Gathering detailed insights and metrics for @stoplight/path
Gathering detailed insights and metrics for @stoplight/path
Installations
npm install @stoplight/pathScore
99.5
Supply Chain
83.4
Quality
76.9
Maintenance
100
Vulnerability
100
License
Developer
stoplightio
Developer Guide
BETA
Module System
CommonJS, ESM
Min. Node Version
^12.20 || >=14.13
Typescript Support
Yes
Node Version
20.11.1
NPM Version
8.19.3
Statistics
2 Stars
31 Commits
1 Forks
17 Watching
9 Branches
59 Contributors
Updated on 01 Feb 2023
Bundle Size
9.63 kB
Minified
3.43 kB
Minified + Gzipped
Languages
TypeScript (92.16%)
PEG.js (5.96%)
JavaScript (1.89%)
Total Downloads
Cumulative downloads
Total Downloads
62,390,745
Last day
-30.7%
117,839
Compared to previous day
Last week
-7.8%
754,226
Compared to previous week
Last month
2.3%
3,290,182
Compared to previous month
Last year
66.6%
30,626,913
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dev Dependencies
24
@commitlint/cli@commitlint/config-conventional@types/jest@typescript-eslint/eslint-plugin@typescript-eslint/parser@semantic-release/commit-analyzer@semantic-release/git@semantic-release/github@semantic-release/npm@semantic-release/release-notes-generatoreslinteslint-config-prettiereslint-plugin-jesteslint-plugin-prettierhuskyjestlint-stagednodemonpeggyprettierrimrafsemantic-releasets-jesttypescript
Versions
@stoplight/path
- View the changelog: Releases
Features
- Awesome: It is.
- .. more features
Installation
Supported in modern browsers and node.
1# latest stable 2yarn add @stoplight/path
Usage
1import * as path from '@stoplight/path'; 2 3// ...example
Contributing
- Clone repo.
- Create / checkout
feature/{name},chore/{name}, orfix/{name}branch. - Install deps:
yarn. - Make your changes.
- Run tests:
yarn test.prod. - Stage relevant files to git.
- Commit:
yarn commit. NOTE: Commits that don't follow the conventional format will be rejected.yarn commitcreates this format for you, or you can put it together manually and then do a regulargit commit. - Push:
git push. - Open PR targeting the
masterbranch.
No vulnerabilities found.
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0
Reason
Found 14/15 approved changesets -- score normalized to 9
Reason
0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 29 are checked with a SAST tool
Reason
16 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92
- Warn: Project is vulnerable to: GHSA-93q8-gq69-wqmw
- Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-8r6j-v8pm-fqw3
- Warn: Project is vulnerable to: MAL-2023-462
- Warn: Project is vulnerable to: GHSA-pfrx-2q88-qq97
- Warn: Project is vulnerable to: GHSA-78xj-cgh5-2h22
- Warn: Project is vulnerable to: GHSA-2p57-rm9w-gvfp
- Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
- Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
- Warn: Project is vulnerable to: GHSA-4g88-fppr-53pp
- Warn: Project is vulnerable to: GHSA-4jqc-8m5r-9rpr
- Warn: Project is vulnerable to: GHSA-f5x3-32g6-xq36
- Warn: Project is vulnerable to: GHSA-j8xg-fqg3-53r7
- Warn: Project is vulnerable to: GHSA-f9xv-q969-pqx4
Score
3.4
/10
Last Scanned on 2024-11-18
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More