Gathering detailed insights and metrics for request-promise-native
Gathering detailed insights and metrics for request-promise-native
The simplified HTTP request client 'request' with Promise support. Powered by native ES6 promises.
Installations
npm install request-promise-nativeDeveloper Guide
BETA
Typescript
No
Module System
CommonJS
Min. Node Version
>=0.12.0
Node Version
10.21.0
NPM Version
6.14.4
Score
58.7
Supply Chain
85
Quality
74.4
Maintenance
50
Vulnerability
97.3
License
Releases
Unable to fetch releases
Contributors
10
Unable to fetch Contributors
Languages
1
JavaScript
JavaScript (100%)
Developer
request
Download Statistics
Total Downloads
2,024,259,278
Last Day
352,226
Last Week
2,720,462
Last Month
16,308,786
Last Year
181,983,136
GitHub Statistics
1,098 Stars
55 Commits
63 Forks
15 Watching
4 Branches
10 Contributors
Maintainers
1
Package Meta Information
Latest Version
1.0.9
Package Id
request-promise-native@1.0.9
Size
3.56 kB
NPM Version
6.14.4
Node Version
10.21.0
Publised On
22 Jul 2020
Total Downloads
Cumulative downloads
Total Downloads
2,024,259,278
Last day
-32.7%
352,226
Compared to previous day
Last week
-9.4%
2,720,462
Compared to previous week
Last month
-26.1%
16,308,786
Compared to previous month
Last year
-23.3%
181,983,136
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
3
Peer Dependencies
1
Versions
Request-Promise-Native
Deprecated!
As of Feb 11th 2020, request is fully deprecated. No new changes are expected to land. In fact, none have landed for some time. This package is also deprecated because it depends on request.
Fyi, here is the reasoning of request's deprecation and a list of alternative libraries.
This package is similar to request-promise but uses native ES6+ promises.
Please refer to the request-promise documentation. Everything applies to request-promise-native except the following:
- Instead of using Bluebird promises this library uses native ES6+ promises.
- Native ES6+ promises may have fewer features than Bluebird promises do. In particular, the
.finally(...)method was not included until Node v10.
Installation
This module is installed via npm:
npm install --save request
npm install --save request-promise-native
request is defined as a peer-dependency and thus has to be installed separately.
Migration from request-promise to request-promise-native
- Go through the migration instructions to upgrade to
request-promisev4. - Ensure that you don't use Bluebird-specific features on the promise returned by your request calls. In particular, you can't use
.finally(...)anymore. - You are done.
Contributing
To set up your development environment:
- clone the repo to your desktop,
- in the shell
cdto the main folder, - hit
npm install, - hit
npm install gulp -gif you haven't installed gulp globally yet, and - run
gulp dev. (Or runnode ./node_modules/.bin/gulp devif you don't want to install gulp globally.)
gulp dev watches all source files and if you save some changes it will lint the code and execute all tests. The test coverage report can be viewed from ./coverage/lcov-report/index.html.
If you want to debug a test you should use gulp test-without-coverage to run all tests without obscuring the code by the test coverage instrumentation.
Change History
- v1.0.9 (2020-07-21)
- Security fix: bumped
request-promise-corewhich bumpslodashto^4.17.19following this advisory.
- Security fix: bumped
- v1.0.8 (2019-11-03)
- Security fix: bumped
request-promise-corewhich bumpslodashto^4.17.15. See vulnerabilty reports. (Thanks to @aw-davidson for reporting this in issue #49.)
- Security fix: bumped
- v1.0.7 (2019-02-14)
- Corrected mistakenly set
tough-cookieversion, now^2.3.3(Thanks to @evocateur for pointing this out.) - If you installed
request-promise-native@1.0.6please make sure after the upgrade thatrequestandrequest-promise-nativeuse the same physical copy oftough-cookie.
- Corrected mistakenly set
- v1.0.6 (2019-02-14)
- Using stricter
tough-cookie@~2.3.3to avoid installingtough-cookie@3which introduces breaking changes (Thanks to @jasonmit for pull request #33) - Security fix: bumped
lodashto^4.17.11, see vulnerabilty reports
- Using stricter
- v1.0.5 (2017-09-22)
- Upgraded
tough-cookieto a version without regex DoS vulnerability (Thanks to @sophieklm for pull request #13)
- Upgraded
- v1.0.4 (2017-05-07)
- Fix that allows to use
tough-cookiefor cookie creation
- Fix that allows to use
- v1.0.3 (2016-08-08)
- v1.0.2 (2016-07-18)
- Fix for using with module bundlers like Webpack and Browserify
- v1.0.1 (2016-07-17)
- Fixed
@request/promise-coreversion for safer versioning
- Fixed
- v1.0.0 (2016-07-15)
- Initial version similar to
request-promisev4
- Initial version similar to
License (ISC)
In case you never heard about the ISC license it is functionally equivalent to the MIT license.
See the LICENSE file for details.
No vulnerabilities found.
Reason
no binaries found in the repo
Reason
0 existing vulnerabilities detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: ISC License: LICENSE:0
Reason
Found 5/24 approved changesets -- score normalized to 2
Reason
0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch 'master'
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 11 are checked with a SAST tool
Score
3.3
/10
Last Scanned on 2024-12-16
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More