Gathering detailed insights and metrics for npm-name
Gathering detailed insights and metrics for npm-name
Check whether a package or organization name is available on npm
Installations
npm install npm-nameDeveloper Guide
BETA
Typescript
Yes
Module System
ESM
Min. Node Version
>=18
Node Version
20.11.0
NPM Version
9.2.0
Score
94.8
Supply Chain
97.5
Quality
75.2
Maintenance
100
Vulnerability
99.3
License
Releases
12
Languages
2
JavaScript
TypeScript
JavaScript (91.21%)
TypeScript (8.79%)
Developer
sindresorhus
Download Statistics
Total Downloads
26,716,772
Last Day
30,642
Last Week
196,833
Last Month
857,564
Last Year
7,123,463
GitHub Statistics
MIT License
170 Stars
97 Commits
27 Forks
5 Watchers
1 Branches
17 Contributors
Updated on Mar 26, 2025
Bundle Size
47.19 kB
Minified
15.61 kB
Minified + Gzipped
Sponsor this package
Maintainers
1
Package Meta Information
Latest Version
8.0.0
Package Id
npm-name@8.0.0
Unpacked Size
8.74 kB
Size
3.23 kB
File Count
5
NPM Version
9.2.0
Node Version
20.11.0
Published on
Feb 10, 2024
Total Downloads
Cumulative downloads
Total Downloads
26,716,772
Last Day
-15.5%
30,642
Compared to previous day
Last Week
6.1%
196,833
Compared to previous week
Last Month
11.5%
857,564
Compared to previous month
Last Year
11.1%
7,123,463
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
npm-name
Check whether a package or organization name is available on npm
Install
1npm install npm-name
Usage
1import npmName from 'npm-name'; 2 3// Check a package name 4console.log(await npmName('chalk')); 5//=> false 6 7// Check an organization name 8console.log(await npmName('@ava')); 9//=> false 10 11console.log(await npmName('@abc123')); 12//=> true 13 14try { 15 await npmName('_ABC'); 16} catch (error) { 17 console.log(error.message); 18 // Invalid package name: _ABC 19 // - name cannot start with an underscore 20 // - name can no longer contain capital letters 21}
API
npmName(name, options?)
Check whether a package/organization name is available (not registered) on npm.
An organization name should start with @ and should not be a scoped package.
Returns a Promise<boolean> of whether the given name is available.
name
Type: string
The name to check.
options
Type: object
registryUrl
Default: User's configured npm registry URL.
THe registry URL to check name availability against.
Note: You're unlikely to need this option. Most use-cases are best solved by using the default. You should only use this option if you need to check a package name against a specific registry.
npmNameMany(names, options?)
Check whether multiple package/organization names are available (not registered) on npm.
Returns a Promise<Map> of name and status.
1import {npmNameMany} from 'npm-name'; 2 3const result = await npmNameMany(['chalk', '@sindresorhus/is', 'abc123']); 4 5console.log(result.get('chalk')); 6//=> false 7 8console.log(result.get('@sindresorhus/is')); 9//=> false 10 11console.log(result.get('abc123')); 12//=> true
names
Type: string[]
Multiple names to check.
options
Type: object
Same as npmName().
Related
- npm-name-cli - CLI for this module
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
0 existing vulnerabilities detected
Reason
license file detected
Details
- Info: project has a license file: license:0
- Info: FSF or OSI recognized license: MIT License: license:0
Reason
Found 10/30 approved changesets -- score normalized to 3
Reason
0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/main.yml:1
- Info: no jobLevel write permissions found
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/sindresorhus/npm-name/main.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/sindresorhus/npm-name/main.yml/main?enable=pin
- Warn: npmCommand not pinned by hash: .github/workflows/main.yml:21
- Info: 0 out of 2 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 1 npmCommand dependencies pinned
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch 'main'
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 10 are checked with a SAST tool
Score
3.7
/10
Last Scanned on 2025-05-05
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More