Gathering detailed insights and metrics for babylonjs-gltf2interface
Gathering detailed insights and metrics for babylonjs-gltf2interface
Babylon.js is a powerful, beautiful, simple, and open game and rendering engine packed into a friendly JavaScript framework.
Installations
npm install babylonjs-gltf2interfaceDeveloper Guide
BETA
Typescript
No
Module System
N/A
Node Version
20.19.2
NPM Version
10.8.2
Score
99.8
Supply Chain
67.9
Quality
95.3
Maintenance
100
Vulnerability
100
License
Releases
499
Languages
8
TypeScript
HLSL
JavaScript
SCSS
Roff
HTML
FLUX
Batchfile
TypeScript (86.64%)
HLSL (5.84%)
JavaScript (4.54%)
SCSS (1.53%)
Roff (0.97%)
HTML (0.44%)
FLUX (0.04%)
Developer
Download Statistics
Total Downloads
5,764,189
Last Day
1,808
Last Week
38,627
Last Month
160,932
Last Year
1,648,797
GitHub Statistics
Apache-2.0 License
24,266 Stars
45,575 Commits
3,539 Forks
538 Watchers
16 Branches
561 Contributors
Updated on Jul 01, 2025
Maintainers
1
Package Meta Information
Latest Version
8.14.1
Package Id
babylonjs-gltf2interface@8.14.1
Unpacked Size
53.05 kB
Size
11.91 kB
File Count
3
NPM Version
10.8.2
Node Version
20.19.2
Published on
Jun 30, 2025
Total Downloads
Cumulative downloads
Total Downloads
5,764,189
Last Day
-26.3%
1,808
Compared to previous day
Last Week
-8.6%
38,627
Compared to previous week
Last Month
8.1%
160,932
Compared to previous month
Last Year
28.4%
1,648,797
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
No dependencies detected.
ERROR: No README data found!
No vulnerabilities found.
Reason
30 commit(s) and 13 issue activity found in the last 90 days -- score normalized to 10
Reason
no dangerous workflow patterns detected
Reason
license file detected
Details
- Info: project has a license file: license.md:0
- Info: FSF or OSI recognized license: Apache License 2.0: license.md:0
Reason
2 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-4v9v-hfq4-rm2v
- Warn: Project is vulnerable to: GHSA-9jgg-88mc-972h
Reason
Found 22/30 approved changesets -- score normalized to 7
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/stale.yml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
Project has not signed or included provenance with any releases.
Details
- Warn: release artifact 8.14.1 not signed: https://api.github.com/repos/BabylonJS/Babylon.js/releases/228884749
- Warn: release artifact 8.14.0 not signed: https://api.github.com/repos/BabylonJS/Babylon.js/releases/227929274
- Warn: release artifact 8.13.1 not signed: https://api.github.com/repos/BabylonJS/Babylon.js/releases/227875927
- Warn: release artifact 8.13.0 not signed: https://api.github.com/repos/BabylonJS/Babylon.js/releases/226361333
- Warn: release artifact 8.12.1 not signed: https://api.github.com/repos/BabylonJS/Babylon.js/releases/225016763
- Warn: release artifact 8.14.1 does not have provenance: https://api.github.com/repos/BabylonJS/Babylon.js/releases/228884749
- Warn: release artifact 8.14.0 does not have provenance: https://api.github.com/repos/BabylonJS/Babylon.js/releases/227929274
- Warn: release artifact 8.13.1 does not have provenance: https://api.github.com/repos/BabylonJS/Babylon.js/releases/227875927
- Warn: release artifact 8.13.0 does not have provenance: https://api.github.com/repos/BabylonJS/Babylon.js/releases/226361333
- Warn: release artifact 8.12.1 does not have provenance: https://api.github.com/repos/BabylonJS/Babylon.js/releases/225016763
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 24 are checked with a SAST tool
Reason
binaries present in source code
Details
- Warn: binary detected: packages/tools/babylonServer/public/ammo.wasm.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/basisTranscoder/1/basis_transcoder.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/basisTranscoder/basis_transcoder.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/basis_encoder.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/draco_decoder.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/draco_decoder_gltf.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/draco_encoder.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/glslang/glslang.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/havok/HavokPhysics.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/ktx2Transcoders/1/msc_basis_transcoder.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/ktx2Transcoders/1/uastc_astc.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/ktx2Transcoders/1/uastc_bc7.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/ktx2Transcoders/1/uastc_r8_unorm.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/ktx2Transcoders/1/uastc_rg8_unorm.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/ktx2Transcoders/1/uastc_rgba8_srgb_v2.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/ktx2Transcoders/1/uastc_rgba8_unorm_v2.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/ktx2Transcoders/msc_basis_transcoder.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/ktx2Transcoders/uastc_astc.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/ktx2Transcoders/uastc_bc7.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/ktx2Transcoders/uastc_rgba32_srgb.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/ktx2Transcoders/uastc_rgba32_unorm.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/libktx.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/twgsl/twgsl.wasm:1
- Warn: binary detected: packages/tools/babylonServer/public/zstddec.wasm:1
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/stale.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/BabylonJS/Babylon.js/stale.yml/master?enable=pin
- Info: 0 out of 1 GitHub-owned GitHubAction dependencies pinned
Score
3.9
/10
Last Scanned on 2025-06-30
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More