Gathering detailed insights and metrics for widgetizer-widgetizer
Gathering detailed insights and metrics for widgetizer-widgetizer
🌍 Spec-compliant and production ready JavaScript GraphQL server that lets you develop in a schema-first way. Built for Express, Connect, Hapi, Koa, and more.
Installations
npm install widgetizer-widgetizerDeveloper Guide
BETA
Typescript
No
Module System
CommonJS
Node Version
5.6.0
NPM Version
3.6.0
Score
60.2
Supply Chain
71.8
Quality
68
Maintenance
25
Vulnerability
50
License
Releases
164
@apollo/server-gateway-interface@2.0.0
@apollo/server-gateway-interface@2.0.0
Updated on Jul 17, 2025
@apollo/server@5.0.0
@apollo/server@5.0.0
Updated on Jul 17, 2025
@apollo/server-plugin-response-cache@5.0.0
@apollo/server-plugin-response-cache@5.0.0
Updated on Jul 17, 2025
@apollo/server-integration-testsuite@5.0.0
@apollo/server-integration-testsuite@5.0.0
Updated on Jul 17, 2025
@apollo/server-plugin-response-cache@5.0.0-rc.0
@apollo/server-plugin-response-cache@5.0.0-rc.0
Updated on Jul 07, 2025
@apollo/server-gateway-interface@2.0.0-rc.0
@apollo/server-gateway-interface@2.0.0-rc.0
Updated on Jul 07, 2025
Languages
3
TypeScript
JavaScript
Shell
TypeScript (55.97%)
JavaScript (43.63%)
Shell (0.39%)
Developer
Download Statistics
Total Downloads
0
Last Day
0
Last Week
0
Last Month
0
Last Year
0
GitHub Statistics
MIT License
13,893 Stars
8,514 Commits
2,023 Forks
200 Watchers
86 Branches
576 Contributors
Updated on Jul 17, 2025
Maintainers
1
Package Meta Information
Latest Version
0.3.6
Package Id
widgetizer-widgetizer@0.3.6
Size
90.27 kB
NPM Version
3.6.0
Node Version
5.6.0
Total Downloads
Cumulative downloads
Total Downloads
NaN
Last Day
0%
NaN
Compared to previous day
Last Week
0%
NaN
Compared to previous week
Last Month
0%
NaN
Compared to previous month
Last Year
0%
NaN
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
Apollo-server: A GraphQL server for Node.js
Contributions
Contributions, issues and feature requests are very welcome. If you are using this package and fixed a bug for yourself, please consider submitting a PR!
Folder structure
/src/core:
- contains the core functionality that is independent of any particular node.js server framework
/src/integrations/<name>:
- Contains the integrations for Node.js server framework <name> (i.e. express, HAPI, Koa, connect)
/src/test:
- Contains only the
tests.tsfile that imports other tests. All real test files go in the same folder as the code they are testing, and should be named*.test.ts.
No vulnerabilities found.
Reason
30 commit(s) and 25 issue activity found in the last 90 days -- score normalized to 10
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
security policy file detected
Details
- Info: security policy file detected: github.com/apollographql/.github/SECURITY.md:1
- Info: Found linked content: github.com/apollographql/.github/SECURITY.md:1
- Info: Found disclosure, vulnerability, and/or timelines in security policy: github.com/apollographql/.github/SECURITY.md:1
- Info: Found text in security policy: github.com/apollographql/.github/SECURITY.md:1
Reason
8 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
- Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x
- Warn: Project is vulnerable to: GHSA-78xj-cgh5-2h22
- Warn: Project is vulnerable to: GHSA-2p57-rm9w-gvfp
- Warn: Project is vulnerable to: GHSA-hhhv-q57g-882q
- Warn: Project is vulnerable to: GHSA-q674-xm3x-2926
- Warn: Project is vulnerable to: GHSA-f5x3-32g6-xq36
- Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q
Reason
Found 4/22 approved changesets -- score normalized to 1
Reason
dependency not pinned by hash detected -- score normalized to 1
Details
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/lock.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/apollographql/apollo-server/lock.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-pr.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/apollographql/apollo-server/release-pr.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-pr.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/apollographql/apollo-server/release-pr.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-pr.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/apollographql/apollo-server/release-pr.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-pr.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/apollographql/apollo-server/release-pr.yml/main?enable=pin
- Warn: npmCommand not pinned by hash: smoke-test/prepare.sh:17
- Warn: npmCommand not pinned by hash: smoke-test/prepare.sh:22
- Warn: npmCommand not pinned by hash: smoke-test/prepare.sh:26
- Warn: npmCommand not pinned by hash: smoke-test/smoke-test.sh:68
- Info: 0 out of 2 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 3 third-party GitHubAction dependencies pinned
- Info: 1 out of 5 npmCommand dependencies pinned
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Info: found token with 'none' permissions: .github/workflows/lock.yml:1
- Warn: no topLevel permission defined: .github/workflows/release-pr.yml:1
- Info: no jobLevel write permissions found
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 30 are checked with a SAST tool
Score
4.9
/10
Last Scanned on 2025-07-14
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More