Gathering detailed insights and metrics for @sqltools/formatter
Gathering detailed insights and metrics for @sqltools/formatter
Installations
npm install @sqltools/formatterDeveloper Guide
BETA
Typescript
Yes
Module System
CommonJS
Node Version
16.15.0
NPM Version
6.14.6
Score
99.8
Supply Chain
93.8
Quality
78
Maintenance
100
Vulnerability
100
License
Releases
27
mssql-v0.4.6
mssql-v0.4.6
Updated on Apr 12, 2025
v0.28.4 - (Feb 17, 2025)
v0.28.4
Updated on Feb 17, 2025
MySQL driver v0.6.3 - (May 31, 2024)
mysql-v0.6.3
Updated on May 31, 2024
v0.28.3 - (Apr 16, 2024)
v0.28.3
Updated on Apr 16, 2024
v0.28.2 - (Apr 12, 2024)
v0.28.2
Updated on Apr 12, 2024
v0.28.1 - (Nov 13, 2023)
v0.28.1
Updated on Nov 13, 2023
Languages
6
TypeScript
JavaScript
SCSS
Shell
PLpgSQL
TSQL
TypeScript (93.02%)
JavaScript (4%)
SCSS (2.66%)
Shell (0.22%)
PLpgSQL (0.09%)
TSQL (0.02%)
Developer
Download Statistics
Total Downloads
256,182,425
Last Day
378,732
Last Week
2,147,880
Last Month
9,182,226
Last Year
96,573,697
GitHub Statistics
MIT License
1,615 Stars
1,865 Commits
326 Forks
34 Watchers
5 Branches
77 Contributors
Updated on May 09, 2025
Bundle Size
35.36 kB
Minified
9.32 kB
Minified + Gzipped
Maintainers
2
Package Meta Information
Latest Version
1.2.5
Package Id
@sqltools/formatter@1.2.5
Unpacked Size
73.19 kB
Size
16.17 kB
File Count
31
NPM Version
6.14.6
Node Version
16.15.0
Total Downloads
Cumulative downloads
Total Downloads
256,182,425
Last Day
51%
378,732
Compared to previous day
Last Week
6.5%
2,147,880
Compared to previous week
Last Month
-4.1%
9,182,226
Compared to previous month
Last Year
42%
96,573,697
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dev Dependencies
7
SQLTools Formatter
Forked from zeroturnaround/sql-formatter but with improvements and ported Typescript.
This package is part of vscode-sqltools extension.
→ Try it online using our playground.
Install
Get the latest version from NPM/Yarn:
1npm install @sqltools/formatter 2# 3yarn add @sqltools/formatter
Usage
1import sqlFormatter from '@sqltools/formatter'; 2 3console.log(sqlFormatter.format('SELECT * FROM table1'));
Will output:
SELECT *
FROM table1
You can also pass in configuration options:
1sqlFormatter.format('SELECT *', { 2 language: 'sql', 3 indent: '\t', // Defaults to two spaces 4});
Options
| option | description | type | default |
|---|---|---|---|
| language | Query language, default is Standard SQL | sql, n1ql, db2, pl/sql | sql |
| indent | Characters used for indentation | string | (2 spaces) |
| reservedWordCase | How to change the case of reserved words | upper, lower, null | null (no change) |
| linesBetweenQueries | How many line breaks between queries | number or 'preserve' | 1 |
| params | Collection of params for placeholder replacement | object for name params, array for indexed placeholders |
Changelog
v1.2.4
- Support PostgreSQL c-style escape strings in formatter. #935 - thanks to @sivaramasubramanian.
- Support PostgreSQL @@ operator in formatter. #936 - thanks to @remlse.
v1.2.3
- Update types path. Thanks to @sgtpep
- Update README.md. Thanks to @hacker0limbo
v1.2.2
- Add playground link and options to README.md
- Emitting declarations files for usage with Typescript.
v1.2.1
v1.2.1
- (Almost) first public version
No vulnerabilities found.
Reason
15 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE.md:0
- Info: FSF or OSI recognized license: MIT License: LICENSE.md:0
Reason
Found 13/17 approved changesets -- score normalized to 7
Reason
dependency not pinned by hash detected -- score normalized to 2
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-and-test.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/mtxr/vscode-sqltools/build-and-test.yml/dev?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-and-test.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/mtxr/vscode-sqltools/build-and-test.yml/dev?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-and-test.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/mtxr/vscode-sqltools/build-and-test.yml/dev?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-and-test.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/mtxr/vscode-sqltools/build-and-test.yml/dev?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-formatter.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/mtxr/vscode-sqltools/test-formatter.yml/dev?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-formatter.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/mtxr/vscode-sqltools/test-formatter.yml/dev?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-formatter.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/mtxr/vscode-sqltools/test-formatter.yml/dev?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-formatter.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/mtxr/vscode-sqltools/test-formatter.yml/dev?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/upload-release-assets.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/mtxr/vscode-sqltools/upload-release-assets.yml/dev?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/upload-release-assets.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/mtxr/vscode-sqltools/upload-release-assets.yml/dev?enable=pin
- Info: 0 out of 10 GitHub-owned GitHubAction dependencies pinned
- Info: 1 out of 1 third-party GitHubAction dependencies pinned
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/build-and-test.yml:1
- Warn: no topLevel permission defined: .github/workflows/test-formatter.yml:1
- Warn: no topLevel permission defined: .github/workflows/upload-release-assets.yml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
Project has not signed or included provenance with any releases.
