Gathering detailed insights and metrics for inferno-vnode-flags
Gathering detailed insights and metrics for inferno-vnode-flags
🔥 An extremely fast, React-like JavaScript library for building modern user interfaces
Installations
npm install inferno-vnode-flagsDeveloper Guide
BETA
Typescript
No
Module System
CommonJS
Node Version
21.4.0
NPM Version
lerna/6.6.2/node@v21.4.0+x64 (linux)
Score
99.6
Supply Chain
84.3
Quality
87.3
Maintenance
100
Vulnerability
100
License
Releases
188
Contributors
193
Unable to fetch Contributors
Languages
3
JavaScript
HTML
CSS
JavaScript (99.5%)
HTML (0.46%)
CSS (0.04%)
Developer
Download Statistics
Total Downloads
20,752,521
Last Day
11,600
Last Week
105,731
Last Month
557,970
Last Year
6,474,869
GitHub Statistics
16,099 Stars
6,290 Commits
634 Forks
266 Watching
6 Branches
193 Contributors
Bundle Size
1.46 kB
Minified
598.00 B
Minified + Gzipped
Maintainers
5
Package Meta Information
Latest Version
8.2.3
Package Id
inferno-vnode-flags@8.2.3
Unpacked Size
20.94 kB
Size
4.23 kB
File Count
12
NPM Version
lerna/6.6.2/node@v21.4.0+x64 (linux)
Node Version
21.4.0
Publised On
10 Dec 2023
Total Downloads
Cumulative downloads
Total Downloads
20,752,521
Last day
-55.8%
11,600
Compared to previous day
Last week
-19.2%
105,731
Compared to previous week
Last month
-3.3%
557,970
Compared to previous month
Last year
8.4%
6,474,869
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
No dependencies detected.
Versions
inferno-vnode-flags
Inferno VNode Flags is a small utility library for Inferno.
Usage of inferno-vnode-flags should be limited to assigning VNodeFlags and ChildFlags when using creating vNodes.
Install
npm install --save inferno-vnode-flags
Contents
VNodeFlags:
VNodeFlags.HtmlElementVNodeFlags.ComponentUnknownVNodeFlags.ComponentClassVNodeFlags.ComponentFunctionVNodeFlags.TextVNodeFlags.SvgElementVNodeFlags.InputElementVNodeFlags.TextareaElementVNodeFlags.SelectElementVNodeFlags.PortalVNodeFlags.ReCreate(JSX $ReCreate) always re-creates the vNodeVNodeFlags.ContentEditableVNodeFlags.FragmentVNodeFlags.InUseVnodeFlags.ForwardRefVNodeFlags.Normalized
VNodeFlags Masks:
VNodeFlags.ForwardRefComponentFunctional component wrapped in forward refVNodeFlags.FormElement- Is form elementVNodeFlags.Element- Is vNode elementVNodeFlags.Component- Is vNode ComponentVNodeFlags.DOMRef- Bit set when vNode holds DOM referenceVNodeFlags.InUseOrNormalized- VNode is used somewhere else or came from normalization processVNodeFlags.ClearInUseNormalized- Opposite mask of InUse or Normalized
ChildFlags
ChildFlags.UnknownChildrenneeds NormalizationChildFlags.HasInvalidChildrenis invalid (null, undefined, false, true)ChildFlags.HasVNodeChildren(JSX $HasVNodeChildren) is single vNode (Element/Component)ChildFlags.HasNonKeyedChildren(JSX $HasNonKeyedChildren) is Array of vNodes non keyed (no nesting, no holes)ChildFlags.HasKeyedChildren(JSX $HasKeyedChildren) is Array of vNodes keyed (no nesting, no holes)ChildFlags.HasTextChildren(JSX $HasTextChildren) vNode contains only text
ChildFlags Masks
ChildFlags.MultipleChildrenIs Array
You can easily combine multiple flags, by using bitwise operators. A common use case is an element that has keyed children:
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
13 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE.md:0
- Info: FSF or OSI recognized license: MIT License: LICENSE.md:0
Reason
SAST tool is run on all commits
Details
- Info: SAST configuration detected: CodeQL
- Info: all commits (2) are checked with a SAST tool
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Info: jobLevel 'actions' permission set to 'read': .github/workflows/codeql-analysis.yml:28
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/codeql-analysis.yml:29
- Warn: no topLevel permission defined: .github/workflows/codeql-analysis.yml:1
- Info: no jobLevel write permissions found
Reason
Found 2/30 approved changesets -- score normalized to 0
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/infernojs/inferno/codeql-analysis.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/infernojs/inferno/codeql-analysis.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/infernojs/inferno/codeql-analysis.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/infernojs/inferno/codeql-analysis.yml/master?enable=pin
- Info: 0 out of 4 GitHub-owned GitHubAction dependencies pinned
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
24 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q
- Warn: Project is vulnerable to: GHSA-49q7-c7j4-3p7m
- Warn: Project is vulnerable to: GHSA-977x-g7h5-7qgw
- Warn: Project is vulnerable to: GHSA-f7q4-pwc6-w24p
- Warn: Project is vulnerable to: GHSA-fc9h-whq2-v747
- Warn: Project is vulnerable to: GHSA-qwcr-r2fm-qrc7
- Warn: Project is vulnerable to: GHSA-cwfw-4gq5-mrqx
- Warn: Project is vulnerable to: GHSA-g95f-p29q-9xw4
- Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
- Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x
- Warn: Project is vulnerable to: GHSA-qw6h-vgh9-j6wx
- Warn: Project is vulnerable to: GHSA-43f8-2h32-f4cj
- Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
- Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j
- Warn: Project is vulnerable to: GHSA-rhx6-c78j-4q9w
- Warn: Project is vulnerable to: GHSA-m6fv-jmcg-4jfg
- Warn: Project is vulnerable to: GHSA-cm22-4g7w-348p
- Warn: Project is vulnerable to: GHSA-x3m3-4wpv-5vgc
- Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92
- Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h
- Warn: Project is vulnerable to: GHSA-gcx4-mw62-g8wm
- Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
- Warn: Project is vulnerable to: GHSA-4wf5-vphf-c2xc
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
Score
5.4
/10
Last Scanned on 2024-12-23
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More