Gathering detailed insights and metrics for define-data-property
Gathering detailed insights and metrics for define-data-property
Define a data property on an object. Will fall back to assignment in an engine without descriptors.
Installations
npm install define-data-propertyScore
99
Supply Chain
89.3
Quality
78.2
Maintenance
100
Vulnerability
100
License
Releases
Unable to fetch releases
Contributors
1
Developer
ljharb
Developer Guide
BETA
Module System
CommonJS, ESM
Min. Node Version
>= 0.4
Typescript Support
Yes
Node Version
21.6.0
NPM Version
10.2.4
Statistics
4 Stars
43 Commits
2 Watching
2 Branches
1 Contributors
Updated on 07 Aug 2024
Languages
JavaScript (100%)
Total Downloads
Cumulative downloads
Total Downloads
1,889,846,621
Last day
-4.9%
7,630,863
Compared to previous day
Last week
2.3%
43,940,391
Compared to previous week
Last month
7.3%
182,831,573
Compared to previous month
Last year
875%
1,714,049,279
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
3
Dev Dependencies
27
@ljharb/eslint-config@types/call-bind@types/define-properties@types/es-value-fixtures@types/for-each@types/get-intrinsic@types/gopd@types/has-property-descriptors@types/object-inspect@types/object.getownpropertydescriptors@types/tapeaudauto-changeloges-value-fixtureseslintevalmdfor-eachhasownin-publishnpmignorenycobject-inspectobject.getownpropertydescriptorsreflect.ownkeyssafe-publish-latesttapetypescript
Versions
define-data-property 
Define a data property on an object. Will fall back to assignment in an engine without descriptors.
The three non* argument can also be passed null, which will use the existing state if available.
The loose argument will mean that if you attempt to set a non-normal data property, in an environment without descriptor support, it will fall back to normal assignment.
Usage
1var defineDataProperty = require('define-data-property'); 2var assert = require('assert'); 3 4var obj = {}; 5defineDataProperty(obj, 'key', 'value'); 6defineDataProperty( 7 obj, 8 'key2', 9 'value', 10 true, // nonEnumerable, optional 11 false, // nonWritable, optional 12 true, // nonConfigurable, optional 13 false // loose, optional 14); 15 16assert.deepEqual( 17 Object.getOwnPropertyDescriptors(obj), 18 { 19 key: { 20 configurable: true, 21 enumerable: true, 22 value: 'value', 23 writable: true, 24 }, 25 key2: { 26 configurable: false, 27 enumerable: false, 28 value: 'value', 29 writable: true, 30 }, 31 } 32);
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
0 existing vulnerabilities detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
security policy file detected
Details
- Info: security policy file detected: github.com/ljharb/.github/SECURITY.md:1
- Info: Found linked content: github.com/ljharb/.github/SECURITY.md:1
- Warn: One or no descriptive hints of disclosure, vulnerability, and/or timelines in security policy
- Info: Found text in security policy: github.com/ljharb/.github/SECURITY.md:1
Reason
Found 0/30 approved changesets -- score normalized to 0
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/require-allow-edits.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/ljharb/define-data-property/require-allow-edits.yml/main?enable=pin
- Info: 0 out of 1 third-party GitHubAction dependencies pinned
Reason
no SAST tool detected
Details
- Warn: no pull requests merged into dev branch
Reason
0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/node-aught.yml:1
- Info: topLevel 'contents' permission set to 'read': .github/workflows/node-pretest.yml:6
- Warn: no topLevel permission defined: .github/workflows/node-tens.yml:1
- Warn: no topLevel permission defined: .github/workflows/rebase.yml:1
- Warn: no topLevel permission defined: .github/workflows/require-allow-edits.yml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Score
4.4
/10
Last Scanned on 2024-11-18
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More