Gathering detailed insights and metrics for spdx-is-osi
Installations
npm install spdx-is-osiDeveloper Guide
BETA
Typescript
No
Module System
N/A
Node Version
8.11.3
NPM Version
5.6.0
Score
58.6
Supply Chain
56.7
Quality
74.5
Maintenance
100
Vulnerability
99.6
License
Releases
Unable to fetch releases
Contributors
7
Unable to fetch Contributors
Languages
1
JavaScript
JavaScript (100%)
Developer
Download Statistics
Total Downloads
4,317
Last Day
1
Last Week
9
Last Month
16
Last Year
106
GitHub Statistics
22 Commits
1 Forks
2 Watching
2 Branches
7 Contributors
Bundle Size
18.76 kB
Minified
6.18 kB
Minified + Gzipped
Maintainers
1
Package Meta Information
Latest Version
1.0.0
Package Id
spdx-is-osi@1.0.0
Unpacked Size
2.58 kB
Size
1.43 kB
File Count
4
NPM Version
5.6.0
Node Version
8.11.3
Total Downloads
Cumulative downloads
Total Downloads
4,317
Last day
0%
1
Compared to previous day
Last week
125%
9
Compared to previous week
Last month
166.7%
16
Compared to previous month
Last year
-12.4%
106
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
2
Dev Dependencies
4
Versions
1var assert = require('assert') 2var isOSIApproved = require('spdx-is-osi') 3 4// The MIT License 5// Has an SPDX identifier 6// An OSI-approved license 7assert.strictEqual(isOSIApproved('MIT'), true) 8 9// Zope Public License 2.1 10// Has an SPDX identifier 11// Not an OSI-approved license 12assert.strictEqual(isOSIApproved('ZPL-2.1'), false) 13 14// Dual-licensing under MIT and Zope 2.1 15assert.strictEqual(isOSIApproved('(MIT OR ZPL-2.1)'), true) 16 17// Double-licensing under MIT and Zope 2.1 18assert.strictEqual(isOSIApproved('(MIT AND ZPL-2.1)'), false) 19 20// Licensing under current and subsequent versions. 21assert.strictEqual(isOSIApproved('(GPL-2.0+)'), true)
No vulnerabilities found.
Reason
no binaries found in the repo
Reason
0 existing vulnerabilities detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Warn: project license file does not contain an FSF or OSI license.
Reason
Found 0/22 approved changesets -- score normalized to 0
Reason
no SAST tool detected
Details
- Warn: no pull requests merged into dev branch
Reason
0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch 'master'
Score
3
/10
Last Scanned on 2025-01-27
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More