npmpackage.info

Gathering detailed insights and metrics for @spectrum-web-components/bundle

Other packages similar to @spectrum-web-components/bundle

nextjs13-bundle-bug

0.1.2

React wrapper of the button component for the Next.js static site generator

Gathering detailed insights and metrics for @spectrum-web-components/bundle

@spectrum-web-components/bundle - 1.7.0 | npmpackage.info

@spectrum-web-components/bundle

Spectrum Web Components

1.7.0

1,405

Apache-2.0

TypeScript

58.21 kB

5.3

Installations

npm install @spectrum-web-components/bundle

Developer Guide

BETA

Typescript

Yes

Module System

ESM

Node Version

20.16.0

NPM Version

10.8.1 Pull Requests

Open

54

Total

3,954

Closed

877

Merged

3,023

Issues

Open

153

Total

1,580

Closed

1,427

Releases

Unable to fetch releases

Languages

TypeScript

CSS

JavaScript

HTML

Handlebars

MDX

TypeScript (66.38%)

CSS (31.4%)

JavaScript (2.07%)

HTML (0.08%)

Handlebars (0.06%)

Developer

adobe

Download Statistics

Total Downloads

Last Day

Last Week

Last Month

Last Year

GitHub Statistics

Apache-2.0 License

1,405 Stars

4,911 Commits

229 Forks

46 Watchers

252 Branches

342 Contributors

Updated on Jul 12, 2025

Maintainers

View All 342 Contributors

Package Meta Information

Latest Version

1.7.0

Package Id

@spectrum-web-components/bundle@1.7.0

Unpacked Size

58.21 kB

Size

6.29 kB

File Count

NPM Version

10.8.1

Node Version

20.16.0

Published on

Jun 11, 2025

Total Downloads

Cumulative downloads

Total Downloads

NaN

Last Day

NaN

Compared to previous day

Last Week

NaN

Compared to previous week

Last Month

NaN

Compared to previous month

Last Year

NaN

Compared to previous year

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

Description

@spectrum-web-components/bundle is a master dependency that allows a project to import any and all of the Spectrum Web Components. While it is a great approach to prototyping, the fact that is versions all of the Spectrum Web Components packages collectively means that depending on it can leave you with a lot of package updates to manage at any one version change. For a more predictable upgrade process we suggest that you depend upon individual packages directly, but hope you find this bundle productive when initially trying to get into the act of developing with Spectrum Web Components!

Usage

yarn add @spectrum-web-components/bundle

Import the side effectful registrations of the bundled components:

import '@spectrum-web-components/bundle/elements.js';

When looking to leverage their base classes as a type and/or for extension purposes, do so via something like the following for the ActionButton base class:

import { ActionButton } from '@spectrum-web-components/bundle';

Icons

While this bundle directly re-exports the majority of functionality as they would be exported from their own packages, icon packages that export template literals are handled a little different. Due to the large number of exports that they feature, each of these packages are namespaced when included in the bundle.

UI

@spectrum-web-components/icons-ui is renamed to UIIcons when leveraging the bundle. This means that you can use workflow icons in your demonstration code by importing them from @spectrum-web-components/bundle/icons.js like the following:

import { UIIcons } from '@spectrum-web-components/bundle/icons.js';

console.log(UIIcons.AsteriskIcon());

/***
TemplateResult {strings: Array[1], values: Array[0], type: "html", processor: DefaultTemplateProcessor, constructor: Object}
***/

Workflow

@spectrum-web-components/icons-workflow is namespaced to WorkflowIcons when leveraging the bundle. This means that you can use workflow icons in your demonstration code by importing them from @spectrum-web-components/bundle/icons.js like the following:

import { IconsWorkflow } from '@spectrum-web-components/bundle/icons.js';

console.log(IconsWorkflow.CircleIcon());

/***
TemplateResult {strings: Array[1], values: Array[0], type: "html", processor: DefaultTemplateProcessor, constructor: Object}
***/

No vulnerabilities found.

10

Maintained

Determines if the project is "actively maintained".

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

License

Determines if the project has defined a license.

10

Security-Policy

Determines if the project has published a security policy.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

8

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/azure-static-web-apps-brave-plant-02f0c200f.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/azure-static-web-apps-brave-plant-02f0c200f.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/azure-static-web-apps-brave-plant-02f0c200f.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/azure-static-web-apps-brave-plant-02f0c200f.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/azure-static-web-apps-brave-plant-02f0c200f.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/azure-static-web-apps-brave-plant-02f0c200f.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/azure-static-web-apps-brave-plant-02f0c200f.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/azure-static-web-apps-brave-plant-02f0c200f.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/browser-tests.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/browser-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/browser-tests.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/browser-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/browser-tests.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/browser-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/browser-tests.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/browser-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/browser-tests.yml:80: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/browser-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/browser-tests.yml:87: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/browser-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/browser-tests.yml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/browser-tests.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/chromatic-vrt.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/chromatic-vrt.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/chromatic-vrt.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/chromatic-vrt.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/coveralls.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/coveralls.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/coveralls.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/coveralls.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/lint.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/lint.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/lint.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:80: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/lint.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:92: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/lint.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint.yml:107: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/lint.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/lint.yml:118: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/lint.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pr-update.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/pr-update.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-update.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/pr-update.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/preview-docs.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/preview-docs.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/preview-docs.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/preview-docs.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/preview-docs.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/preview-docs.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/preview-release.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/preview-release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-docs-site.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/publish-docs-site.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/urls-smoke-test.yml:83: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/urls-smoke-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/urls-smoke-test.yml:99: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/urls-smoke-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/urls-smoke-test.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/urls-smoke-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/urls-smoke-test.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/adobe/spectrum-web-components/urls-smoke-test.yml/main?enable=pin
Warn: npmCommand not pinned by hash: .github/workflows/azure-static-web-apps-brave-plant-02f0c200f.yml:27
Info: 0 out of 25 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 8 third-party GitHubAction dependencies pinned
Info: 0 out of 1 npmCommand dependencies pinned

0

Fuzzing

Determines if the project uses fuzzing.

0

SAST

Determines if the project uses static code analysis.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Score

5.3

/10

Last Scanned on 2025-07-07

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More