Gathering detailed insights and metrics for xlsx-import
Gathering detailed insights and metrics for xlsx-import
Installations
npm install xlsx-importDeveloper Guide
BETA
Typescript
Yes
Module System
CommonJS
Node Version
21.1.0
NPM Version
10.2.0
Score
53.2
Supply Chain
55.7
Quality
70.5
Maintenance
100
Vulnerability
94.4
License
Releases
7
v2.4.7
v2.4.7
Published on 20 Nov 2023
v2.4.4
v2.4.4
Published on 11 Nov 2021
XLSX-Renderer v2.4.0: Custom formula and template string
xlsx-renderer-v2.4.0
Published on 13 Feb 2021
v2.3.3 More Build-in Mappers
v2.3.3
Published on 26 Oct 2020
v2.3.2 Build-in Mappers & Samples
v2.3.2
Published on 18 Oct 2020
v2.3.1 Api & Documentation Improvements
v2.3.1
Published on 09 Oct 2020
Contributors
11
Unable to fetch Contributors
Languages
2
TypeScript
JavaScript
TypeScript (99.13%)
JavaScript (0.87%)
Developer
Download Statistics
Total Downloads
129,766
Last Day
76
Last Week
445
Last Month
2,383
Last Year
43,450
GitHub Statistics
176 Stars
381 Commits
34 Forks
9 Watching
3 Branches
11 Contributors
Sponsor this package
Maintainers
1
Package Meta Information
Latest Version
2.4.7
Package Id
xlsx-import@2.4.7
Unpacked Size
43.25 kB
Size
12.64 kB
File Count
87
NPM Version
10.2.0
Node Version
21.1.0
Publised On
20 Nov 2023
Total Downloads
Cumulative downloads
Total Downloads
129,766
Last day
-35.6%
76
Compared to previous day
Last week
-34.7%
445
Compared to previous week
Last month
14.5%
2,383
Compared to previous month
Last year
34.8%
43,450
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
1
Versions
XLSX-Import
Import data from Workbooks / Worksheets Excel files,
Example
1const xlsx = await importerFactory.from('./my-awesome-books.xlsx'); 2const books: Array<Book> = xlsx.getAllItems<Book>(config.books);
It allows you to import xlsx spreadsheet file with data into your system with defined TypeScript types.
Now working with
| TypeScript | JavaScript | NodeJS | React | Angular | Vue |
|---|---|---|---|---|---|
 |  |  |  |  |  |
Useful
- Part of XToolset, see: Official XToolset documentation on Siemienik.com
- :heart: Sponsor me
- Gitter community
- Order feature or consulting: consulting@siemienik.com
- License: MIT
No vulnerabilities found.
Reason
security policy file detected
Details
- Info: security policy file detected: SECURITY.md:1
- Info: Found linked content: SECURITY.md:1
- Info: Found disclosure, vulnerability, and/or timelines in security policy: SECURITY.md:1
- Info: Found text in security policy: SECURITY.md:1
Reason
no binaries found in the repo
Reason
no dangerous workflow patterns detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
dependency not pinned by hash detected -- score normalized to 7
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/Siemienik/XToolset/codeql-analysis.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/Siemienik/XToolset/codeql-analysis.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/Siemienik/XToolset/codeql-analysis.yml/master?enable=pin
- Warn: npmCommand not pinned by hash: .github/workflows/code-quality.yml:23
- Warn: downloadThenRun not pinned by hash: .github/workflows/xlsx-import.yml:35
- Warn: downloadThenRun not pinned by hash: .github/workflows/xlsx-renderer.yml:36
- Info: 11 out of 14 GitHub-owned GitHubAction dependencies pinned
- Info: 4 out of 5 npmCommand dependencies pinned
- Info: 0 out of 2 downloadThenRun dependencies pinned
Reason
SAST tool detected but not run on all commits
Details
- Info: SAST configuration detected: CodeQL
- Warn: 4 commits out of 24 are checked with a SAST tool
Reason
6 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
- Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-4q6p-r6v2-jvc5
- Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3
- Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55
Reason
Found 4/16 approved changesets -- score normalized to 2
Reason
0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/code-quality.yml:1
- Warn: no topLevel permission defined: .github/workflows/codeql-analysis.yml:1
- Warn: no topLevel permission defined: .github/workflows/xlsx-import-cli.yml:1
- Warn: no topLevel permission defined: .github/workflows/xlsx-import.yml:1
- Warn: no topLevel permission defined: .github/workflows/xlsx-renderer-cli.yml:1
- Warn: no topLevel permission defined: .github/workflows/xlsx-renderer.yml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Score
5
/10
Last Scanned on 2025-01-27
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More