npmpackage.info

Gathering detailed insights and metrics for deep-freeze-es6

Other packages similar to deep-freeze-es6

deep-freeze

0.0.1

recursively Object.freeze() objects and functions

react-freeze

1.0.4

React Freeze

@types/deep-freeze-strict

1.1.2

TypeScript definitions for deep-freeze-strict

es6-promise

4.2.8

A lightweight library that provides tools for organizing asynchronous code

Gathering detailed insights and metrics for deep-freeze-es6

deep-freeze-es6

deep freeze, works with Map and Set

3.0.2

JavaScript

1,262,359 3.6

Installations

npm install deep-freeze-es6

Pull Requests

Open

5

Total

169

Closed

25

Merged

139

Issues

Open

1

Total

7

Closed

6

Releases

v3.0.2

Published on 29 Jul 2023

v3.0.1

Published on 29 Jul 2023

v3.0.0

Published on 27 Jun 2023

v2.0.0

Published on 22 Nov 2022

View all 4 releases

Developer

christophehurpeau

Developer Guide

BETA

Module System

ESM

Min. Node Version

>=18.12.0

Typescript Support

Yes

Node Version

18.17.0

NPM Version

9.6.7 Statistics

9 Stars

179 Commits

5 Forks

3 Watching

7 Branches

3 Contributors

Updated on 22 Nov 2024

Languages

JavaScript (74.4%)

TypeScript (25.6%)

Total Downloads

Cumulative downloads

Total Downloads

1,262,359

Last day

-16.5%

1,144

Compared to previous day

Last week

18.9%

7,295

Compared to previous week

Last month

11.1%

31,013

Compared to previous month

Last year

23.3%

358,007

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dev Dependencies

@pob/commitlint-config @pob/eslint-config @pob/root @types/jest check-package-dependencies eslint jest

Versions

deep-freeze-es6

deep freeze, works with Map and Set

Quick example

1import { deepFreeze } from "deep-freeze-es6";
2
3const obj = deepFreeze({
4  map: new Map([
5    [1, 1],
6    [2, 2],
7  ]),
8});
9obj.map.clear(); // Error: map is read-only

No vulnerabilities found.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

8

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

3

Maintained

Determines if the project is "actively maintained".

0

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/gh-pages.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/christophehurpeau/deep-freeze-es6/gh-pages.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/gh-pages.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/christophehurpeau/deep-freeze-es6/gh-pages.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/gh-pages.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/christophehurpeau/deep-freeze-es6/gh-pages.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/push-renovate-pob_root.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/christophehurpeau/deep-freeze-es6/push-renovate-pob_root.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/push-renovate-prettier.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/christophehurpeau/deep-freeze-es6/push-renovate-prettier.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/push.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/christophehurpeau/deep-freeze-es6/push.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/push.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/christophehurpeau/deep-freeze-es6/push.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/push.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/christophehurpeau/deep-freeze-es6/push.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/christophehurpeau/deep-freeze-es6/release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/christophehurpeau/deep-freeze-es6/release.yml/main?enable=pin
Info: 0 out of 8 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 2 third-party GitHubAction dependencies pinned

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

License

Determines if the project has defined a license.

0

Fuzzing

Determines if the project uses fuzzing.

0

Security-Policy

Determines if the project has published a security policy.

0

SAST

Determines if the project uses static code analysis.

Score

3.6

/10

Last Scanned on 2024-11-25

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More