Gathering detailed insights and metrics for dns-js
Gathering detailed insights and metrics for dns-js
Installations
npm install dns-jsReleases
Unable to fetch releases
Developer
mdns-js
Developer Guide
BETA
Module System
CommonJS
Min. Node Version
>= 14.x
Typescript Support
No
Node Version
16.17.0
NPM Version
8.15.0
Statistics
17 Stars
71 Commits
18 Forks
4 Watching
6 Branches
7 Contributors
Updated on 20 Sept 2024
Languages
JavaScript (100%)
Total Downloads
Cumulative downloads
Total Downloads
649,562
Last day
-62.4%
260
Compared to previous day
Last week
-29.2%
3,356
Compared to previous week
Last month
33%
17,052
Compared to previous month
Last year
39.3%
119,826
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dev Dependencies
4
Versions
dns-js
DNS packet parser specifically built for mdns-js but it should be generic enough to do general dns stuff.
NEW LOCATION
This project was moved into it's own organisation and changed name from node-mdns-js-packet to node-dns-js. Please update any git remotes you might have pointing here.
git remote set-url origin https://github.com/mdns-js/node-dns-js.git
You probably want to have a look at native-dns-packet first and if that does do what you need, you might start looking at this.
dns-js should produce the same output as native-dns-packet, it even uses it's test fixtures and borrows some parts of it.
This was made before i knew about native-dns-packet but since that still has some bugs in handling some mDNS packets I cant use it.
example
1var dns = require('dns-js'); 2 3/*some code that will get you a dns message buffer*/ 4 5var result = dns.DNSPacket.parse(message); 6 7console.log(result);
Look at examples/dnsresolver.js for a more detailed example.
Contribute
I will gladly accept any contributions as pull requests. Just run npm run lint on the code first so that the coding style is kept somewhat consistent. I miss doing this myself from time to time and I won't go ballistic if anyone else forget but I would really appreciate it.
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
dependency not pinned by hash detected -- score normalized to 3
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node.js.yaml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/mdns-js/node-dns-js/node.js.yaml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node.js.yaml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/mdns-js/node-dns-js/node.js.yaml/master?enable=pin
- Info: 0 out of 2 GitHub-owned GitHubAction dependencies pinned
- Info: 1 out of 1 npmCommand dependencies pinned
Reason
7 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92
- Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h
- Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
- Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
- Warn: Project is vulnerable to: GHSA-j8xg-fqg3-53r7
Reason
Found 3/22 approved changesets -- score normalized to 1
Reason
0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/node.js.yaml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch 'master'
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 12 are checked with a SAST tool
Score
3.1
/10
Last Scanned on 2024-11-18
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More