npmpackage.info

Gathering detailed insights and metrics for jsdoc-region-tag

jsdoc-region-tag

3.0.0

Apache-2.0

JavaScript

Installations

npm install jsdoc-region-tag

Pull Requests

Open

5

Total

133

Closed

32

Merged

96

Issues

Open

2

Total

13

Closed

11

Releases

v3.0.0

Published on 10 Aug 2023

v2.0.1

Published on 07 Sept 2022

v2.0.0

Published on 06 Jun 2022

jsdoc-region-tag v1.3.1

v1.3.1

Published on 11 Aug 2021

v1.3.0

Published on 08 Jul 2021

v1.2.0

Published on 07 Jul 2021

View all 11 releases

Developer

googleapis

Developer Guide

BETA

Module System

CommonJS

Min. Node Version

>=14.0.0

Typescript Support

No

Node Version

14.21.3

NPM Version

6.14.18 Statistics

6 Stars

105 Commits

5 Forks

42 Watching

29 Branches

105 Contributors

Updated on 21 Oct 2024

Languages

JavaScript (90.48%)

Python (9.52%)

Total Downloads

Cumulative downloads

Total Downloads

6,702,537

Last day

-16.4%

1,877

Compared to previous day

Last week

41.3%

12,081

Compared to previous week

Last month

65.6%

33,960

Compared to previous month

Last year

-55.5%

188,044

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

glob

Dev Dependencies

c8 gts mocha typescript

Versions

Region Tag JSDoc Plugin

Reads a samples directory, extracting samples between [START]/[STOP] tags, allowing these samples to be placed in JSDoc comments, like so:

1/*
2  * @example <caption>include:samples/document-snippets/cluster.js</caption>
3  * region_tag:bigtable_delete_cluster
4  */

Usage

npm i jsdoc-region-tag.

add the plugin to your .jsdoc.js.

1module.exports = {
2  plugins: [
3    'jsdoc-region-tag'
4  ]
5}

Configuration

The environment varaible SAMPLES_DIRECTORY can be set, to set a samples directory other than ./samples.

License

Apache-2.0

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

Security-Policy

Determines if the project has published a security policy.

10

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

10

License

Determines if the project has defined a license.

2

SAST

Determines if the project uses static code analysis.

0

Maintained

Determines if the project is "actively maintained".

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/googleapis/jsdoc-region-tag/ci.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/googleapis/jsdoc-region-tag/ci.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/googleapis/jsdoc-region-tag/ci.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/googleapis/jsdoc-region-tag/ci.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/googleapis/jsdoc-region-tag/ci.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/googleapis/jsdoc-region-tag/ci.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/googleapis/jsdoc-region-tag/ci.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/googleapis/jsdoc-region-tag/ci.yaml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yaml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/googleapis/jsdoc-region-tag/ci.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/response.yaml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/googleapis/jsdoc-region-tag/response.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/response.yaml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/googleapis/jsdoc-region-tag/response.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/response.yaml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/googleapis/jsdoc-region-tag/response.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/response.yaml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/googleapis/jsdoc-region-tag/response.yaml/main?enable=pin
Warn: npmCommand not pinned by hash: .kokoro/browser-test.sh:27
Warn: npmCommand not pinned by hash: .kokoro/docs.sh:23
Warn: npmCommand not pinned by hash: .kokoro/lint.sh:23
Warn: npmCommand not pinned by hash: .kokoro/lint.sh:29
Warn: npmCommand not pinned by hash: .kokoro/publish.sh:29
Warn: npmCommand not pinned by hash: .kokoro/release/docs-devsite.sh:27
Warn: npmCommand not pinned by hash: .kokoro/release/docs-devsite.sh:28
Warn: npmCommand not pinned by hash: .kokoro/release/docs.sh:27
Warn: npmCommand not pinned by hash: .kokoro/release/docs.sh:31
Warn: npmCommand not pinned by hash: .kokoro/samples-test.sh:35
Warn: npmCommand not pinned by hash: .kokoro/samples-test.sh:40
Warn: npmCommand not pinned by hash: .kokoro/system-test.sh:34
Warn: npmCommand not pinned by hash: .kokoro/test.sh:23
Warn: npmCommand not pinned by hash: .github/workflows/ci.yaml:23
Warn: npmCommand not pinned by hash: .github/workflows/ci.yaml:26
Warn: npmCommand not pinned by hash: .github/workflows/ci.yaml:48
Warn: npmCommand not pinned by hash: .github/workflows/ci.yaml:57
Info: 0 out of 12 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 1 third-party GitHubAction dependencies pinned
Info: 0 out of 17 npmCommand dependencies pinned

0

Fuzzing

Determines if the project uses fuzzing.

Score

5.7

/10

Last Scanned on 2024-11-25

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More