npmpackage.info

walk-up-path

4.0.0

ISC

JavaScript

5.92 kB

Installations

npm install walk-up-path

Developer Guide

BETA

Typescript

Yes

Module System

ESM

Min. Node Version

20 || >=22

Node Version

20.13.1

NPM Version

10.7.0 Score

99.8

Supply Chain

75.1

Quality

76.3

Maintenance

100

Vulnerability

100

License

Pull Requests

Open

0

Total

0

Closed

0

Issues

Open

0

Total

1

Closed

1

Releases

Unable to fetch releases

Contributors

Unable to fetch Contributors

View all 1 contributors

Languages

JavaScript

TypeScript

Shell

JavaScript (70.11%)

TypeScript (17.37%)

Shell (12.52%)

Developer

isaacs

Download Statistics

Total Downloads

313,033,706

Last Day

674,815

Last Week

3,125,599

Last Month

14,053,164

Last Year

157,662,114

GitHub Statistics

10 Stars

21 Commits

2 Watching

1 Branches

1 Contributors

Maintainers

Package Meta Information

Latest Version

4.0.0

Package Id

walk-up-path@4.0.0

Unpacked Size

5.92 kB

Size

2.44 kB

File Count

NPM Version

10.7.0

Node Version

20.13.1

Publised On

08 Jul 2024

Total Downloads

Cumulative downloads

Total Downloads

313,033,706

Last day

-7.3%

674,815

Compared to previous day

Last week

-15.4%

3,125,599

Compared to previous week

Last month

3.9%

14,053,164

Compared to previous month

Last year

78.3%

157,662,114

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dev Dependencies

@types/node prettier tap tshy typedoc

Versions

walk-up-path

Given a path string, return a generator that walks up the path, emitting each dirname.

So, to get a platform-portable walk up, instead of doing something like this:

1for (let p = dirname(path); p;) {
2
3  // ... do stuff ...
4
5  const pp = dirname(p)
6  if (p === pp)
7    p = null
8  else
9    p = pp
10}

Or this:

1for (let p = dirname(path); !isRoot(p); p = dirname(p)) {
2  // ... do stuff ...
3}

You can do this:

1const { walkUpPath } = require('walk-up-path')
2for (const p of walkUpPath(path)) {
3  // ... do stuff ..
4}

API

1const { walkUpPath } = require('walk-up-path')

Give the fn a string, it'll yield all the directories walking up to the root.

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

7

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

0

SAST

Determines if the project uses static code analysis.

0

Maintained

Determines if the project is "actively maintained".

0

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/isaacs/walk-up-path/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/isaacs/walk-up-path/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/isaacs-makework.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/isaacs/walk-up-path/isaacs-makework.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/isaacs-makework.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/isaacs/walk-up-path/isaacs-makework.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/typedoc.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/isaacs/walk-up-path/typedoc.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/typedoc.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/isaacs/walk-up-path/typedoc.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/typedoc.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/isaacs/walk-up-path/typedoc.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/typedoc.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/isaacs/walk-up-path/typedoc.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/typedoc.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/isaacs/walk-up-path/typedoc.yml/main?enable=pin
Warn: npmCommand not pinned by hash: .github/workflows/typedoc.yml:39
Info: 0 out of 9 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 1 npmCommand dependencies pinned

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Fuzzing

Determines if the project uses fuzzing.

0

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

0

Security-Policy

Determines if the project has published a security policy.

Score

3.2

/10

Last Scanned on 2025-01-27

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More

Other packages similar to walk-up-path

find-up

7.0.0

Find a file or directory by walking up parent directories

read-pkg-up

11.0.0

Read the closest package.json file

pkg-up

5.0.0

Find the closest package.json file

pkg-dir

8.0.0

Find the root directory of a Node.js project or npm package