Gathering detailed insights and metrics for dekey-eth-json-rpc-filters
Gathering detailed insights and metrics for dekey-eth-json-rpc-filters
json-rpc-engine middleware implementing ethereum filter methods
Installations
npm install dekey-eth-json-rpc-filtersDeveloper Guide
BETA
Typescript
No
Module System
CommonJS
Min. Node Version
>=12.0.0
Node Version
12.19.0
NPM Version
6.14.8
Releases
11
Languages
1
JavaScript
JavaScript (100%)
Developer
MetaMask
Download Statistics
Total Downloads
0
Last Day
0
Last Week
0
Last Month
0
Last Year
0
GitHub Statistics
ISC License
30 Stars
204 Commits
41 Forks
46 Watchers
16 Branches
254 Contributors
Updated on Jul 08, 2025
Maintainers
1
Package Meta Information
Latest Version
4.2.2
Package Id
dekey-eth-json-rpc-filters@4.2.2
Unpacked Size
24.03 kB
Size
6.90 kB
File Count
13
NPM Version
6.14.8
Node Version
12.19.0
Total Downloads
Cumulative downloads
Total Downloads
NaN
eth-json-rpc-filters
json-rpc-engine middleware implementing ethereum filter methods.
Backed by an eth-block-tracker and web3 provider interface (web3.currentProvider).
supported rpc methods
eth_newFiltereth_newBlockFiltereth_newPendingTransactionFiltereth_uninstallFiltereth_getFilterChangeseth_getFilterLogs
usage
basic usage:
1const filterMiddleware = createFilterMiddleware({ blockTracker, provider }) 2engine.push(filterMiddleware)
cleanup:
1// remove blockTracker handler to free middleware for garbage collection 2filterMiddleware.destroy()
Running Tests
1yarn test
Changelog
2.0
- expect EthBlockTracker@4
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
all changesets reviewed
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: ISC License: LICENSE:0
Reason
security policy file detected
Details
- Info: security policy file detected: github.com/MetaMask/.github/SECURITY.md:1
- Info: Found linked content: github.com/MetaMask/.github/SECURITY.md:1
- Info: Found disclosure, vulnerability, and/or timelines in security policy: github.com/MetaMask/.github/SECURITY.md:1
- Info: Found text in security policy: github.com/MetaMask/.github/SECURITY.md:1
Reason
branch protection is not maximal on development and all release branches
Details
- Info: 'allow deletion' disabled on branch 'main'
- Info: 'force pushes' disabled on branch 'main'
- Warn: 'branch protection settings apply to administrators' is disabled on branch 'main'
- Info: 'stale review dismissal' is required to merge on branch 'main'
- Warn: required approving review count is 1 on branch 'main'
- Info: codeowner review is required on branch 'main'
- Info: 'last push approval' is required to merge on branch 'main'
- Info: status check found to merge onto on branch 'main'
- Info: PRs are required in order to make changes on branch 'main'
Reason
SAST tool is not run on all commits -- score normalized to 6
Details
- Warn: 19 commits out of 30 are checked with a SAST tool
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/build-test.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/MetaMask/eth-json-rpc-filters/build-test.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/create-release-pr.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/MetaMask/eth-json-rpc-filters/create-release-pr.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/create-release-pr.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/MetaMask/eth-json-rpc-filters/create-release-pr.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-release.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/MetaMask/eth-json-rpc-filters/publish-release.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish-release.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/MetaMask/eth-json-rpc-filters/publish-release.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/security-code-scanner.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/MetaMask/eth-json-rpc-filters/security-code-scanner.yml/main?enable=pin
- Info: 0 out of 6 third-party GitHubAction dependencies pinned
Reason
0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: jobLevel 'contents' permission set to 'write': .github/workflows/create-release-pr.yml:21
- Warn: jobLevel 'contents' permission set to 'write': .github/workflows/publish-release.yml:10
- Info: jobLevel 'actions' permission set to 'read': .github/workflows/security-code-scanner.yml:22
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/security-code-scanner.yml:23
- Warn: jobLevel 'security-events' permission set to 'write': .github/workflows/security-code-scanner.yml:24
- Warn: no topLevel permission defined: .github/workflows/build-test.yml:1
- Warn: no topLevel permission defined: .github/workflows/create-release-pr.yml:1
- Warn: no topLevel permission defined: .github/workflows/publish-release.yml:1
- Warn: no topLevel permission defined: .github/workflows/security-code-scanner.yml:1
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
14 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-434g-2637-qmqr
- Warn: Project is vulnerable to: GHSA-49q7-c7j4-3p7m
- Warn: Project is vulnerable to: GHSA-977x-g7h5-7qgw
- Warn: Project is vulnerable to: GHSA-f7q4-pwc6-w24p
- Warn: Project is vulnerable to: GHSA-fc9h-whq2-v747
- Warn: Project is vulnerable to: GHSA-vjh7-7g9h-fjfh
- Warn: Project is vulnerable to: GHSA-78xj-cgh5-2h22
- Warn: Project is vulnerable to: GHSA-2p57-rm9w-gvfp
- Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j
- Warn: Project is vulnerable to: GHSA-584q-6j8j-r5pm
- Warn: Project is vulnerable to: GHSA-f5x3-32g6-xq36
- Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q
Score
5.2
/10
Last Scanned on 2025-07-07
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More