Gathering detailed insights and metrics for fetch-node-website
Gathering detailed insights and metrics for fetch-node-website
Installations
npm install fetch-node-websiteDeveloper Guide
BETA
Typescript
Yes
Module System
ESM
Min. Node Version
>=18.18.0
Node Version
23.10.0
NPM Version
10.9.2
Releases
33
Languages
2
JavaScript
TypeScript
JavaScript (90.26%)
TypeScript (9.74%)
Developer
ehmicky
Download Statistics
Total Downloads
0
Last Day
0
Last Week
0
Last Month
0
Last Year
0
GitHub Statistics
Apache-2.0 License
4 Stars
970 Commits
3 Forks
2 Watchers
2 Branches
1 Contributors
Updated on May 25, 2025
Maintainers
1
Package Meta Information
Latest Version
9.0.1
Package Id
fetch-node-website@9.0.1
Unpacked Size
21.31 kB
Size
7.94 kB
File Count
8
NPM Version
10.9.2
Node Version
23.10.0
Published on
Mar 29, 2025
Total Downloads
Cumulative downloads
Total Downloads
NaN
Last Day
0%
NaN
Compared to previous day
Last Week
0%
NaN
Compared to previous week
Last Month
0%
NaN
Compared to previous month
Last Year
0%
NaN
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
Fetch releases on nodejs.org
Download release files available on
https://nodejs.org/dist/.
Example
1import fetchNodeWebsite from 'fetch-node-website'
2
3const stream = await fetchNodeWebsite('v12.8.0/node-v12.8.0-linux-x64.tar.gz')
4
5// Example with options
6const otherStream = await fetchNodeWebsite(
7 'v12.8.0/node-v12.8.0-linux-x64.tar.gz',
8 {
9 progress: true,
10 mirror: 'https://npmmirror.com/mirrors/node',
11 signal: new AbortController().signal,
12 },
13)Install
1npm install fetch-node-website
This package works in Node.js >=18.18.0.
This is an ES module. It must be loaded using
an import or import() statement,
not require(). If TypeScript is used, it must be configured to
output ES modules,
not CommonJS.
Usage
fetchNodeWebsite(path, options?)
path: string
options: object
Returns: Promise<Stream>
options
progress
Type: boolean
Default: false
Show a progress bar.
mirror
Type: string
Default: https://nodejs.org/dist
Base URL. Can be customized (for example https://npmmirror.com/mirrors/node).
The following environment variables can also be used: NODE_MIRROR,
NVM_NODEJS_ORG_MIRROR, N_NODE_MIRROR or NODIST_NODE_MIRROR.
signal
Type:
AbortSignal
Cancels the release download when the signal is aborted.
See also
nve: Run a specific Node.js version (CLI)nvexeca: Run a specific Node.js version (programmatic)get-node: Download Node.jspreferred-node-version: Get the preferred Node.js version of a project or usernode-version-alias: Resolve Node.js version aliases likelatest,ltsorerbiumnormalize-node-version: Normalize and validate Node.js versionsall-node-versions: List all available Node.js versions
Support
For any question, don't hesitate to submit an issue on GitHub.
Everyone is welcome regardless of personal background. We enforce a Code of conduct in order to promote a positive and inclusive environment.
Contributing
This project was made with ❤️. The simplest way to give back is by starring and sharing it online.
If the documentation is unclear or has a typo, please click on the page's Edit
button (pencil icon) and suggest a correction.
If you would like to help us fix a bug or add a new feature, please check our guidelines. Pull requests are welcome!
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0
Reason
7 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8
- Warn: Project is vulnerable to: GHSA-x4c5-c7rf-jjgv
- Warn: Project is vulnerable to: GHSA-h5c3-5r3r-rr8q
- Warn: Project is vulnerable to: GHSA-rmvr-2pp2-xj38
- Warn: Project is vulnerable to: GHSA-xx4v-prfh-6cgc
- Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
- Warn: Project is vulnerable to: GHSA-cxrh-j4jr-qwg3
Reason
2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1
Reason
Found 0/30 approved changesets -- score normalized to 0
Reason
no SAST tool detected
Details
- Warn: no pull requests merged into dev branch
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/workflow.yml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/workflow.yml:5: update your workflow using https://app.stepsecurity.io/secureworkflow/ehmicky/fetch-node-website/workflow.yml/main?enable=pin
- Info: 0 out of 1 third-party GitHubAction dependencies pinned
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch 'main'
Score
2.9
/10
Last Scanned on 2025-07-14
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More