1. Advisor
  2. Golang packages
  3. cose

cose

1.1.0 Opens a new window with list of versions in this module.

go library for CBOR Object Signing and Encryption (COSE) For more information about how to use this package see README

Latest version published 1 year ago
Go
GitHub

Ensure you're using the healthiest golang packages

Snyk scans all the packages in your projects for vulnerabilities and provides automated fix advice

Package Health Score

65 / 100

Popularity

Recognized
popularity-imported Imported By
92
popularity-stars GitHub Stars
49
popularity-forks Forks
26
popularity-contributors Contributors
20

Usage Popularity

TOP 30%

Based on project statistics from the GitHub repository for the Golang package cose, we found that it has been 49 times.

The popularity score for Golang modules is calculated based on the number of stars that the project has on GitHub as well as the number of imports by other modules.

Security

No known security issues
Powered by Snyk
1.1.0 Opens a new window with list of versions in this module. (Latest)

Security risks

Direct Vulnerabilities
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
Indirect Vulnerabilities
Check with Snyk
Release Date
May 18, 2023
License
MPL-2.0
Alert

Non-Permissive License

We noticed that this project uses a license which requires less permissive conditions such as disclosing the source code, stating changes or redistributing the source under the same license. It is advised to further consult the license terms before use.

Security Policy
Yes

You can connect your project's repository to Snyk to stay up to date on security alerts and receive automatic fix pull requests.

Keep your project free of vulnerabilities with Snyk

Maintenance

Inactive

Commit Frequency

Open Issues
7
Open PR
3
Last Release
1 year ago
Last Commit
24 days ago

Further analysis of the maintenance status of github.com/veraison/go-cose based on released golang versions cadence, the repository activity, and other data points determined that its maintenance is Inactive.

An important project maintenance signal to consider for github.com/veraison/go-cose is that it hasn't seen any new versions released to golang in the past 12 months, and could be considered as a discontinued project, or that which receives low attention from its maintainers.

As a healthy sign for on-going project maintenance, we found that the GitHub repository had at least 1 pull request or issue interacted with by the community.

Community

Active
Readme.md
No
Contributing.md
No
Code of Conduct
Yes
Contributors
20
Funding
No

With more than 10 contributors for the github.com/veraison/go-cose repository, this is possibly a sign for a growing and inviting community.

How about a good first contribution to this project? It seems that github.com/veraison/go-cose is missing a README file.

Embed Package Health Score Badge

package health: 65/100 package health 65/100

Keep your project healthy

scan-reversed

Check your go.mod

NEW
Ensure all the packages you're using are healthy and well-maintained
arrow