Gathering detailed insights and metrics for @settlemint/sdk-cli
Gathering detailed insights and metrics for @settlemint/sdk-cli
Integrate SettleMint into your application with ease.
Installations
npm install @settlemint/sdk-cliDeveloper Guide
BETA
Typescript
No
Module System
ESM
Min. Node Version
>=20
Node Version
24.3.0
NPM Version
10.8.3
Releases
226
Languages
2
TypeScript
JavaScript
TypeScript (99.15%)
JavaScript (0.85%)
Developer
Download Statistics
Total Downloads
0
Last Day
0
Last Week
0
Last Month
0
Last Year
0
GitHub Statistics
NOASSERTION License
14 Stars
1,714 Commits
1 Forks
5 Watchers
4 Branches
9 Contributors
Updated on Jul 12, 2025
Maintainers
3
Package Meta Information
Latest Version
2.5.1
Package Id
@settlemint/sdk-cli@2.5.1
Unpacked Size
37.34 MB
Size
6.68 MB
File Count
5
NPM Version
10.8.3
Node Version
24.3.0
Published on
Jul 11, 2025
Total Downloads
Cumulative downloads
Total Downloads
NaN
Last Day
0%
NaN
Compared to previous day
Last Week
0%
NaN
Compared to previous week
Last Month
0%
NaN
Compared to previous month
Last Year
0%
NaN
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
1
Peer Dependencies
1
SettleMint SDK
✨ https://settlemint.com ✨
Integrate SettleMint into your application with ease.
About
The SettleMint SDK provides a comprehensive set of tools and libraries for integrating blockchain functionality into your applications. It enables seamless interaction with the SettleMint platform's features and services.
Packages
| Name | Description | NPM |
|---|---|---|
@settlemint/sdk-blockscout | Blockscout integration module for SettleMint SDK, enabling blockchain explorer and analytics functionality |  |
@settlemint/sdk-cli | Command-line interface for SettleMint SDK, providing development tools and project management capabilities |  |
@settlemint/sdk-eas | Ethereum Attestation Service (EAS) integration for SettleMint SDK |  |
@settlemint/sdk-hasura | Hasura and PostgreSQL integration module for SettleMint SDK, enabling database operations and GraphQL queries |  |
@settlemint/sdk-ipfs | IPFS integration module for SettleMint SDK, enabling decentralized storage and content addressing |  |
@settlemint/sdk-js | Core JavaScript SDK for integrating SettleMint's blockchain platform services into your applications |  |
@settlemint/sdk-mcp | MCP interface for SettleMint SDK, providing development tools and project management capabilities |  |
@settlemint/sdk-minio | MinIO integration module for SettleMint SDK, providing S3-compatible object storage capabilities |  |
@settlemint/sdk-next | Next.js integration module for SettleMint SDK, providing React components and middleware for web applications |  |
@settlemint/sdk-portal | Portal API client module for SettleMint SDK, providing access to smart contract portal services and APIs |  |
@settlemint/sdk-thegraph | TheGraph integration module for SettleMint SDK, enabling querying and indexing of blockchain data through subgraphs |  |
@settlemint/sdk-utils | Shared utilities and helper functions for SettleMint SDK modules |  |
@settlemint/sdk-viem | Viem (TypeScript Interface for Ethereum) module for SettleMint SDK |  |
Contributing
We welcome contributions from the community! Please check out our Contributing guide to learn how you can help improve the SettleMint SDK through bug reports, feature requests, documentation updates, or code contributions.
License
The SettleMint SDK is released under the FSL Software License. See the LICENSE file for more details.
No vulnerabilities found.
Reason
no binaries found in the repo
Reason
15 out of 15 merged PRs checked by a CI test -- score normalized to 10
Reason
project has 3 contributing companies or organizations -- score normalized to 10
Details
- Info: kitchenplan contributor org/company found, superlumic contributor org/company found, settlemint contributor org/company found,
Reason
no dangerous workflow patterns detected
Reason
update tool detected
Details
- Info: detected update tool: RenovateBot: .github/renovate.json:1
Reason
30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Reason
security policy file detected
Details
- Info: security policy file detected: .github/SECURITY.md:1
- Info: Found linked content: .github/SECURITY.md:1
- Info: Found disclosure, vulnerability, and/or timelines in security policy: .github/SECURITY.md:1
- Info: Found text in security policy: .github/SECURITY.md:1
Reason
0 existing vulnerabilities detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Warn: project license file does not contain an FSF or OSI license.
