Package Health Score

52 / 100

security
Security review needed
popularity
Popular
maintenance
Inactive
community
Sustainable

Explore Similar Packages

Security

Security review needed

All security vulnerabilities belong to production dependencies of direct and indirect packages.

Security and license risk for significant versions

Version				Vulnerabilities	License Risk
0.9.46	\|	06/2019	Popular	0 C 0 H 0 M 0 L	0 H 0 M 0 L

License

Apache-2.0

Security Policy

Is your project affected by vulnerabilities?

Scan your projects for vulnerabilities. Fix quickly with automated fixes. Get started with Snyk for free.

Get started free

Popularity

Popular

Weekly Downloads (23,122)

GitHub Stars: 9.32K
Forks: 309
Contributors: 20

Direct Usage Popularity

The npm package carlo receives a total of 23,122 downloads a week. As such, we scored carlo popularity level to be Popular.

Based on project statistics from the GitHub repository for the npm package carlo, we found that it has been starred 9,321 times.

Downloads are calculated as moving averages for a period of the last 12 months, excluding weekends and known missing data points.

Community

Sustainable

Readme.md: Yes
Contributing.md: Yes
Code of Conduct: No
Contributors: 20
Funding: No

With more than 10 contributors for the carlo repository, this is possibly a sign for a growing and inviting community.

We found a way for you to contribute to the project! Looks like carlo is missing a Code of Conduct.

Embed Package Health Score Badge

Maintenance

Inactive

Commit Frequency

No Recent Commits

Open Issues: 51
Open PR: 5
Last Release: 5 years ago
Last Commit: 4 years ago

Further analysis of the maintenance status of carlo based on released npm versions cadence, the repository activity, and other data points determined that its maintenance is Inactive.

An important project maintenance signal to consider for carlo is that it hasn't seen any new versions released to npm in the past 12 months, and could be considered as a discontinued project, or that which receives low attention from its maintainers.

In the past month we didn't find any pull request activity or change in issues status has been detected for the GitHub repository.

Keep your project healthy

Check your package.json

Ensure all the packages you're using are healthy and well-maintained

Snyk Vulnerability Scanner

Get health score & security insights directly in your IDE

Package

Node.js Compatibility: >=7.6.0

Age: 5 years
Dependencies: 2 Direct
Versions: 48
Install Size: 87.9 kB
Dist-tags: 1
# of Files: 14
Maintainers: 3
TS Typings: Yes

carlo has more than a single and default latest tag published for the npm package. This means, there may be other tags available for this package, such as next to indicate future releases, or stable to indicate stable releases.

Readme

Carlo - headful Node app framework

> Carlo provides Node applications with Google Chrome rendering capabilities, communicates with the locally-installed browser instance using the Puppeteer project, and implements a remote call infrastructure for communication between Node and the browser.

API | FAQ | Contributing

What can I do?

With Carlo, users can create hybrid applications that use Web stack for rendering and Node for capabilities:

For Node applications, the web rendering stack lets users visualize the dynamic state of the app.
For Web applications, additional system capabilities are accessible from Node.
The application can be bundled into a single executable using pkg.

How does it work?

Carlo locates Google Chrome installed locally.
Launches Chrome and establishes a connection over the process pipe.
Exposes a high-level API for rendering in Chrome with the Node environment.

Usage

Install Carlo

npm

npm i carlo
# yarn add carlo

> Carlo requires at least Node v7.6.0.

Example - Display local environment

Save file as example.js

const carlo = require('carlo');

(async () =&gt; {
  // Launch the browser.
  const app = await carlo.launch();

  // Terminate Node.js process on app window closing.
  app.on('exit', () =&gt; process.exit());

  // Tell carlo where your web files are located.
  app.serveFolder(__dirname);

  // Expose 'env' function in the web environment.
  await app.exposeFunction('env', _ =&gt; process.env);

  // Navigate to the main page of your app.
  await app.load('example.html');
})();

Save file as example.html

Run your application:

node example.js

Check out systeminfo and terminal examples with richer UI and RPC-based communication between the Web and Node in the examples folder.

API

Check out the API to get familiar with Carlo.

Testing

Carlo uses Puppeteer project for testing. Carlo application and all Carlo windows have corresponding Puppeteer objects exposed for testing. Please refer to the API and the systeminfo project for more details.

Contributing to Carlo

Look at the contributing guide to get an overview of Carlo's development.

FAQ

Q: What was the motivation behind this project when we already have Electron and NW.js? How does this project differ from these platforms, how does it achieve something that is not possible/harder with Electron or NW.js?

One of the motivations of this project is to demonstrate how browsers that are installed locally can be used with Node out of the box.
Node v8 and Chrome v8 engines are decoupled in Carlo, providing a maintainable model with the ability to independently update underlying components. Carlo gives the user control over bundling and is more about productivity than branding.

Q: Can a Node app using Carlo be packaged as a Desktop app?

The pkg project can be used to package a Node app as a Desktop app. Carlo does not provide branding configurability such as application icons or customizable menus, instead, Carlo focuses on productivity and Web/Node interoperability. Check out the systeminfo example and call pkg package.json to see how it works.

Q: What happens if the user does not have Chrome installed?

Carlo prints an error message when Chrome can not be located.

Q: What is the minimum Chrome version that Carlo supports?

Chrome Stable channel, versions 70.* are supported.

carlo dependencies

debug puppeteer-core

carlo development dependencies

eslint @pptr/testrunner @pptr/testserver

FAQs

What is carlo?

Carlo is a framework for rendering Node data structures using Chrome browser. Visit Snyk Advisor to see a full health score report for carlo, including popularity, security, maintenance & community analysis.

Is carlo popular?

The npm package carlo receives a total of 23,122 weekly downloads. As such, carlo popularity was classified as a popular. Visit the popularity section on Snyk Advisor to see the full health analysis.

Is carlo well maintained?

We found indications that carlo is an Inactive project. See the full package health analysis to learn more about the package maintenance status.

Is carlo safe to use?

While scanning the latest version of carlo, we found that a security review is needed. A total of 0 vulnerabilities or license issues were detected. See the full security scan results.

Last updated on 25 April-2024, at 20:05 (UTC).

Build a secure application checklist

Select a recommended open source package

Minimize your risk by selecting secure & well maintained open source packages

DONE

Scan your app for vulnerabilities

Scan your application to find vulnerabilities in your: source code, open source dependencies, containers and configuration files

SCAN NOW

Fix identified vulnerabilities

Easily fix your code by leveraging automatically generated PRs

AUTO FIX

Monitor for new issues

New vulnerabilities are discovered every day. Get notified if your application is affected

MONITOR APP