Gathering detailed insights and metrics for graphql-scalars
Gathering detailed insights and metrics for graphql-scalars
A library of custom GraphQL Scalars for creating precise type-safe GraphQL schemas.
Installations
npm install graphql-scalarsDeveloper
Developer Guide
BETA
Module System
ESM
Min. Node Version
>=10
Typescript Support
No
Node Version
18.19.1
NPM Version
10.2.4
Statistics
1,885 Stars
2,617 Commits
134 Forks
14 Watching
13 Branches
69 Contributors
Updated on 27 Nov 2024
Languages
TypeScript (92.17%)
MDX (7.44%)
JavaScript (0.39%)
Shell (0.01%)
Total Downloads
Cumulative downloads
Total Downloads
87,265,416
Last day
-3.3%
164,467
Compared to previous day
Last week
3%
866,767
Compared to previous week
Last month
18.3%
3,765,300
Compared to previous month
Last year
48.1%
37,445,878
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Versions
A library of custom GraphQL scalar types for creating precise type-safe GraphQL schemas.
Getting Started
Please refer to our website for all the documentation related to GraphQL Scalars
Contributions
Contributions, issues and feature requests are very welcome. If you are using this package and fixed a bug for yourself, please consider submitting a PR!
And if this is your first time contributing to this project, please do read our Contributor Workflow Guide before you get started off.
Code of Conduct
Help us keep GraphQL Scalars open and inclusive. Please read and follow our Code of Conduct as adopted from Contributor Covenant
License
Released under the MIT license.
Thanks
This library was originally published as @okgrow/graphql-scalars. It was created and maintained by
the company ok-grow. We, The Guild, took over the maintenance of that library
later on.
We also like to say thank you to @adriano-di-giovanni for
being extremely generous and giving us the graphql-scalars name on npm which was previously owned
by his own library.
And thanks to excitement-engineer for
graphql-iso-date,
stems for graphql-bigint,
taion for
graphql-type-json,
langpavel for
GraphQLTimestamp.js,
vespertilian for Duration scalar,
maxwellsmart84 for NonEmptyString scalar
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
2 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-8hc4-vh64-cxmj
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
Reason
Found 0/27 approved changesets -- score normalized to 0
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/github.yml:1
- Warn: no topLevel permission defined: .github/workflows/main.yml:1
- Warn: no topLevel permission defined: .github/workflows/pr.yml:1
- Warn: no topLevel permission defined: .github/workflows/release.yml:1
- Warn: no topLevel permission defined: .github/workflows/website.yml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/github.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/Urigo/graphql-scalars/github.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/github.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/Urigo/graphql-scalars/github.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/website.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/Urigo/graphql-scalars/website.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/website.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/Urigo/graphql-scalars/website.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/website.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/Urigo/graphql-scalars/website.yml/master?enable=pin
- Info: 0 out of 2 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 3 third-party GitHubAction dependencies pinned
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch 'master'
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 30 are checked with a SAST tool
Score
4.2
/10
Last Scanned on 2024-11-25
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More