npmpackage.info

Gathering detailed insights and metrics for @smithy/util-buffer-from

@smithy/util-buffer-from

Smithy code generators for TypeScript. (in development)

4.0.0

245

Apache-2.0

TypeScript

406.00 B

1,447,330,321 5.1

Installations

npm install @smithy/util-buffer-from

Developer Guide

BETA

Typescript

Yes

Module System

CommonJS

Min. Node Version

>=18.0.0

Node Version

18.20.5

NPM Version

10.8.2 Score

99.6

Supply Chain

65.4

Quality

86.2

Maintenance

100

Vulnerability

100

License

Pull Requests

Open

34

Total

1,334

Closed

196

Merged

1,104

Issues

Open

63

Total

183

Closed

120

Releases

2,297

@smithy/util-stream-node@4.0.2

Published on 15 Jan 2025

@smithy/util-stream@4.0.2

Published on 15 Jan 2025

@smithy/util-defaults-mode-node@4.0.3

Published on 15 Jan 2025

@smithy/util-defaults-mode-browser@4.0.3

Published on 15 Jan 2025

@smithy/smithy-client@4.1.2

Published on 15 Jan 2025

@smithy/node-http-handler@4.0.2

Published on 15 Jan 2025

View all 2,297 releases

Contributors

101

Unable to fetch Contributors

View all 101 contributors

Languages

TypeScript

Java

JavaScript

Smithy

Makefile

Shell

TypeScript (54.38%)

Java (42.83%)

JavaScript (1.78%)

Smithy (0.99%)

Makefile (0.03%)

Shell (0.01%)

Developer

awslabs

Download Statistics

Total Downloads

1,447,330,321

Last Day

7,830,719

Last Week

35,531,680

Last Month

153,793,487

Last Year

1,240,955,192

GitHub Statistics

245 Stars

2,453 Commits

96 Forks

14 Watching

35 Branches

101 Contributors

Bundle Size

782.00 B

Minified

406.00 B

Minified + Gzipped

Bundlephobia

Maintainers

Package Meta Information

Latest Version

4.0.0

Package Id

@smithy/util-buffer-from@4.0.0

Unpacked Size

16.77 kB

Size

5.90 kB

File Count

NPM Version

10.8.2

Node Version

18.20.5

Publised On

06 Jan 2025

Total Downloads

Cumulative downloads

Total Downloads

1,447,330,321

Last day

-1.6%

7,830,719

Compared to previous day

Last week

-12.6%

35,531,680

Compared to previous week

Last month

10.6%

153,793,487

Compared to previous month

Last year

501.3%

1,240,955,192

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

@smithy/is-array-buffer tslib

Dev Dependencies

@types/node concurrently downlevel-dts rimraf typedoc

Versions

@smithy/util-buffer-from

An internal package

Usage

You probably shouldn't, at least directly.

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Maintained

Determines if the project is "actively maintained".

10

License

Determines if the project has defined a license.

10

Security-Policy

Determines if the project has published a security policy.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

6

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:89: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:95: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:116: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:117: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:136: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:141: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/git-sync.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/git-sync.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-npm-packages.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/release-npm-packages.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-npm-packages.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/release-npm-packages.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-npm-packages.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/release-npm-packages.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-npm-packages.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/release-npm-packages.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-npm-ssdk-libs.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/release-npm-ssdk-libs.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-npm-ssdk-libs.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/release-npm-ssdk-libs.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-npm-ssdk-libs.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/release-npm-ssdk-libs.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-npm-ssdk-libs.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/release-npm-ssdk-libs.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-smithy-gradle-plugin.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/smithy-lang/smithy-typescript/update-smithy-gradle-plugin.yml/main?enable=pin
Info: 0 out of 19 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 8 third-party GitHubAction dependencies pinned

0

Fuzzing

Determines if the project uses fuzzing.

0

SAST

Determines if the project uses static code analysis.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Score

5.1

/10

Last Scanned on 2025-01-27

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More