Package Health Score

70 / 100

security
Security review needed
popularity
Small
maintenance
Healthy
community
Limited

Explore Similar Packages

Security

Security review needed

All security vulnerabilities belong to production dependencies of direct and indirect packages.

Security and license risk for significant versions

Version			Vulnerabilities	License Risk
1.236.0	\|	05/2024	0 C 0 H 0 M 0 L	0 H 0 M 0 L
1.235.3	\|	05/2024	0 C 0 H 0 M 0 L	0 H 0 M 0 L
1.185.3	\|	11/2023	0 C 0 H 0 M 0 L	0 H 0 M 0 L
1.184.1	\|	11/2023	0 C 0 H 0 M 0 L	0 H 0 M 0 L
1.139.0	\|	04/2023	0 C 0 H 0 M 0 L	0 H 0 M 0 L

License

ISC

Security Policy

Is your project affected by vulnerabilities?

Scan your projects for vulnerabilities. Fix quickly with automated fixes. Get started with Snyk for free.

Get started free

Popularity

Small

Weekly Downloads (1,705)

GitHub Stars: 31
Forks: 18
Contributors: 40

Direct Usage Popularity

The npm package @voiceflow/general-runtime receives a total of 1,705 downloads a week. As such, we scored @voiceflow/general-runtime popularity level to be Small.

Based on project statistics from the GitHub repository for the npm package @voiceflow/general-runtime, we found that it has been starred 31 times.

Downloads are calculated as moving averages for a period of the last 12 months, excluding weekends and known missing data points.

Community

Limited

Readme.md: Yes
Contributing.md: No
Code of Conduct: No
Contributors: 40
Funding: No

With more than 10 contributors for the @voiceflow/general-runtime repository, this is possibly a sign for a growing and inviting community.

We found a way for you to contribute to the project! Looks like @voiceflow/general-runtime is missing a Code of Conduct.

Embed Package Health Score Badge

Maintenance

Healthy

Commit Frequency

Open Issues: 2
Open PR: 20
Last Release: 17 days ago
Last Commit: 1 month ago

Further analysis of the maintenance status of @voiceflow/general-runtime based on released npm versions cadence, the repository activity, and other data points determined that its maintenance is Healthy.

We found that @voiceflow/general-runtime demonstrates a positive version release cadence with at least one new version released in the past 3 months.

In the past month we didn't find any pull request activity or change in issues status has been detected for the GitHub repository.

Keep your project healthy

Check your package.json

Ensure all the packages you're using are healthy and well-maintained

Snyk Vulnerability Scanner

Get health score & security insights directly in your IDE

Package

Node.js Compatibility: 20.1

Age: 3 years
Dependencies: 67 Direct
Versions: 477
Install Size: 4.42 MB
Dist-tags: 1
# of Files: 424
Maintainers: 30
TS Typings: No

@voiceflow/general-runtime has more than a single and default latest tag published for the npm package. This means, there may be other tags available for this package, such as next to indicate future releases, or stable to indicate stable releases.

Readme

> [!WARNING]
> Update April 24, 2024: the open-source general-runtime deployment will no longer be actively supported. A longer term sunset plan will be provided. It is not recommended to create dependencies or references to this respository.

general-runtime

general-runtime is an http webhook service that handles voiceflow prototype requests and generates a response. It manages the state of the user based on the programs (flows) made on the Voiceflow Creator tool. This can be hosted independently from Voiceflow.

This is the same service that powers the Voiceflow test tool and Voiceflow DM API. This includes supporting production apps and handling millions of requests.

Documentation

For a high level understanding of what the service is doing, reference "What is the Voiceflow API and how do you use it?".

To interact with your general-runtime server, reference the Voiceflow DM API. Instead of the default https://general-runtime.voiceflow.com, use your own local or remote endpoint.

Setup (Local)

run yarn in command line to install all dependencies.

For the isolated-vm dependency, there are additional steps to install here

Add the following file to the local repository:

> .env.local > > > PORT=4000 > LOG_LEVEL="info" > MIDDLEWARE_VERBOSITY="none" > > SESSIONS_SOURCE='local' > GENERAL_SERVICE_ENDPOINT='https://general-service.voiceflow.com' > > # use local vfr file under /projects > PROJECT_SOURCE='[VFFILE.vfr]' > > > For more info on Environment Variables

Use yarn start:local to run the development version.

For the production version, run yarn build followed by yarn start (this checks against .env.production instead of .env.local)

Notable Code Locations

Context Handlers (documentation)- handlers for processing request
lib/services/runtime/handlers - handlers for all the various nodes and defining their behavior
runtime/lib/Runtime/cycleStack - iterator and execution of flows
runtime/lib/Runtime/cycleHandler - iterator and execution of individual nodes

API Documentation (Open API)

Documentation for all API Endpoints on this service. It is critical to make sure all OpenAPI docs are up to date:

https://github.com/voiceflow/general-runtime/tree/master/backend/docs/openapi.yaml

Whenever any of the paths change, or new ones get added, or if any of the behaviors documented change, be sure to update the Open API doc. Recommend to use an editor like Swagger Editor or Stoplight to help construct the YAML file, and then fine tune things on local.

Local Setup

Run npm i -g redoc-cli to install as command.

While on the root of this repository, run

redoc-cli serve backend/docs/openapi.yaml --ssr --watch

to see it locally - note: this will not load the local CSS file.

If your browser autoresolves https://localhost to https://localhost, you might want to open the local link in incognito or a different browser.

