Gathering detailed insights and metrics for trim-buffer
Gathering detailed insights and metrics for trim-buffer
Installations
npm install trim-bufferReleases
Unable to fetch releases
Developer
Developer Guide
BETA
Module System
CommonJS
Min. Node Version
Typescript Support
Yes
Node Version
14.18.1
NPM Version
8.1.0
Statistics
301 Stars
126 Commits
70 Forks
20 Watching
4 Branches
5 Contributors
Updated on 28 Oct 2024
Bundle Size
703.00 B
Minified
362.00 B
Minified + Gzipped
Languages
TypeScript (96.24%)
JavaScript (2.27%)
Shell (1.23%)
PowerShell (0.25%)
Total Downloads
Cumulative downloads
Total Downloads
654,142
Last day
19.2%
1,648
Compared to previous day
Last week
110.8%
10,102
Compared to previous week
Last month
61.3%
26,987
Compared to previous month
Last year
-5.3%
271,344
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dev Dependencies
1
Versions
Child Shell
Node.js bindings 🔗 for shell
About
Node.js is one of the successful, widely-used, and popular open-source projects on this earth. It was created to allow it's users to run JavaScript everywhere.
Shell is the most usable user program on any computer, it is an integral part of our work and almost every task starts and ends with a command execution. It was created to allow it's users to interact with their OS.
child-shell creates a comprehensive binding between the two, exposes a proven yet easy API to interact with any shell directly from node runtime. Combine JavaScript code with shell based scripts to complete any type of task you ever imagined.
Documentation
Learn about using child-shell on the official site!
- Getting started
- Configuring child-shell
- Useful Tips
- API Reference
- Shell packages:
Contributing
Development of child-shell happens transparently on its GitHub repo.
Read the contributing guide to learn how to propose bugfixes and improvements, and how to build and test your changes.
Future plans for child-shell are visible on its board.
These plans are subject to frequent changes, and will be greatly affected by your feedback.
License
child-shell © is MIT licensed.
Created by rannn505.
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE.md:0
- Info: FSF or OSI recognized license: MIT License: LICENSE.md:0
Reason
dependency not pinned by hash detected -- score normalized to 2
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/rannn505/child-shell/CI.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/rannn505/child-shell/CI.yml/master?enable=pin
- Warn: npmCommand not pinned by hash: .github/workflows/CI.yml:30
- Info: 0 out of 2 GitHub-owned GitHubAction dependencies pinned
- Info: 1 out of 2 npmCommand dependencies pinned
Reason
Found 1/7 approved changesets -- score normalized to 1
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/CI.yml:1
- Info: no jobLevel write permissions found
Reason
0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch 'master'
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 29 are checked with a SAST tool
Reason
12 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92
- Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h
- Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
- Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3
- Warn: Project is vulnerable to: GHSA-xvch-5gv4-984h
- Warn: Project is vulnerable to: GHSA-qrpm-p2h7-hrv2
- Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
- Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
- Warn: Project is vulnerable to: GHSA-j8xg-fqg3-53r7
- Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q
Score
2.7
/10
Last Scanned on 2024-11-18
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More