Gathering detailed insights and metrics for dns-js
Gathering detailed insights and metrics for dns-js
Installations
npm install dns-jsDeveloper Guide
BETA
Typescript
No
Module System
CommonJS
Min. Node Version
>= 14.x
Node Version
16.17.0
NPM Version
8.15.0
Score
86
Supply Chain
85.2
Quality
75.2
Maintenance
100
Vulnerability
100
License
Releases
Unable to fetch releases
Languages
1
JavaScript
JavaScript (100%)
Developer
mdns-js
Download Statistics
Total Downloads
760,600
Last Day
913
Last Week
7,589
Last Month
38,923
Last Year
181,165
GitHub Statistics
MIT License
17 Stars
71 Commits
17 Forks
3 Watchers
6 Branches
7 Contributors
Updated on Sep 20, 2024
Bundle Size
16.12 kB
Minified
6.01 kB
Minified + Gzipped
Maintainers
1
Package Meta Information
Latest Version
0.3.1
Package Id
dns-js@0.3.1
Unpacked Size
116.79 kB
Size
25.19 kB
File Count
103
NPM Version
8.15.0
Node Version
16.17.0
Total Downloads
Cumulative downloads
Total Downloads
760,600
Last Day
630.4%
913
Compared to previous day
Last Week
-59.6%
7,589
Compared to previous week
Last Month
49.8%
38,923
Compared to previous month
Last Year
92.3%
181,165
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dev Dependencies
4
dns-js
DNS packet parser specifically built for mdns-js but it should be generic enough to do general dns stuff.
NEW LOCATION
This project was moved into it's own organisation and changed name from node-mdns-js-packet to node-dns-js. Please update any git remotes you might have pointing here.
git remote set-url origin https://github.com/mdns-js/node-dns-js.git
You probably want to have a look at native-dns-packet first and if that does do what you need, you might start looking at this.
dns-js should produce the same output as native-dns-packet, it even uses it's test fixtures and borrows some parts of it.
This was made before i knew about native-dns-packet but since that still has some bugs in handling some mDNS packets I cant use it.
example
1var dns = require('dns-js'); 2 3/*some code that will get you a dns message buffer*/ 4 5var result = dns.DNSPacket.parse(message); 6 7console.log(result);
Look at examples/dnsresolver.js for a more detailed example.
Contribute
I will gladly accept any contributions as pull requests. Just run npm run lint on the code first so that the coding style is kept somewhat consistent. I miss doing this myself from time to time and I won't go ballistic if anyone else forget but I would really appreciate it.
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
dependency not pinned by hash detected -- score normalized to 3
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node.js.yaml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/mdns-js/node-dns-js/node.js.yaml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node.js.yaml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/mdns-js/node-dns-js/node.js.yaml/master?enable=pin
- Info: 0 out of 2 GitHub-owned GitHubAction dependencies pinned
- Info: 1 out of 1 npmCommand dependencies pinned
Reason
Found 3/22 approved changesets -- score normalized to 1
Reason
9 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8
- Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92
- Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
- Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h
- Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
- Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
- Warn: Project is vulnerable to: GHSA-j8xg-fqg3-53r7
Reason
0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/node.js.yaml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch 'master'
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 12 are checked with a SAST tool
Score
2.9
/10
Last Scanned on 2025-06-23
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More