Reason
dependency not pinned by hash detected -- score normalized to 9
Details
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-reset.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/settlemint/sdk/e2e-reset.yml/main?enable=pin
- Info: 8 out of 8 GitHub-owned GitHubAction dependencies pinned
- Info: 25 out of 26 third-party GitHubAction dependencies pinned
Reason
SAST tool detected but not run on all commits
Details
- Info: SAST configuration detected: CodeQL
- Warn: 2 commits out of 15 are checked with a SAST tool
Reason
branch protection is not maximal on development and all release branches
Details
- Info: 'allow deletion' disabled on branch 'main'
- Info: 'force pushes' disabled on branch 'main'
- Warn: 'branch protection settings apply to administrators' is disable on branch 'main'
- Warn: 'stale review dismissal' is disable on branch 'main'
- Warn: required approving review count is 1 on branch 'main'
- Warn: codeowners review is not required on branch 'main'
- Warn: 'last push approval' is disable on branch 'main'
- Warn: 'up-to-date branches' is disable on branch 'main'
- Info: status check found to merge onto on branch 'main'
- Info: PRs are required in order to make changes on branch 'main'
Reason
Found 7/23 approved changesets -- score normalized to 3
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Info: jobLevel 'packages' permission set to 'read': .github/workflows/codeql.yml:36
- Info: jobLevel 'actions' permission set to 'read': .github/workflows/codeql.yml:39
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/codeql.yml:40
- Warn: topLevel 'contents' permission set to 'write': .github/workflows/build.yml:20
- Warn: topLevel 'checks' permission set to 'write': .github/workflows/build.yml:19
- Warn: topLevel 'deployments' permission set to 'write': .github/workflows/build.yml:21
- Warn: topLevel 'packages' permission set to 'write': .github/workflows/build.yml:25
- Warn: topLevel 'security-events' permission set to 'write': .github/workflows/build.yml:29
- Warn: topLevel 'statuses' permission set to 'write': .github/workflows/build.yml:30
- Warn: topLevel 'actions' permission set to 'write': .github/workflows/build.yml:18
- Warn: no topLevel permission defined: .github/workflows/codeql.yml:1
- Warn: topLevel 'contents' permission set to 'write': .github/workflows/e2e-reset.yml:15
- Warn: topLevel 'deployments' permission set to 'write': .github/workflows/e2e-reset.yml:16
- Warn: topLevel 'packages' permission set to 'write': .github/workflows/e2e-reset.yml:20
- Warn: topLevel 'checks' permission set to 'write': .github/workflows/e2e-reset.yml:14
- Warn: topLevel 'security-events' permission set to 'write': .github/workflows/e2e-reset.yml:24
- Warn: topLevel 'statuses' permission set to 'write': .github/workflows/e2e-reset.yml:25
- Warn: topLevel 'actions' permission set to 'write': .github/workflows/e2e-reset.yml:13
- Warn: topLevel 'statuses' permission set to 'write': .github/workflows/e2e.yml:27
- Warn: topLevel 'contents' permission set to 'write': .github/workflows/e2e.yml:17
- Warn: topLevel 'deployments' permission set to 'write': .github/workflows/e2e.yml:18
- Warn: topLevel 'packages' permission set to 'write': .github/workflows/e2e.yml:22
- Warn: topLevel 'security-events' permission set to 'write': .github/workflows/e2e.yml:26
- Warn: topLevel 'actions' permission set to 'write': .github/workflows/e2e.yml:15
- Warn: topLevel 'checks' permission set to 'write': .github/workflows/e2e.yml:16
- Warn: topLevel 'actions' permission set to 'write': .github/workflows/pr-labels.yml:10
- Warn: topLevel 'security-events' permission set to 'write': .github/workflows/pr-labels.yml:21
- Warn: topLevel 'statuses' permission set to 'write': .github/workflows/pr-labels.yml:22
- Warn: topLevel 'checks' permission set to 'write': .github/workflows/pr-labels.yml:11
- Warn: topLevel 'contents' permission set to 'write': .github/workflows/pr-labels.yml:12
- Warn: topLevel 'deployments' permission set to 'write': .github/workflows/pr-labels.yml:13
- Warn: topLevel 'packages' permission set to 'write': .github/workflows/pr-labels.yml:17
- Warn: topLevel 'deployments' permission set to 'write': .github/workflows/pr-settings.yml:13
- Warn: topLevel 'statuses' permission set to 'write': .github/workflows/pr-settings.yml:22
- Warn: topLevel 'actions' permission set to 'write': .github/workflows/pr-settings.yml:10
- Warn: topLevel 'checks' permission set to 'write': .github/workflows/pr-settings.yml:11
- Warn: topLevel 'contents' permission set to 'write': .github/workflows/pr-settings.yml:12
- Warn: topLevel 'security-events' permission set to 'write': .github/workflows/pr-settings.yml:21
- Warn: topLevel 'packages' permission set to 'write': .github/workflows/pr-settings.yml:17
- Info: topLevel permissions set to 'read-all': .github/workflows/scorecard.yml:11
- Info: no jobLevel write permissions found
Score
7.1
/10
Last Scanned on 2025-01-18T14:19:47Z
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More