Gathering detailed insights and metrics for deep-equal
Gathering detailed insights and metrics for deep-equal
Installations
npm install deep-equalReleases
Unable to fetch releases
Developer
inspect-js
Developer Guide
BETA
Module System
CommonJS, ESM, UMD
Min. Node Version
>= 0.4
Typescript Support
No
Node Version
21.1.0
NPM Version
10.2.0
Statistics
778 Stars
228 Commits
109 Forks
18 Watching
4 Branches
16 Contributors
Updated on 15 Oct 2024
Languages
JavaScript (100%)
Total Downloads
Cumulative downloads
Total Downloads
4,583,142,158
Last day
-9.5%
3,897,434
Compared to previous day
Last week
1.4%
22,719,386
Compared to previous week
Last month
1.2%
95,983,659
Compared to previous month
Last year
5.6%
1,059,057,677
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
18
Versions
deep-equal 
Node's assert.deepEqual() algorithm as a standalone module, that also works in browser environments.
It mirrors the robustness of node's own assert.deepEqual and is robust against later builtin modification.
example
1var equal = require('deep-equal'); 2console.dir([ 3 equal( 4 { a : [ 2, 3 ], b : [ 4 ] }, 5 { a : [ 2, 3 ], b : [ 4 ] } 6 ), 7 equal( 8 { x : 5, y : [6] }, 9 { x : 5, y : 6 } 10 ) 11]);
methods
1var deepEqual = require('deep-equal')
deepEqual(a, b, opts)
Compare objects a and b, returning whether they are equal according to a recursive equality algorithm.
If opts.strict is true, use strict equality (===) to compare leaf nodes.
The default is to use coercive equality (==) because that's how assert.deepEqual() works by default.
install
With npm do:
npm install deep-equal
test
With npm do:
npm test
No vulnerabilities found.
Reason
no binaries found in the repo
Reason
no dangerous workflow patterns detected
Reason
0 existing vulnerabilities detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
security policy file detected
Details
- Info: security policy file detected: github.com/inspect-js/.github/SECURITY.md:1
- Info: Found linked content: github.com/inspect-js/.github/SECURITY.md:1
- Warn: One or no descriptive hints of disclosure, vulnerability, and/or timelines in security policy
- Info: Found text in security policy: github.com/inspect-js/.github/SECURITY.md:1
Reason
Found 0/30 approved changesets -- score normalized to 0
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-assert.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/node-deep-equal/node-assert.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-assert.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/node-deep-equal/node-assert.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-assert.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/node-deep-equal/node-assert.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-assert.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/node-deep-equal/node-assert.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node-assert.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/node-deep-equal/node-assert.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-assert.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/node-deep-equal/node-assert.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/node-assert.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/node-deep-equal/node-assert.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/require-allow-edits.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/inspect-js/node-deep-equal/require-allow-edits.yml/main?enable=pin
- Info: 0 out of 2 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 6 third-party GitHubAction dependencies pinned
Reason
0 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 0
Reason
no SAST tool detected
Details
- Warn: no pull requests merged into dev branch
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/node-assert.yml:1
- Warn: no topLevel permission defined: .github/workflows/node-aught.yml:1
- Warn: no topLevel permission defined: .github/workflows/node-pretest.yml:1
- Warn: no topLevel permission defined: .github/workflows/node-tens.yml:1
- Warn: no topLevel permission defined: .github/workflows/rebase.yml:1
- Warn: no topLevel permission defined: .github/workflows/require-allow-edits.yml:1
- Info: no jobLevel write permissions found
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Score
4.4
/10
Last Scanned on 2024-11-25
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More