Gathering detailed insights and metrics for opentelemetry-instrumentation-typeorm
Gathering detailed insights and metrics for opentelemetry-instrumentation-typeorm
Installations
npm install opentelemetry-instrumentation-typeormScore
87.8
Supply Chain
84.1
Quality
77.5
Maintenance
100
Vulnerability
98.2
License
Releases
415
opentelemetry-span-transformations@0.41.0
opentelemetry-span-transformations@0.41.0
Published on 21 May 2024
opentelemetry-propagator-selective@0.31.0
opentelemetry-propagator-selective@0.31.0
Published on 21 May 2024
opentelemetry-instrumentation-node-cache@0.41.0
opentelemetry-instrumentation-node-cache@0.41.0
Published on 21 May 2024
opentelemetry-resource-detector-service@0.30.0
opentelemetry-resource-detector-service@0.30.0
Published on 21 May 2024
opentelemetry-instrumentation-neo4j@0.41.0
opentelemetry-instrumentation-neo4j@0.41.0
Published on 21 May 2024
opentelemetry-instrumentation-kafkajs@0.41.0
opentelemetry-instrumentation-kafkajs@0.41.0
Published on 21 May 2024
Developer
Developer Guide
BETA
Module System
CommonJS
Min. Node Version
Typescript Support
Yes
Node Version
18.20.2
NPM Version
lerna/8.1.3/node@v18.20.2+x64 (linux)
Statistics
173 Stars
323 Commits
40 Forks
4 Watching
10 Branches
25 Contributors
Updated on 28 Nov 2024
Languages
TypeScript (99.85%)
JavaScript (0.15%)
Total Downloads
Cumulative downloads
Total Downloads
3,544,594
Last day
-49.4%
6,510
Compared to previous day
Last week
3.8%
58,398
Compared to previous week
Last month
13.9%
229,626
Compared to previous month
Last year
55.2%
1,902,559
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
4
Peer Dependencies
1
Versions
opentelemetry-ext-js
⚠️ Deprecation Notice ⚠️
This repository is no longer actively maintained. We are in the process of moving all instrumentation packages to the opentelemetry-js-contrib repository.
For the latest updates and contributions, please refer to the respective packages in the opentelemetry-js-contrib repository. We recommend transitioning your projects to use the instrumentation packages from the new repository.
Thank you for your understanding and continued support!
Conventions • Development Guide
js extensions for the open-telemetry project, from Aspecto with :heart:
The instrumentations in this repo are:
- vendor neutral
- strictly complies with open telemetry semantic conventions
- up to date with latest SDK version
Compatible with SDK stable ^1.17.1 and SDK experimental ^0.44.0
Instrumentations
| Instrumentation Package | Instrumented Lib | NPM |
|---|---|---|
| opentelemetry-instrumentation-kafkajs | kafkajs | Deprecated in favor of @opentelemetry/instrumentation-kafkajs |
| opentelemetry-instrumentation-aws-sdk | aws-sdk | Deprecated in favor of @opentelemetry/instrumentation-aws-sdk |
| opentelemetry-instrumentation-typeorm | TypeORM |   |
| opentelemetry-instrumentation-sequelize | Sequelize |   |
| opentelemetry-instrumentation-mongoose | mongoose | Deprecated in favor of @opentelemetry/instrumentation-mongoose |
| opentelemetry-instrumentation-elasticsearch | @elastic/elasticsearch |   |
| opentelemetry-instrumentation-neo4j | neo4j-driver |   |
| opentelemetry-instrumentation-amqplib | amqplib (RabbitMQ) | Deprecated in favor of @opentelemetry/instrumentation-amqplib |
| opentelemetry-instrumentation-express | express |   |
| opentelemetry-instrumentation-socket.io | socket.io | Deprecated in favor of @opentelemetry/instrumentation-socket.io |
| opentelemetry-instrumentation-node-cache | node-cache |   |
Resource Detectors
| Detector | Synchronicity | NPM |
|---|---|---|
| Service | Synchronous |   |
| Deployment | Synchronous |   |
| Git | Synchronous |   |
Propagators
| Propagator | Description | NPM |
|---|---|---|
| Selective | Selective control on inject / extract enabled on another propagator |   |
Compatibility Table
| Instrumentations Version | OpenTelemetry Core | OpenTelemetry Experimental |
|---|---|---|
| 0.35.x | ^1.8.0 | ^0.35.0 |
| 0.34.x | ^1.8.0 | ^0.34.0 |
| 0.32.x | ^1.0.0 | ^0.32.0 |
| 0.29.x | ^1.0.0 | ^0.29.0 |
| 0.28.x | ^1.0.0 | ^0.28.0 |
| 0.27.x | ^1.0.1 | ^0.27.0 |
| 0.26.x | ^1.0.0 | ^0.26.0 |
| 0.25.x | 0.25.0 | --- |
| 0.24.x | 0.24.0 | --- |
| 0.23.x | 0.23.0 | --- |
| 0.22.x | 0.22.0 | --- |
| 0.21.x | 0.21.0 | --- |
| 0.5.x | 0.20.0 | --- |
| 0.4.x | 0.19.0 | --- |
| 0.3.x | 0.18.0 | --- |
| 0.2.x | 0.17.0 | --- |
| 0.1.x | 0.16.0 | --- |
| 0.0.x | 0.15.0 | --- |
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
0 existing vulnerabilities detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0
Reason
Found 18/30 approved changesets -- score normalized to 6
Reason
SAST tool is not run on all commits -- score normalized to 2
Details
- Warn: 4 commits out of 18 are checked with a SAST tool
Reason
project is archived
Details
- Warn: Repository is archived.
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/daily-test.yml:1
- Warn: no topLevel permission defined: .github/workflows/prerelease.yml:1
- Warn: no topLevel permission defined: .github/workflows/publish.yml:1
- Warn: no topLevel permission defined: .github/workflows/test.yml:1
- Info: no jobLevel write permissions found
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/daily-test.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/aspecto-io/opentelemetry-ext-js/daily-test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/daily-test.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/aspecto-io/opentelemetry-ext-js/daily-test.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/daily-test.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/aspecto-io/opentelemetry-ext-js/daily-test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/prerelease.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/aspecto-io/opentelemetry-ext-js/prerelease.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/prerelease.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/aspecto-io/opentelemetry-ext-js/prerelease.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/aspecto-io/opentelemetry-ext-js/publish.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/aspecto-io/opentelemetry-ext-js/publish.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/aspecto-io/opentelemetry-ext-js/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/aspecto-io/opentelemetry-ext-js/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/aspecto-io/opentelemetry-ext-js/test.yml/master?enable=pin
- Info: 0 out of 9 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 1 third-party GitHubAction dependencies pinned
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Score
4.6
/10
Last Scanned on 2024-11-25
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More