npmpackage.info

Gathering detailed insights and metrics for hexo-renderer-ejs

Other packages similar to hexo-renderer-ejs

hexo-renderers

3.0.0

All in one hexo renderers

hexo-renderer-extended-ejs

1.0.0

Extended EJS renderer for Hexo

hexo-renderer-ejs2

0.1.0

EJS v2 renderer plugin for Hexo

Gathering detailed insights and metrics for hexo-renderer-ejs

hexo-renderer-ejs

EJS renderer for Hexo

2.0.0

MIT

JavaScript

4.63 kB

4,788,466 4.6

Installations

npm install hexo-renderer-ejs

Developer Guide

BETA

Typescript

No

Module System

CommonJS

Min. Node Version

>=12

Node Version

16.8.0

NPM Version

6.14.15 Score

80.8

Supply Chain

58.3

Quality

82.3

Maintenance

100

Vulnerability

100

License

Pull Requests

Open

1

Total

71

Closed

28

Merged

42

Issues

Open

0

Total

3

Closed

3

Releases

2.0.0

Published on 26 Nov 2021

1.0.0

Published on 06 Sept 2019

0.3.1

Published on 27 Jul 2017

0.3.0

Published on 30 Mar 2017

View all 4 releases

Contributors

Unable to fetch Contributors

View all 40 contributors

Languages

JavaScript

JavaScript (100%)

Developer

hexojs

Download Statistics

Total Downloads

4,788,466

Last Day

3,260

Last Week

16,363

Last Month

84,354

Last Year

1,093,348

GitHub Statistics

51 Stars

67 Commits

12 Forks

12 Watching

3 Branches

40 Contributors

Bundle Size

12.05 kB

Minified

4.63 kB

Minified + Gzipped

Bundlephobia

Maintainers

Package Meta Information

Latest Version

2.0.0

Package Id

hexo-renderer-ejs@2.0.0

Unpacked Size

2.92 kB

Size

1.68 kB

File Count

NPM Version

6.14.15

Node Version

16.8.0

Publised On

26 Nov 2021

Total Downloads

Cumulative downloads

Total Downloads

4,788,466

Last day

-6.4%

3,260

Compared to previous day

Last week

-18.3%

16,363

Compared to previous week

Last month

-1.3%

84,354

Compared to previous month

Last year

57.8%

1,093,348

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

ejs

Dev Dependencies

chai eslint eslint-config-hexo hexo-fs mocha nyc

Versions

EJS renderer

Add support for EJS.

Now works with EJS v3!

Install

1$ npm install hexo-renderer-ejs --save

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

10

License

Determines if the project has defined a license.

8

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

Maintained

Determines if the project is "actively maintained".

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/linter.yml:9: update your workflow using https://app.stepsecurity.io/secureworkflow/hexojs/hexo-renderer-ejs/linter.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/linter.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/hexojs/hexo-renderer-ejs/linter.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/linter.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/hexojs/hexo-renderer-ejs/linter.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tester.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/hexojs/hexo-renderer-ejs/tester.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tester.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/hexojs/hexo-renderer-ejs/tester.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tester.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/hexojs/hexo-renderer-ejs/tester.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tester.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/hexojs/hexo-renderer-ejs/tester.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tester.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/hexojs/hexo-renderer-ejs/tester.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tester.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/hexojs/hexo-renderer-ejs/tester.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/tester.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/hexojs/hexo-renderer-ejs/tester.yml/master?enable=pin
Warn: npmCommand not pinned by hash: .github/workflows/linter.yml:23
Warn: npmCommand not pinned by hash: .github/workflows/tester.yml:27
Warn: npmCommand not pinned by hash: .github/workflows/tester.yml:51
Info: 0 out of 9 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 1 third-party GitHubAction dependencies pinned
Info: 0 out of 3 npmCommand dependencies pinned

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Fuzzing

Determines if the project uses fuzzing.

0

Security-Policy

Determines if the project has published a security policy.

0

SAST

Determines if the project uses static code analysis.

Score

4.6

/10

Last Scanned on 2025-01-27

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More