Gathering detailed insights and metrics for appium-chromedriver
Gathering detailed insights and metrics for appium-chromedriver
Installations
npm install appium-chromedriverDeveloper Guide
BETA
Typescript
Yes
Module System
CommonJS
Min. Node Version
>=14
Node Version
22.17.0
NPM Version
10.9.3
Score
68.3
Supply Chain
87
Quality
95.7
Maintenance
50
Vulnerability
90.1
License
Releases
180
Languages
2
JavaScript
TypeScript
JavaScript (97.25%)
TypeScript (2.75%)
Developer
appium
Download Statistics
Total Downloads
0
Last Day
0
Last Week
0
Last Month
0
Last Year
0
GitHub Statistics
Apache-2.0 License
76 Stars
868 Commits
58 Forks
21 Watchers
3 Branches
43 Contributors
Updated on Jul 09, 2025
Maintainers
7
Package Meta Information
Latest Version
7.0.30
Package Id
appium-chromedriver@7.0.30
Unpacked Size
295.59 kB
Size
64.53 kB
File Count
51
NPM Version
10.9.3
Node Version
22.17.0
Published on
Jul 09, 2025
Total Downloads
Cumulative downloads
Total Downloads
NaN
Last Day
0%
NaN
Compared to previous day
Last Week
0%
NaN
Compared to previous week
Last Month
0%
NaN
Compared to previous month
Last Year
0%
NaN
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
13
Dev Dependencies
21
@appium/eslint-config-appium-ts@appium/test-support@appium/tsconfig@semantic-release/changelog@semantic-release/git@types/bluebird@types/lodash@types/mocha@types/node@types/semver@types/teen_processchaichai-as-promisedconventional-changelog-conventionalcommitsmochaprettierrimrafsemantic-releasesinonts-nodetypescript
appium-chromedriver
Node.js wrapper around Chromedriver and Microsoft Edge WebDriver. The Microsoft Edge WebDriver support is since v5.4.0. This wrapper is not used directly in Appium, but rather by various Android drivers to automate Chrome/Chromium-based browsers and web views using Hybrid Mode approach. Check the corresponding driver tutorials to get more details on it.
Note
This package is intended to be used as a helper module for Appium drivers such as UiAutomator2 and appium-chromium-driver. It was not created for standalone usage. Please ensure you know what you are doing before using this package directly.
Note
This package can work with Microsoft Edge WebDriver as well, but the support is limited. For example, automatic downloads do not work for Microsoft Edge WebDriver.
Automatic Chromedriver download on module install
Since version 6.0.0 of this module automatic download of the latest known chromedriver does not happen anymore. The below information is only relevant for older module versions:
Skipping binary installation
By default, upon installation the package downloads the most recent known Chromedriver version from
Chromedriver CDN server: http://chromedriver.storage.googleapis.com.
If, for some reason, you want to install the package without downloading the Chromedriver
binary set the APPIUM_SKIP_CHROMEDRIVER_INSTALL environment variable:
1APPIUM_SKIP_CHROMEDRIVER_INSTALL=1 npm install appium-chromedriver
Custom Chromedriver version
By default, the package uses the most recent known Chromedriver version. The full list of known Chromedriver versions and their corresponding supported Chrome version could be found in mapping.json
To download a custom version of Chromedriver, please set CHROMEDRIVER_VERSION environment variable:
1CHROMEDRIVER_VERSION=107.0.5304.62 npm install appium-chromedriver
Custom binaries url
If you want Chromedriver to be downloaded from another CDN, which differs from the
default one https://chromedriver.storage.googleapis.com, then set the new URL to
the CHROMEDRIVER_CDNURL environment variable:
1CHROMEDRIVER_CDNURL=http://npm.taobao.org/mirrors/chromedriver npm install appium-chromedriver
If you want automatic chromedrivers download feature to work with a custom CDN URL then make sure
the server returns a proper list of stored drivers in response to requests having
Accept: application/xml header. An example XML could be retrieved from the original URL using
curl -H 'Accept: application/xml' https://chromedriver.storage.googleapis.com command.
Since version 5.6 the second environment variable has been added: CHROMELABS_URL. By default, it points
to https://googlechromelabs.github.io, and is expected to contain the actual prefix of
Chrome for Testing availability
JSON API. This API allows retrieval of chromedrivers whose major versions are greater than 114.
