npmpackage.info

@signpdf/signer-p12

Simple signing of PDFs in node.

3.2.4

758

MIT

JavaScript

2.23 kB

964,999 3.1

Installations

npm install @signpdf/signer-p12

Developer Guide

BETA

Typescript

Yes

Module System

CommonJS

Min. Node Version

>=12

Node Version

18.18.2

NPM Version

lerna/7.3.0/node@v18.18.2+x64 (win32)

Score

88.9

Supply Chain

68.1

Quality

Maintenance

100

Vulnerability

98.9

License

Pull Requests

Open

6

Total

95

Closed

23

Merged

66

Issues

Open

29

Total

186

Closed

157

Releases

v3.2.4

Updated on Mar 18, 2024

v3.2.3

Updated on Feb 23, 2024

@signpdf/signer-p12 3.2.1

v3.2.1

Updated on Jan 29, 2024

@signpdf/* 3.2.0

v3.2.0

Updated on Jan 19, 2024

@signpdf/placeholder-pdfkit 3.1.0

placeholder-pdfkit-3.1.0

Updated on Nov 29, 2023

@signpdf/* 3.1.0

v3.1.0

Updated on Nov 24, 2023

View All 7 releases

Contributors

Unable to fetch Contributors

View All 25 Contributors

Languages

JavaScript

TypeScript

Shell

JavaScript (98.98%)

TypeScript (0.95%)

Shell (0.07%)

Love this project? Help keep it running — sponsor us today! 🚀

Developer

vbuch

Download Statistics

Total Downloads

964,999

Last Day

431

Last Week

10,361

Last Month

40,807

Last Year

951,086

GitHub Statistics

MIT License

758 Stars

483 Commits

188 Forks

20 Watchers

10 Branches

25 Contributors

Updated on Feb 14, 2025

Bundle Size

7.11 kB

Minified

2.23 kB

Minified + Gzipped

Bundlephobia

Sponsor this package

https://buymeacoffee.com/vbuch?utm_source=npm-funding-signpdf

Maintainers

Package Meta Information

Latest Version

3.2.4

Package Id

@signpdf/signer-p12@3.2.4

Unpacked Size

9.07 kB

Size

3.78 kB

File Count

NPM Version

lerna/7.3.0/node@v18.18.2+x64 (win32)

Node Version

18.18.2

Published on

Mar 18, 2024

Total Downloads

Cumulative downloads

Total Downloads

964,999

Last Day

131.7%

431

Compared to previous day

Last Week

-6.2%

10,361

Compared to previous week

Last Month

52.9%

40,807

Compared to previous month

Last Year

6,736%

951,086

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Signer implementation using PKCS#12 bundle with node-forge

for

Uses node-forge to create a detached signature of a given Buffer using a PKCS#12 certificate bundle.

Usage

See the typescript.ts example.

Notes

Make sure to have a look at the docs of the @signpdf family of packages.
Feel free to copy and paste any part of this code. See its defined Purpose.

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

5

Maintained

Determines if the project is "actively maintained".

1

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/monorepo.yml:9: update your workflow using https://app.stepsecurity.io/secureworkflow/vbuch/node-signpdf/monorepo.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/monorepo.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/vbuch/node-signpdf/monorepo.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/monorepo.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/vbuch/node-signpdf/monorepo.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/monorepo.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/vbuch/node-signpdf/monorepo.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/monorepo.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/vbuch/node-signpdf/monorepo.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/monorepo.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/vbuch/node-signpdf/monorepo.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/monorepo.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/vbuch/node-signpdf/monorepo.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/monorepo.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/vbuch/node-signpdf/monorepo.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/monorepo.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/vbuch/node-signpdf/monorepo.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/monorepo.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/vbuch/node-signpdf/monorepo.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/monorepo.yml:78: update your workflow using https://app.stepsecurity.io/secureworkflow/vbuch/node-signpdf/monorepo.yml/develop?enable=pin
Info: 0 out of 4 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 7 third-party GitHubAction dependencies pinned

0

Security-Policy

Determines if the project has published a security policy.

0

Fuzzing

Determines if the project uses fuzzing.

0

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

0

SAST

Determines if the project uses static code analysis.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Score

3.1

/10

Last Scanned on 2025-02-10

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More

@signpdf/signer-p12

Installations

Developer Guide

Yes

CommonJS

>=12

18.18.2

lerna/7.3.0/node@v18.18.2+x64 (win32)

Score

Pull Requests

6

95

23

66

Issues

29

186

157

Releases

Contributors

Unable to fetch Contributors

Languages

Developer

vbuch

Download Statistics

GitHub Statistics

Bundle Size

7.11 kB

2.23 kB

Sponsor this package

Maintainers

Package Meta Information

Total Downloads

964,999

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

Peer Dependencies

Dev Dependencies

Signer implementation using PKCS#12 bundle with node-forge

Usage

Notes

10

10

10

5

1

0

0

0

0

0

0

0

0

3.1

/10