npmpackage.info

Gathering detailed insights and metrics for @textile/threads-client

Gathering detailed insights and metrics for @textile/threads-client

@textile/threads-client - 2.3.4 | npmpackage.info

@textile/threads-client

This project has been moved to https://github.com/textileio/js-textile

2.3.4

59

MIT

TypeScript

773.96 kB

Installations

npm install @textile/threads-client

Developer Guide

BETA

Typescript

Yes

Module System

CommonJS

Node Version

14.15.1

NPM Version

lerna/3.22.1/node@v14.15.1+x64 (darwin)

Pull Requests

Open

26

Total

506

Closed

205

Merged

275

Issues

Open

3

Total

237

Closed

234

Releases

3

@textile/threads@1.1.0

@textile/threads@1.1.0

Updated on Sep 30, 2020

@textile/threads@0.1.13

@textile/threads@0.1.13

Updated on Jul 01, 2020

v0.1.14-rc1

Updated on Apr 13, 2020

View All 3 releases

Languages

2

TypeScript

JavaScript

TypeScript (97.31%)

JavaScript (2.69%)

Developer

Download Statistics

Total Downloads

0

Last Day

0

Last Week

0

Last Month

0

Last Year

0

GitHub Statistics

MIT License

59 Stars

960 Commits

8 Forks

6 Watchers

29 Branches

7 Contributors

Updated on Nov 04, 2024

Maintainers

7

View All 7 Contributors

Package Meta Information

Latest Version

2.3.4

Package Id

@textile/threads-client@2.3.4

Unpacked Size

773.96 kB

Size

135.67 kB

File Count

23

NPM Version

lerna/3.22.1/node@v14.15.1+x64 (darwin)

Node Version

14.15.1

Total Downloads

Cumulative downloads

Total Downloads

NaN

Last Day

0%

NaN

Compared to previous day

Last Week

0%

NaN

Compared to previous week

Last Month

0%

NaN

Compared to previous month

Last Year

0%

NaN

Compared to previous year

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

11

@improbable-eng/grpc-web @textile/context @textile/crypto @textile/grpc-transport @textile/multiaddr @textile/security @textile/threads-client-grpc @textile/threads-id @types/to-json-schema fastestsmallesttextencoderdecoder to-json-schema

@textile/threads-client

Info

You should use the @textile/hub library to integrate this library into your application.

Install

1npm install @textile/hub

Usage

1import { Client } from '@textile/hub'

Empty State

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

4

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

Maintained

Determines if the project is "actively maintained".

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/review.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/textileio/js-threads/review.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/review.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/textileio/js-threads/review.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/review.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/textileio/js-threads/review.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/review.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/textileio/js-threads/review.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/review.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/textileio/js-threads/review.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/review.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/textileio/js-threads/review.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/review.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/textileio/js-threads/review.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/review.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/textileio/js-threads/review.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/review.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/textileio/js-threads/review.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/review.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/textileio/js-threads/review.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/textileio/js-threads/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/textileio/js-threads/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/textileio/js-threads/test.yml/master?enable=pin
Warn: npmCommand not pinned by hash: .github/workflows/review.yml:31
Warn: npmCommand not pinned by hash: .github/workflows/review.yml:77
Warn: npmCommand not pinned by hash: .github/workflows/review.yml:79
Warn: npmCommand not pinned by hash: .github/workflows/test.yml:61
Info: 0 out of 11 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 2 third-party GitHubAction dependencies pinned
Info: 0 out of 4 npmCommand dependencies pinned

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Security-Policy

Determines if the project has published a security policy.

0

Fuzzing

Determines if the project uses fuzzing.

0

SAST

Determines if the project uses static code analysis.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Reason

