Gathering detailed insights and metrics for @protobufjs/utf8
Gathering detailed insights and metrics for @protobufjs/utf8
Protocol Buffers for JavaScript & TypeScript.
Installations
npm install @protobufjs/utf8Developer Guide
BETA
Typescript
Yes
Module System
CommonJS
Node Version
6.9.1
NPM Version
4.0.5
Score
99.9
Supply Chain
70.4
Quality
77.7
Maintenance
100
Vulnerability
100
License
Releases
52
protobufjs: v7.5.1
protobufjs-v7.5.1
Updated on May 08, 2025
protobufjs: v7.5.0
protobufjs-v7.5.0
Updated on Apr 15, 2025
protobufjs-cli: v1.2.0
protobufjs-cli-v1.2.0
Updated on Apr 15, 2025
protobufjs: v7.4.0
protobufjs-v7.4.0
Updated on Aug 22, 2024
protobufjs-cli: v1.1.4
protobufjs-cli-v1.1.4
Updated on Aug 22, 2024
protobufjs: v7.3.3
protobufjs-v7.3.3
Updated on Aug 16, 2024
Languages
2
JavaScript
TypeScript
JavaScript (99.78%)
TypeScript (0.22%)
Developer
dcodeIO
Download Statistics
Total Downloads
2,239,428,609
Last Day
2,935,733
Last Week
16,048,582
Last Month
69,583,412
Last Year
806,306,115
GitHub Statistics
NOASSERTION License
10,191 Stars
938 Commits
1,433 Forks
170 Watchers
37 Branches
111 Contributors
Updated on May 09, 2025
Bundle Size
1.17 kB
Minified
568.00 B
Minified + Gzipped
Maintainers
1
Package Meta Information
Latest Version
1.1.0
Package Id
@protobufjs/utf8@1.1.0
Size
9.40 kB
NPM Version
4.0.5
Node Version
6.9.1
Published on
Jan 25, 2017
Total Downloads
Cumulative downloads
Total Downloads
2,239,428,609
Last Day
35.7%
2,935,733
Compared to previous day
Last Week
2%
16,048,582
Compared to previous week
Last Month
-3.2%
69,583,412
Compared to previous month
Last Year
59.3%
806,306,115
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
@protobufjs/utf8
A minimal UTF8 implementation for number arrays.
API
-
utf8.length(string:
string):number
Calculates the UTF8 byte length of a string. -
utf8.read(buffer:
Uint8Array, start:number, end:number):string
Reads UTF8 bytes as a string. -
utf8.write(string:
string, buffer:Uint8Array, offset:number):number
Writes a string as UTF8 bytes.
License: BSD 3-Clause License
No vulnerabilities found.
Reason
25 commit(s) out of 30 and 0 issue activity out of 30 found in the last 90 days -- score normalized to 10
Reason
all last 30 commits are reviewed through GitHub
Reason
no vulnerabilities detected
Reason
update tool detected
Details
- Info: Renovabot detected: renovate.json:1
Reason
no dangerous workflow patterns detected
Reason
license file detected
Details
- Info: : LICENSE:1
Reason
no binaries found in the repo
Reason
dependency not pinned by hash detected -- score normalized to 7
Details
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yaml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/buggy1985/twitter-share-count/release.yaml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/buggy1985/twitter-share-count/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/buggy1985/twitter-share-count/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/buggy1985/twitter-share-count/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/buggy1985/twitter-share-count/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/buggy1985/twitter-share-count/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/buggy1985/twitter-share-count/test.yml/master?enable=pin
- Warn: npmCommand not pinned by hash: .github/workflows/test.yml:34
- Warn: npmCommand not pinned by hash: .github/workflows/test.yml:47
- Warn: npmCommand not pinned by hash: .github/workflows/test.yml:18
- Info: Dockerfile dependencies are pinned
- Info: no insecure (not pinned by hash) dependency downloads found in Dockerfiles
- Info: no insecure (not pinned by hash) dependency downloads found in shell scripts
Reason
branch protection is not maximal on development and all release branches
Details
- Info: 'force pushes' disabled on branch 'master'
- Info: 'allow deletion' disabled on branch 'master'
- Warn: no status checks found to merge onto branch 'master'
- Warn: number of required reviewers is only 1 on branch 'master'
- Warn: branch protection not enabled for branch 'ProtoBuf5'
Reason
no badge detected
Reason
non read-only tokens detected in GitHub workflows
Details
- Warn: no topLevel permission defined: .github/workflows/release.yaml:1: update your workflow using https://app.stepsecurity.io/secureworkflow/buggy1985/twitter-share-count/release.yaml/master?enable=permissions
- Warn: no topLevel permission defined: .github/workflows/test.yml:1: update your workflow using https://app.stepsecurity.io/secureworkflow/buggy1985/twitter-share-count/test.yml/master?enable=permissions
Reason
security policy file not detected
Reason
project is not fuzzed
Score
6.6
/10
Last Scanned on 2022-08-15
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More