Similarly to the above it could be also defined in the .npmrc file:
1chromelabs_url=https://googlechromelabs.github.io
You may also want to skip checking for older Chromedriver versions by providing an
empty value to the CHROMEDRIVER_CDNURL variable.
Usage
1import Chromedriver from 'appium-chromedriver'; 2 3// 'sync'-like await/Promise usage 4async function runSession() { 5 let driver = new Chromedriver(); 6 const desiredCaps = {browserName: 'chrome'}; 7 await driver.start(desiredCaps); 8 let status = await driver.sendCommand('/status', 'GET'); 9 await driver.stop(); 10} 11 12// EventEmitter usage 13function runSession2() { 14 let driver = new Chromedriver(); 15 const desiredCaps = {browserName: 'chrome'}; 16 driver.start(desiredCaps); 17 driver.on(Chromedriver.EVENT_CHANGED, function (msg) { 18 if (msg.state === Chromedriver.STATE_ONLINE) { 19 driver.sendCommand('/status', 'GET').then(function (status) { 20 driver.stop(); 21 }); 22 } 23 }); 24 driver.on(Chromedriver.EVENT_ERROR, function (err) { 25 // :-( 26 }); 27}
States
Here's what the Chromedriver state machine looks like:
Here are the events you can listen for:
Chromedriver.EVENT_ERROR: gives you an error objectChromedriver.EVENT_CHANGED: gives you a state change object, with astateproperty that can be one of:Chromedriver.STATE_STOPPEDChromedriver.STATE_STARTINGChromedriver.STATE_ONLINEChromedriver.STATE_STOPPINGChromedriver.STATE_RESTARTING
Development
Build & Lint
1npm run build 2npm run lint
Run Tests
1npm run test 2npm run e2e-test
High
8.1/10
Summary
appium-chromedriver downloads Resources over HTTP
Affected Versions
< 2.9.4
Patched Versions
2.9.4
Reason
no binaries found in the repo
Reason
30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Reason
no dangerous workflow patterns detected
Reason
0 existing vulnerabilities detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0
Reason
packaging workflow detected
Details
- Info: Project packages its releases by way of GitHub Actions.: .github/workflows/publish.js.yml:9
Reason
security policy file detected
Details
- Info: security policy file detected: github.com/appium/.github/SECURITY.md:1
- Info: Found linked content: github.com/appium/.github/SECURITY.md:1
- Warn: One or no descriptive hints of disclosure, vulnerability, and/or timelines in security policy
- Info: Found text in security policy: github.com/appium/.github/SECURITY.md:1
Reason
Found 2/16 approved changesets -- score normalized to 1
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/cd_bump.yml:1
- Warn: no topLevel permission defined: .github/workflows/functional-test.yml:1
- Warn: no topLevel permission defined: .github/workflows/pr-title.yml:1
- Warn: no topLevel permission defined: .github/workflows/publish.js.yml:1
- Warn: no topLevel permission defined: .github/workflows/unit-test.yml:1
- Info: no jobLevel write permissions found
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cd_bump.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/appium/appium-chromedriver/cd_bump.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cd_bump.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/appium/appium-chromedriver/cd_bump.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd_bump.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/appium/appium-chromedriver/cd_bump.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/functional-test.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/appium/appium-chromedriver/functional-test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/functional-test.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/appium/appium-chromedriver/functional-test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/functional-test.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/appium/appium-chromedriver/functional-test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/functional-test.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/appium/appium-chromedriver/functional-test.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-title.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/appium/appium-chromedriver/pr-title.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.js.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/appium/appium-chromedriver/publish.js.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.js.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/appium/appium-chromedriver/publish.js.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/unit-test.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/appium/appium-chromedriver/unit-test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/unit-test.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/appium/appium-chromedriver/unit-test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/unit-test.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/appium/appium-chromedriver/unit-test.yml/master?enable=pin
- Warn: npmCommand not pinned by hash: .github/workflows/cd_bump.yml:23
- Warn: npmCommand not pinned by hash: .github/workflows/functional-test.yml:19
- Warn: npmCommand not pinned by hash: .github/workflows/publish.js.yml:19
- Warn: npmCommand not pinned by hash: .github/workflows/unit-test.yml:32
- Info: 0 out of 10 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 3 third-party GitHubAction dependencies pinned
- Info: 0 out of 4 npmCommand dependencies pinned
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 16 are checked with a SAST tool
Score
5.8
/10
Last Scanned on 2025-07-07
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More