npmpackage.info

Gathering detailed insights and metrics for @typedorm/core

@typedorm/core

Strongly typed ORM for DynamoDB - Built with the single-table-design pattern in mind.

1.15.4

483

MIT

TypeScript

1.68 MB

4,174,863 4.6

Installations

npm install @typedorm/core

Developer Guide

BETA

Typescript

Yes

Module System

CommonJS, ESM

Node Version

16.19.0

NPM Version

8.19.3 Score

Supply Chain

70.8

Quality

77.7

Maintenance

100

Vulnerability

98.2

License

Pull Requests

Open

6

Total

163

Closed

13

Merged

144

Issues

Open

66

Total

190

Closed

124

Releases

v1.16.0-beta.7

Published on 15 Oct 2024

v1.16.0-beta.6

Published on 22 Sept 2024

v1.16.0-beta.5

Published on 11 Sept 2024

v1.16.0-beta.4

Published on 11 Sept 2024

v1.16.0-beta.3

Published on 19 Sept 2023

v1.16.0-beta.2

Published on 26 Mar 2023

View all 95 releases

Contributors

Unable to fetch Contributors

View all 24 contributors

Languages

TypeScript

JavaScript

Starlark

Shell

TypeScript (96.88%)

JavaScript (1.53%)

Starlark (1.46%)

Shell (0.13%)

Developer

typedorm

Download Statistics

Total Downloads

4,174,863

Last Day

264

Last Week

15,288

Last Month

52,152

Last Year

989,282

GitHub Statistics

483 Stars

575 Commits

51 Forks

5 Watching

12 Branches

24 Contributors

Maintainers

Package Meta Information

Latest Version

1.15.4

Package Id

@typedorm/core@1.15.4

Unpacked Size

1.68 MB

Size

381.16 kB

File Count

313

NPM Version

8.19.3

Node Version

16.19.0

Publised On

28 Feb 2023

Total Downloads

Cumulative downloads

Total Downloads

4,174,863

Last day

34.7%

264

Compared to previous day

Last week

48.2%

15,288

Compared to previous week

Last month

-22.1%

52,152

Compared to previous month

Last year

-64.9%

989,282

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

uuid ksuid fast-glob p-limit class-transformer @typedorm/document-client

Peer Dependencies

@typedorm/common reflect-metadata aws-sdk @aws-sdk/client-dynamodb

Versions

TypeDORM - Core

Contains Core classes and types

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Security-Policy

Determines if the project has published a security policy.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

7

SAST

Determines if the project uses static code analysis.

4

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

2

Maintained

Determines if the project is "actively maintained".

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:81: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:98: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:100: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:104: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/codeql-analysis.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/codeql-analysis.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/codeql-analysis.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/codeql-analysis.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/publish.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/publish.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/release.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/release.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/release.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/typedorm/typedorm/release.yml/develop?enable=pin
Warn: npmCommand not pinned by hash: .github/workflows/ci.yml:42
Warn: npmCommand not pinned by hash: .github/workflows/publish.yml:20
Warn: npmCommand not pinned by hash: .github/workflows/release.yml:29
Info: 0 out of 20 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 2 third-party GitHubAction dependencies pinned
Info: 0 out of 3 npmCommand dependencies pinned

0

Fuzzing

Determines if the project uses fuzzing.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Score

4.6

/10

Last Scanned on 2024-12-16

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More