npmpackage.info

Gathering detailed insights and metrics for @toruslabs/fnd-base

@toruslabs/fnd-base

Fetches the node details from torus nodelist smart contract

14.2.0

MIT

TypeScript

1.87 kB

585,183 5.4

Installations

npm install @toruslabs/fnd-base

Developer Guide

BETA

Typescript

Yes

Module System

CommonJS

Min. Node Version

>=18.x

Node Version

20.16.0

NPM Version

lerna/8.1.9/node@v20.16.0+arm64 (darwin)

Score

82.1

Supply Chain

68.3

Quality

85.8

Maintenance

100

Vulnerability

100

License

Pull Requests

Open

10

Total

104

Closed

28

Merged

66

Issues

Open

0

Total

4

Closed

4

Releases

v14.2.0

Published on 26 Nov 2024

v14.1.1

Published on 07 Nov 2024

v14.1.0

Published on 06 Nov 2024

v14.0.1

Published on 15 Jul 2024

v14.0.0

Published on 18 Jun 2024

v13.4.0

Published on 06 May 2024

View all 63 releases

Contributors

Unable to fetch Contributors

View all 16 contributors

Languages

TypeScript

JavaScript

Dockerfile

HTML

TypeScript (94.13%)

JavaScript (3.25%)

Dockerfile (1.48%)

HTML (1.14%)

Developer

torusresearch

Download Statistics

Total Downloads

585,183

Last Day

810

Last Week

4,212

Last Month

20,472

Last Year

388,918

GitHub Statistics

3 Stars

403 Commits

10 Forks

4 Watching

13 Branches

16 Contributors

Bundle Size

4.50 kB

Minified

1.87 kB

Minified + Gzipped

Bundlephobia

Maintainers

Package Meta Information

Latest Version

14.2.0

Package Id

@toruslabs/fnd-base@14.2.0

Unpacked Size

36.36 kB

Size

6.26 kB

File Count

NPM Version

lerna/8.1.9/node@v20.16.0+arm64 (darwin)

Node Version

20.16.0

Publised On

26 Nov 2024

Total Downloads

Cumulative downloads

Total Downloads

585,183

Last day

-24.1%

810

Compared to previous day

Last week

-26.3%

4,212

Compared to previous week

Last month

-29.4%

20,472

Compared to previous month

Last year

98.2%

388,918

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

@toruslabs/constants

Peer Dependencies

@babel/runtime

Versions

fetch-node-details

Introduction

This monorepo contains various packages to fetch node config of various web3auth's networks.

It has following pacakges:-

@toruslabs/constants
@toruslabs/fnd-base
@toruslabs/fetch-node-details
@toruslabs/fnd-server

Installation

npm i

Run server

npm run dev

Run test cases

npm run test:ci

Build packages

npm run build

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

Maintained

Determines if the project is "actively maintained".

10

License

Determines if the project has defined a license.

10

Packaging

Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.

7

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

5

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

1

SAST

Determines if the project uses static code analysis.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

Fuzzing

Determines if the project uses fuzzing.

0

Security-Policy

Determines if the project has published a security policy.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/push_to_ecr.yaml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/torusresearch/fetch-node-details/push_to_ecr.yaml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/push_to_ecr.yaml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/torusresearch/fetch-node-details/push_to_ecr.yaml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/push_to_ecr.yaml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/torusresearch/fetch-node-details/push_to_ecr.yaml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/push_to_ecr.yaml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/torusresearch/fetch-node-details/push_to_ecr.yaml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/push_to_ecr.yaml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/torusresearch/fetch-node-details/push_to_ecr.yaml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/push_to_ecr.yaml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/torusresearch/fetch-node-details/push_to_ecr.yaml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/push_to_ecr.yaml:78: update your workflow using https://app.stepsecurity.io/secureworkflow/torusresearch/fetch-node-details/push_to_ecr.yaml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/push_to_ecr.yaml:86: update your workflow using https://app.stepsecurity.io/secureworkflow/torusresearch/fetch-node-details/push_to_ecr.yaml/master?enable=pin
Warn: containerImage not pinned by hash: Dockerfile.dev:1: pin your Docker image by updating node:20-alpine to node:20-alpine@sha256:2cd2a6f4cb37cf8a007d5f1e9aef090ade6b62974c7a274098c390599e8c72b4
Warn: containerImage not pinned by hash: packages/fnd-server/Dockerfile:2
Warn: containerImage not pinned by hash: packages/fnd-server/Dockerfile:22: pin your Docker image by updating node:20-alpine to node:20-alpine@sha256:2cd2a6f4cb37cf8a007d5f1e9aef090ade6b62974c7a274098c390599e8c72b4
Warn: npmCommand not pinned by hash: Dockerfile.dev:11-15
Warn: npmCommand not pinned by hash: packages/fnd-server/Dockerfile:15
Warn: npmCommand not pinned by hash: .github/workflows/push_to_ecr.yaml:25
Info: 0 out of 4 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 4 third-party GitHubAction dependencies pinned
Info: 0 out of 3 containerImage dependencies pinned
Info: 1 out of 4 npmCommand dependencies pinned

Score

5.4

/10

Last Scanned on 2025-01-20

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More