Details
- Warn: release artifact mssql-v0.4.6 not signed: https://api.github.com/repos/mtxr/vscode-sqltools/releases/211983741
- Warn: release artifact v0.28.4 not signed: https://api.github.com/repos/mtxr/vscode-sqltools/releases/200731102
- Warn: release artifact mysql-v0.6.3 not signed: https://api.github.com/repos/mtxr/vscode-sqltools/releases/158304033
- Warn: release artifact v0.28.3 not signed: https://api.github.com/repos/mtxr/vscode-sqltools/releases/151441163
- Warn: release artifact v0.28.2 not signed: https://api.github.com/repos/mtxr/vscode-sqltools/releases/150899350
- Warn: release artifact mssql-v0.4.6 does not have provenance: https://api.github.com/repos/mtxr/vscode-sqltools/releases/211983741
- Warn: release artifact v0.28.4 does not have provenance: https://api.github.com/repos/mtxr/vscode-sqltools/releases/200731102
- Warn: release artifact mysql-v0.6.3 does not have provenance: https://api.github.com/repos/mtxr/vscode-sqltools/releases/158304033
- Warn: release artifact v0.28.3 does not have provenance: https://api.github.com/repos/mtxr/vscode-sqltools/releases/151441163
- Warn: release artifact v0.28.2 does not have provenance: https://api.github.com/repos/mtxr/vscode-sqltools/releases/150899350
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 26 are checked with a SAST tool
Reason
54 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8
- Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-gxpj-cx7g-858c
- Warn: Project is vulnerable to: GHSA-2p57-rm9w-gvfp
- Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h
- Warn: Project is vulnerable to: GHSA-76p3-8jx3-jpfq
- Warn: Project is vulnerable to: GHSA-3rfm-jhwj-7488
- Warn: Project is vulnerable to: GHSA-hhq3-ff78-jv3g
- Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
- Warn: Project is vulnerable to: GHSA-rp65-9cf3-cjxr
- Warn: Project is vulnerable to: GHSA-7fh5-64p2-3v2j
- Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
- Warn: Project is vulnerable to: GHSA-hxcc-f52p-wc94
- Warn: Project is vulnerable to: GHSA-c4pw-33h3-35xw
- Warn: Project is vulnerable to: GHSA-49w6-73cw-chjr
- Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x
- Warn: Project is vulnerable to: GHSA-67mh-4wv8-2f99
- Warn: Project is vulnerable to: GHSA-vg6x-rcgg-rjx6
- Warn: Project is vulnerable to: GHSA-x574-m823-4x7w
- Warn: Project is vulnerable to: GHSA-4r4m-qw57-chr8
- Warn: Project is vulnerable to: GHSA-xcj6-pq6g-qj4x
- Warn: Project is vulnerable to: GHSA-356w-63v5-8wf4
- Warn: Project is vulnerable to: GHSA-859w-5945-r5v3
- Warn: Project is vulnerable to: GHSA-593m-55hh-j8gv
- Warn: Project is vulnerable to: GHSA-93q8-gq69-wqmw
- Warn: Project is vulnerable to: GHSA-fwr7-v2mv-hh25
- Warn: Project is vulnerable to: GHSA-4w2v-q235-vp99
- Warn: Project is vulnerable to: GHSA-cph5-m8f7-6c5x
- Warn: Project is vulnerable to: GHSA-wf5p-g6vw-rhxx
- Warn: Project is vulnerable to: GHSA-jr5f-v2jv-69x6
- Warn: Project is vulnerable to: GHSA-36jr-mh4h-2g58
- Warn: Project is vulnerable to: GHSA-9gj3-hwp5-pmwc
- Warn: Project is vulnerable to: GHSA-gpqq-952q-5327
- Warn: Project is vulnerable to: GHSA-j7qv-pgf6-hvh4
- Warn: Project is vulnerable to: GHSA-h6gj-6jjq-h8g9
- Warn: Project is vulnerable to: GHSA-896r-f27r-55mw
- Warn: Project is vulnerable to: GHSA-282f-qqgm-c34q
- Warn: Project is vulnerable to: GHSA-29mw-wpgm-hmr9
- Warn: Project is vulnerable to: GHSA-35jh-r3h4-6jhm
- Warn: Project is vulnerable to: GHSA-3xq5-wjfh-ppjc
- Warn: Project is vulnerable to: GHSA-vh95-rmgr-6w4m
- Warn: Project is vulnerable to: GHSA-xvch-5gv4-984h
- Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55
- Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j
- Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
- Warn: Project is vulnerable to: GHSA-rf66-hmqf-q3fc
- Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
- Warn: Project is vulnerable to: GHSA-cf4h-3jhx-xvhq
- Warn: Project is vulnerable to: GHSA-5j4c-8p2g-v4jx
- Warn: Project is vulnerable to: GHSA-g3ch-rx76-35fx
- Warn: Project is vulnerable to: GHSA-h6q6-9hqw-rwfv
- Warn: Project is vulnerable to: GHSA-5fg8-2547-mr8q
- Warn: Project is vulnerable to: GHSA-crh6-fp67-6883
Score
4.2
/10
Last Scanned on 2025-04-28
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More