@voiceflow/general-runtime dependencies

@aws-sdk/client-lambda @aws-sdk/client-s3 @opentelemetry/api-metrics @types/workerpool @voiceflow/alexa-types @voiceflow/backend-utils @voiceflow/base-types @voiceflow/body-parser @voiceflow/chat-types @voiceflow/common @voiceflow/default-prompt-wrappers @voiceflow/dtos @voiceflow/event-ingestion-service @voiceflow/exception @voiceflow/internal @voiceflow/logger @voiceflow/metrics @voiceflow/natural-language-commander @voiceflow/sdk-http-ml-gateway @voiceflow/utils-designer @voiceflow/verror @voiceflow/voice-types @voiceflow/voiceflow-types ajv axios better-sse compression connect-timeout cookie-parser core-js cors cuid date-fns dd-trace dedent dotenv express express-validator form-data helmet html-parse-stringify immer ioredis ip-range-check isolated-vm json-stringify-safe lodash mathjs mongodb nestjs-zod node-fetch promise.withresolvers regenerator-runtime rxjs sift slate talisman ts-pattern undici unleash-client validator words-to-numbers workerpool zod @voiceflow/sdk-analytics @voiceflow/sdk-auth @voiceflow/sdk-billing

@voiceflow/general-runtime development dependencies

@commitlint/cli @commitlint/config-conventional @istanbuljs/nyc-config-typescript @types/chai @types/chai-as-promised @types/compression @types/connect-timeout @types/cookie-parser @types/cors @types/dedent @types/deep-equal-in-any-order @types/express @types/hashids @types/ioredis @types/json-stringify-safe @types/jsonwebtoken @types/lodash @types/mocha @types/node @types/node-fetch @types/sinon @types/supertest @types/validator @voiceflow/commitlint-config @voiceflow/eslint-config @voiceflow/git-branch-check @voiceflow/prettier-config @voiceflow/test-common chai chai-as-promised commitizen cpy-cli cross-env cz-conventional-changelog deep-equal-in-any-order depcheck eslint eslint-output fixpack get-port http-status husky lint-staged mocha mocha-junit-reporter nyc pino prettier prettier-eslint-cli redoc-cli sinon source-map-support supertest ts-mocha ts-node ts-node-dev tsc-alias tsconfig-paths typedoc typedoc-plugin-sourcefile-url typescript

FAQs

What is @voiceflow/general-runtime?

voiceflow general runtime. Visit Snyk Advisor to see a full health score report for @voiceflow/general-runtime, including popularity, security, maintenance & community analysis.

Is @voiceflow/general-runtime popular?

The npm package @voiceflow/general-runtime receives a total of 1,705 weekly downloads. As such, @voiceflow/general-runtime popularity was classified as small. Visit the popularity section on Snyk Advisor to see the full health analysis.

Is @voiceflow/general-runtime well maintained?

We found that @voiceflow/general-runtime demonstrated a healthy version release cadence and project activity. It has a community of 40 open source contributors collaborating on the project. See the full package health analysis to learn more about the package maintenance status.

Is @voiceflow/general-runtime safe to use?

While scanning the latest version of @voiceflow/general-runtime, we found that a security review is needed. A total of 0 vulnerabilities or license issues were detected. See the full security scan results.

Last updated on 10 May-2024, at 04:28 (UTC).

Build a secure application checklist

Select a recommended open source package

Minimize your risk by selecting secure & well maintained open source packages

DONE

Scan your app for vulnerabilities

Scan your application to find vulnerabilities in your: source code, open source dependencies, containers and configuration files

SCAN NOW

Fix identified vulnerabilities

Easily fix your code by leveraging automatically generated PRs

AUTO FIX

Monitor for new issues

New vulnerabilities are discovered every day. Get notified if your application is affected

MONITOR APP

@voiceflow/general-runtime

voiceflow general runtime For more information about how to use this package see README

Ensure you're using the healthiest npm packages

Package Health Score

Explore Similar Packages

Security

Security and license risk for significant versions

Is your project affected by vulnerabilities?

Popularity

Weekly Downloads (1,705)

Direct Usage Popularity

Community

Embed Package Health Score Badge

Maintenance

Commit Frequency

Keep your project healthy

Check your package.json

Snyk Vulnerability Scanner

Package

Readme

general-runtime

Documentation

Setup (Local)

Notable Code Locations

API Documentation (Open API)

Local Setup

@voiceflow/general-runtime dependencies

@voiceflow/general-runtime development dependencies

FAQs

What is @voiceflow/general-runtime?

Is @voiceflow/general-runtime popular?

Is @voiceflow/general-runtime well maintained?

Is @voiceflow/general-runtime safe to use?

Build a secure application checklist

Select a recommended open source package

Scan your app for vulnerabilities

Fix identified vulnerabilities

Monitor for new issues

Package Health Score

Explore Similar Packages

Security and license risk for significant versions

Is your project affected by vulnerabilities?

Weekly Downloads (1,705)

Direct Usage Popularity

Embed Package Health Score Badge

Commit Frequency

Keep your project healthy

Check your package.json

Snyk Vulnerability Scanner

Readme

general-runtime

Documentation

Setup (Local)

Notable Code Locations

API Documentation (Open API)

Local Setup

@voiceflow/general-runtime dependencies

@voiceflow/general-runtime development dependencies

FAQs

What is @voiceflow/general-runtime?

Is @voiceflow/general-runtime popular?

Is @voiceflow/general-runtime well maintained?

Is @voiceflow/general-runtime safe to use?

Build a secure application checklist

Select a recommended open source package

Scan your app for vulnerabilities

Source Code

Open Source

Container

Config

Fix identified vulnerabilities

Monitor for new issues