Gathering detailed insights and metrics for hash-base
Gathering detailed insights and metrics for hash-base
Installations
npm install hash-baseDeveloper Guide
BETA
Typescript
No
Module System
CommonJS
Min. Node Version
>=4
Node Version
14.0.0
NPM Version
6.14.4
Score
99.5
Supply Chain
79.9
Quality
81
Maintenance
100
Vulnerability
100
License
Releases
Unable to fetch releases
Languages
1
JavaScript
JavaScript (100%)
Developer
crypto-browserify
Download Statistics
Total Downloads
3,682,850,888
Last Day
661,061
Last Week
12,316,773
Last Month
54,375,742
Last Year
599,150,828
GitHub Statistics
MIT License
11 Stars
70 Commits
10 Forks
3 Watchers
2 Branches
30 Contributors
Updated on Nov 24, 2024
Bundle Size
37.35 kB
Minified
10.71 kB
Minified + Gzipped
Maintainers
2
Package Meta Information
Latest Version
3.1.0
Package Id
hash-base@3.1.0
Size
2.58 kB
NPM Version
6.14.4
Node Version
14.0.0
Published on
May 01, 2020
Total Downloads
Cumulative downloads
Total Downloads
3,682,850,888
Last Day
-10.9%
661,061
Compared to previous day
Last Week
-10.7%
12,316,773
Compared to previous week
Last Month
1.4%
54,375,742
Compared to previous month
Last Year
15.8%
599,150,828
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
3
hash-base
Abstract base class to inherit from if you want to create streams implementing the same API as node crypto Hash (for Cipher / Decipher check crypto-browserify/cipher-base).
Example
1const HashBase = require('hash-base') 2const inherits = require('inherits') 3 4// our hash function is XOR sum of all bytes 5function MyHash () { 6 HashBase.call(this, 1) // in bytes 7 8 this._sum = 0x00 9} 10 11inherits(MyHash, HashBase) 12 13MyHash.prototype._update = function () { 14 for (let i = 0; i < this._block.length; ++i) this._sum ^= this._block[i] 15} 16 17MyHash.prototype._digest = function () { 18 return this._sum 19} 20 21const data = Buffer.from([ 0x00, 0x42, 0x01 ]) 22const hash = new MyHash().update(data).digest() 23console.log(hash) // => 67
You also can check source code or crypto-browserify/md5.js
LICENSE
MIT
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
0 existing vulnerabilities detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
security policy file detected
Details
- Info: security policy file detected: github.com/browserify/.github/SECURITY.md:1
- Info: Found linked content: github.com/browserify/.github/SECURITY.md:1
- Info: Found disclosure, vulnerability, and/or timelines in security policy: github.com/browserify/.github/SECURITY.md:1
- Info: Found text in security policy: github.com/browserify/.github/SECURITY.md:1
Reason
Found 4/28 approved changesets -- score normalized to 1
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/rebase.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/browserify/hash-base/rebase.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/rebase.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/browserify/hash-base/rebase.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/require-allow-edits.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/browserify/hash-base/require-allow-edits.yml/master?enable=pin
- Info: 0 out of 1 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 2 third-party GitHubAction dependencies pinned
Reason
0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: jobLevel 'contents' permission set to 'write': .github/workflows/rebase.yml:11
- Info: jobLevel 'pull-requests' permission set to 'read': .github/workflows/rebase.yml:12
- Warn: no topLevel permission defined: .github/workflows/node-aught.yml:1
- Warn: no topLevel permission defined: .github/workflows/node-pretest.yml:1
- Warn: no topLevel permission defined: .github/workflows/node-tens.yml:1
- Info: topLevel 'contents' permission set to 'read': .github/workflows/node-twenties.yml:6
- Info: topLevel 'contents' permission set to 'read': .github/workflows/rebase.yml:6
- Warn: no topLevel permission defined: .github/workflows/require-allow-edits.yml:1
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch 'master'
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 7 are checked with a SAST tool
Score
4.2
/10
Last Scanned on 2025-06-23
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More