85 existing vulnerabilities detected

Details

Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8
Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92
Warn: Project is vulnerable to: GHSA-h5c3-5r3r-rr8q
Warn: Project is vulnerable to: GHSA-rmvr-2pp2-xj38
Warn: Project is vulnerable to: GHSA-xx4v-prfh-6cgc
Warn: Project is vulnerable to: GHSA-93q8-gq69-wqmw
Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
Warn: Project is vulnerable to: GHSA-x9w5-v3q2-3rhw
Warn: Project is vulnerable to: GHSA-w8qv-6jwh-64r5
Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
Warn: Project is vulnerable to: GHSA-gxpj-cx7g-858c
Warn: Project is vulnerable to: GHSA-w573-4hg7-7wgq
Warn: Project is vulnerable to: GHSA-r9p9-mrjm-926w
Warn: Project is vulnerable to: GHSA-434g-2637-qmqr
Warn: Project is vulnerable to: GHSA-49q7-c7j4-3p7m
Warn: Project is vulnerable to: GHSA-977x-g7h5-7qgw
Warn: Project is vulnerable to: GHSA-f7q4-pwc6-w24p
Warn: Project is vulnerable to: GHSA-fc9h-whq2-v747
Warn: Project is vulnerable to: GHSA-vjh7-7g9h-fjfh
Warn: Project is vulnerable to: GHSA-4q6p-r6v2-jvc5
Warn: Project is vulnerable to: GHSA-ww39-953v-wcq6
Warn: Project is vulnerable to: GHSA-765h-qjxv-5f44
Warn: Project is vulnerable to: GHSA-f2jv-r9rf-7988
Warn: Project is vulnerable to: GHSA-43f8-2h32-f4cj
Warn: Project is vulnerable to: GHSA-rc47-6667-2j5j
Warn: Project is vulnerable to: GHSA-78xj-cgh5-2h22
Warn: Project is vulnerable to: GHSA-2p57-rm9w-gvfp
Warn: Project is vulnerable to: GHSA-896r-f27r-55mw
Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h
Warn: Project is vulnerable to: GHSA-76p3-8jx3-jpfq
Warn: Project is vulnerable to: GHSA-3rfm-jhwj-7488
Warn: Project is vulnerable to: GHSA-hhq3-ff78-jv3g
Warn: Project is vulnerable to: GHSA-29mw-wpgm-hmr9
Warn: Project is vulnerable to: GHSA-35jh-r3h4-6jhm
Warn: Project is vulnerable to: GHSA-p6mc-m468-83gw
Warn: Project is vulnerable to: GHSA-4r62-v4vq-hr96
Warn: Project is vulnerable to: GHSA-5v2h-r2cx-5xgj
Warn: Project is vulnerable to: GHSA-rrrm-qjm4-v8hf
Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3
Warn: Project is vulnerable to: GHSA-xvch-5gv4-984h
Warn: Project is vulnerable to: GHSA-qrpm-p2h7-hrv2
Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55
Warn: Project is vulnerable to: GHSA-r683-j2x4-v87g
Warn: Project is vulnerable to: GHSA-v39p-96qg-c8rf
Warn: Project is vulnerable to: GHSA-8v63-cqqc-6r2c
Warn: Project is vulnerable to: GHSA-3j8f-xvm3-ffx4
Warn: Project is vulnerable to: GHSA-4p35-cfcx-8653
Warn: Project is vulnerable to: GHSA-7f3x-x4pr-wqhj
Warn: Project is vulnerable to: GHSA-jpp7-7chh-cf67
Warn: Project is vulnerable to: GHSA-q6wq-5p59-983w
Warn: Project is vulnerable to: GHSA-j9fq-vwqv-2fm2
Warn: Project is vulnerable to: GHSA-pqw5-jmp5-px4v
Warn: Project is vulnerable to: GHSA-hj48-42vr-x3v9
Warn: Project is vulnerable to: GHSA-g6ww-v8xp-vmwg
Warn: Project is vulnerable to: GHSA-h7cp-r72f-jxh6
Warn: Project is vulnerable to: GHSA-v62p-rq8g-8h59
Warn: Project is vulnerable to: GHSA-hrpp-h998-j3pp
Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
Warn: Project is vulnerable to: GHSA-gcx4-mw62-g8wm
Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
Warn: Project is vulnerable to: GHSA-44c6-4v22-4mhx
Warn: Project is vulnerable to: GHSA-4x5v-gmq8-25ch
Warn: Project is vulnerable to: GHSA-4rq4-32rv-6wp6
Warn: Project is vulnerable to: GHSA-64g7-mvw6-v9qj
Warn: Project is vulnerable to: GHSA-vx3p-948g-6vhq
Warn: Project is vulnerable to: GHSA-3jfq-g458-7qm9
Warn: Project is vulnerable to: GHSA-r628-mhmh-qjhw
Warn: Project is vulnerable to: GHSA-9r2w-394v-53qc
Warn: Project is vulnerable to: GHSA-5955-9wpr-37jh
Warn: Project is vulnerable to: GHSA-qq89-hq3f-393p
Warn: Project is vulnerable to: GHSA-f5x3-32g6-xq36
Warn: Project is vulnerable to: GHSA-pq67-2wwv-3xjx
Warn: Project is vulnerable to: GHSA-8cj5-5rvv-wf4v
Warn: Project is vulnerable to: GHSA-4wf5-vphf-c2xc
Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
Warn: Project is vulnerable to: GHSA-7p7h-4mm5-852v
Warn: Project is vulnerable to: GHSA-38fc-wpqx-33j7
Warn: Project is vulnerable to: GHSA-394c-5j6w-4xmx
Warn: Project is vulnerable to: GHSA-78cj-fxph-m83p
Warn: Project is vulnerable to: GHSA-fhg7-m89q-25r3
Warn: Project is vulnerable to: GHSA-j8xg-fqg3-53r7
Warn: Project is vulnerable to: GHSA-6fc8-4gx4-v693
Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q

Score

3.2

/10

Last Scanned on 2025-07-07

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.