npmpackage.info

Gathering detailed insights and metrics for archiver

Other packages similar to archiver

archiver-utils

5.0.2

utility functions for archiver

@types/archiver

6.0.3

TypeScript definitions for archiver

archiver-promise

1.0.0

Promise wrapper for archiver

archiver-zip-encryptable

1.0.10

An extension for archiver to zip with password encryption.

Gathering detailed insights and metrics for archiver

archiver

a streaming interface for archive generation

7.0.1

2,827

MIT

JavaScript

97.81 kB

1,611,202,125 4.9

Installations

npm install archiver

Score

74.6

Supply Chain

96.5

Quality

77.1

Maintenance

100

Vulnerability

99.3

License

Pull Requests

Open

18

Total

328

Closed

122

Merged

188

Issues

Open

131

Total

470

Closed

339

Releases

7.0.1

Published on 10 Mar 2024

7.0.0

Published on 28 Feb 2024

6.0.2

Published on 27 Feb 2024

6.0.1

Published on 04 Sept 2023

6.0.0

Published on 18 Aug 2023

5.3.2

Published on 17 Aug 2023

View all 72 releases

Developer

archiverjs

Developer Guide

BETA

Module System

CommonJS

Min. Node Version

>= 14

Typescript Support

No

Node Version

16.20.2

NPM Version

8.19.4 Statistics

2,827 Stars

924 Commits

219 Forks

29 Watching

13 Branches

37 Contributors

Updated on 28 Nov 2024

Bundle Size

328.15 kB

Minified

97.81 kB

Minified + Gzipped

Bundlephobia

Languages

JavaScript (98.06%)

CSS (1.94%)

Total Downloads

Cumulative downloads

Total Downloads

1,611,202,125

Last day

-4.4%

1,839,079

Compared to previous day

Last week

2.9%

10,369,020

Compared to previous week

Last month

6.3%

43,199,846

Compared to previous month

Last year

29.2%

455,445,816

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

archiver-utils async buffer-crc32 readable-stream readdir-glob tar-stream zip-stream

Dev Dependencies

archiver-jsdoc-theme chai jsdoc mkdirp mocha rimraf stream-bench tar yauzl

Versions

Archiver

A streaming interface for archive generation

Visit the API documentation for a list of all methods available.

Install

1npm install archiver --save

Quick Start

1import fs from "fs";
2import { ZipArchive } from "archiver";
3
4// create a file to stream archive data to.
5const output = fs.createWriteStream(__dirname + "/example.zip");
6const archive = new ZipArchive({
7  zlib: { level: 9 }, // Sets the compression level.
8});
9
10// listen for all archive data to be written
11// 'close' event is fired only when a file descriptor is involved
12output.on("close", function () {
13  console.log(archive.pointer() + " total bytes");
14  console.log(
15    "archiver has been finalized and the output file descriptor has closed.",
16  );
17});
18
19// This event is fired when the data source is drained no matter what was the data source.
20// It is not part of this library but rather from the NodeJS Stream API.
21// @see: https://nodejs.org/api/stream.html#stream_event_end
22output.on("end", function () {
23  console.log("Data has been drained");
24});
25
26// good practice to catch warnings (ie stat failures and other non-blocking errors)
27archive.on("warning", function (err) {
28  if (err.code === "ENOENT") {
29    // log warning
30  } else {
31    // throw error
32    throw err;
33  }
34});
35
36// good practice to catch this error explicitly
37archive.on("error", function (err) {
38  throw err;
39});
40
41// pipe archive data to the file
42archive.pipe(output);
43
44// append a file from stream
45const file1 = __dirname + "/file1.txt";
46archive.append(fs.createReadStream(file1), { name: "file1.txt" });
47
48// append a file from string
49archive.append("string cheese!", { name: "file2.txt" });
50
51// append a file from buffer
52const buffer3 = Buffer.from("buff it!");
53archive.append(buffer3, { name: "file3.txt" });
54
55// append a file
56archive.file("file1.txt", { name: "file4.txt" });
57
58// append files from a sub-directory and naming it `new-subdir` within the archive
59archive.directory("subdir/", "new-subdir");
60
61// append files from a sub-directory, putting its contents at the root of archive
62archive.directory("subdir/", false);
63
64// append files from a glob pattern
65archive.glob("file*.txt", { cwd: __dirname });
66
67// finalize the archive (ie we are done appending files but streams have to finish yet)
68// 'close', 'end' or 'finish' may be fired right after calling this method so register to them beforehand
69archive.finalize();

Formats

Archiver ships with out of the box support for TAR and ZIP archives.

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

9

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

6

Maintained

Determines if the project is "actively maintained".

5

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 5

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/labels.yaml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/archiverjs/node-archiver/labels.yaml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/labels.yaml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/archiverjs/node-archiver/labels.yaml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/nodejs.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/archiverjs/node-archiver/nodejs.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/nodejs.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/archiverjs/node-archiver/nodejs.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npmpublish.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/archiverjs/node-archiver/npmpublish.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npmpublish.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/archiverjs/node-archiver/npmpublish.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npmpublish.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/archiverjs/node-archiver/npmpublish.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npmpublish.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/archiverjs/node-archiver/npmpublish.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-drafter.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/archiverjs/node-archiver/release-drafter.yml/master?enable=pin
Info: 0 out of 7 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 2 third-party GitHubAction dependencies pinned
Info: 3 out of 3 npmCommand dependencies pinned

2

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Security-Policy

Determines if the project has published a security policy.

0

Fuzzing

Determines if the project uses fuzzing.

0

SAST

Determines if the project uses static code analysis.

Score

4.9

/10

Last Scanned on 2024-11-25

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More