhub-readme.yml/main?enable=pin
- Warn: containerImage not pinned by hash: Dockerfile:8
- Warn: containerImage not pinned by hash: Dockerfile:51
- Warn: npmCommand not pinned by hash: Dockerfile:53
- Info: 0 out of 16 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 15 third-party GitHubAction dependencies pinned
- Info: 0 out of 2 containerImage dependencies pinned
- Info: 0 out of 1 npmCommand dependencies pinned
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Score
6.5
/10
Last Scanned on 2025-01-27
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More