Gathering detailed insights and metrics for @revolist/revo-dropdown
Gathering detailed insights and metrics for @revolist/revo-dropdown
Minimalistic dropdown and auto-complete component with filtering and keyboard support
Installations
npm install @revolist/revo-dropdownDeveloper Guide
BETA
Typescript
Yes
Module System
CommonJS, ESM
Node Version
22.10.0
NPM Version
10.9.0
Score
72.9
Supply Chain
100
Quality
79.2
Maintenance
100
Vulnerability
100
License
Releases
14
Languages
4
JavaScript
TypeScript
SCSS
HTML
JavaScript (78.42%)
TypeScript (15.11%)
SCSS (3.95%)
HTML (2.52%)
Developer
Download Statistics
Total Downloads
96,364
Last Day
10
Last Week
1,060
Last Month
5,055
Last Year
54,865
GitHub Statistics
MIT License
24 Stars
70 Commits
7 Forks
3 Watchers
2 Branches
4 Contributors
Updated on Nov 11, 2024
Bundle Size
282.00 B
Minified
207.00 B
Minified + Gzipped
Maintainers
1
Package Meta Information
Latest Version
3.0.3
Package Id
@revolist/revo-dropdown@3.0.3
Unpacked Size
2.26 MB
Size
495.84 kB
File Count
90
NPM Version
10.9.0
Node Version
22.10.0
Published on
Nov 11, 2024
Total Downloads
Cumulative downloads
Total Downloads
96,364
Last Day
-68.8%
10
Compared to previous day
Last Week
-14.2%
1,060
Compared to previous week
Last Month
-10.7%
5,055
Compared to previous month
Last Year
213.3%
54,865
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dev Dependencies
5
revo-dropdown
Minimalistic dropdown webcomponent. After long search we couldn't find any cross platform and had to build our own inspired by the latest trends.
Autocomplete | Regular select |
|---|---|
 |  |
Getting Started
To start building a new web component using Stencil, clone this repo to a new directory:
1npm i @revolist/revo-dropdown
Module import
1 2import * as loader from '@revolist/revo-dropdown/loader'; 3if (loader.defineCustomElements) { 4 loader.defineCustomElements(); 5}
Script tag
- Put a script tag similar to this
<script src='https://cdn.jsdelivr.net/npm/@revolist/revo-dropdown@latest/dist/revo-dropdown/revo-dropdown.js'></script>in the head of your index.html
Usage
Then you can use the element anywhere in your template, JSX, html etc
1<revo-dropdown data-label="name" autocomplete="true" placeholder="Philosophers" max-height="300"></revo-dropdown>
1<script type="module"> 2 const people = [ 3 { 4 eyeColor: 'green', 5 name: 'Samantha Molina', 6 }, 7 { 8 eyeColor: 'green', 9 name: 'Weber Henderson', 10 }]; 11 const dropdowns = document.querySelectorAll('revo-dropdown'); 12 for (var q = 0; q < dropdowns.length; q++) { 13 dropdowns[q].source = people; 14 } 15</script>
Need help? Check out docs here.
API
Properties
| Property | Attribute | Description | Type | Default |
|---|---|---|---|---|
appendTo | append-to | Where to append element | "body" | "current" | 'body' |
autoClose | auto-close | Should dropdown autoclose on changeValue | boolean | true |
autoFocus | auto-focus | boolean | false | |
autocomplete | autocomplete | boolean | false | |
currentFilter | current-filter | Filter value | any | undefined |
dataId | data-id | Define object mapping for id/value | string | undefined |
dataLabel | data-label | Define object mapping for labels | string | undefined |
filter | filter | Filter criteria | "contains" | "start" | undefined |
hasFilter | has-filter | boolean | true | |
maxHeight | max-height | number | undefined | |
placeholder | placeholder | Placeholder text | string | 'Select' |
source | -- | Define object mapping for id/value | any[] | [] |
value | value | Selected value | any | undefined |
Events
| Event | Description | Type |
|---|---|---|
changed | When value changed | CustomEvent<{ val: any; originalEvent?: MouseEvent; }> |
close | Before element close, can be prevented | CustomEvent<any> |
open | Before element open, can be prevented | CustomEvent<any> |
Methods
doChange(val: any, originalEvent?: MouseEvent) => Promise<void>
Change value
Returns
Type: Promise<void>
doClose(isDisconnected?: boolean) => Promise<void>
Close dropdown
Returns
Type: Promise<void>
doOpen() => Promise<void>
Open dropdown
Returns
Type: Promise<void>
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
packaging workflow detected
Details
- Info: Project packages its releases by way of GitHub Actions.: .github/workflows/publish.yml:6
Reason
3 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
- Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3
- Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/publish.yml:1
- Info: no jobLevel write permissions found
Reason
0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Reason
Found 1/28 approved changesets -- score normalized to 0
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:9: update your workflow using https://app.stepsecurity.io/secureworkflow/revolist/revodropdown/publish.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/revolist/revodropdown/publish.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/revolist/revodropdown/publish.yml/main?enable=pin
- Warn: npmCommand not pinned by hash: .github/workflows/publish.yml:16
- Info: 0 out of 3 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 1 npmCommand dependencies pinned
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch 'main'
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 3 are checked with a SAST tool
Score
3.6
/10
Last Scanned on 2025-06-23
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More