Package Health Score

58 / 100

security
No known security issues
popularity
Popular
maintenance
Inactive
community
Sustainable

Explore Similar Packages

Security

No known security issues

All security vulnerabilities belong to production dependencies of direct and indirect packages.

Security and license risk for significant versions

Version				Vulnerabilities	License Risk
6.0.2	\|	07/2022		0 C 0 H 0 M 0 L	0 H 0 M 0 L
5.3.2	\|	03/2021		0 C 0 H 0 M 0 L	0 H 0 M 0 L
3.6.1	\|	03/2021		0 C 0 H 0 M 0 L	0 H 0 M 0 L
4.5.1	\|	03/2021	Popular	0 C 0 H 0 M 0 L	0 H 0 M 0 L
3.5.1	\|	08/2017		0 C 1 H 1 M 0 L	0 H 0 M 0 L

License

MIT

Security Policy

Yes

Is your project affected by vulnerabilities?

Scan your projects for vulnerabilities. Fix quickly with automated fixes. Get started with Snyk for free.

Get started free

Popularity

Popular

Weekly Downloads (118,293)

GitHub Stars: 486
Forks: 76
Contributors: 30

Direct Usage Popularity

The npm package msgpack5 receives a total of 118,293 downloads a week. As such, we scored msgpack5 popularity level to be Popular.

Based on project statistics from the GitHub repository for the npm package msgpack5, we found that it has been starred 486 times.

Downloads are calculated as moving averages for a period of the last 12 months, excluding weekends and known missing data points.

Community

Sustainable

Readme.md: Yes
Contributing.md: Yes
Code of Conduct: No
Contributors: 30
Funding: Yes

With more than 10 contributors for the msgpack5 repository, this is possibly a sign for a growing and inviting community.

We found a way for you to contribute to the project! Looks like msgpack5 is missing a Code of Conduct.

Embed Package Health Score Badge

Maintenance

Inactive

Commit Frequency

Open Issues: 15
Open PR: 0
Last Release: 2 years ago
Last Commit: 2 months ago

Further analysis of the maintenance status of msgpack5 based on released npm versions cadence, the repository activity, and other data points determined that its maintenance is Inactive.

An important project maintenance signal to consider for msgpack5 is that it hasn't seen any new versions released to npm in the past 12 months, and could be considered as a discontinued project, or that which receives low attention from its maintainers.

In the past month we didn't find any pull request activity or change in issues status has been detected for the GitHub repository.

Keep your project healthy

Check your package.json

Ensure all the packages you're using are healthy and well-maintained

Snyk Vulnerability Scanner

Get health score & security insights directly in your IDE

Package

Node.js Compatibility: not defined

Age: 10 years
Dependencies: 4 Direct
Versions: 52
Install Size: 708 kB
Dist-tags: 1
# of Files: 71
Maintainers: 1
TS Typings: Yes

msgpack5 has more than a single and default latest tag published for the npm package. This means, there may be other tags available for this package, such as next to indicate future releases, or stable to indicate stable releases.

Not sure how to use msgpack5?

To help you get started, we've collected the most common ways that msgpack5 is being used within popular public projects.

ra-gg / Delir / packages / delir / src / domain / Editor / operations.ts View on Github

async (
    context,
    { path, silent = false, keepPath = false }: { path: string; silent?: boolean; keepPath?: boolean },
  ) => {
    const project = context.getStore(EditorStore).getState().project
    if (!project) return

    await fs.writeFile(path, (MsgPack().encode({
      project: Delir.Exporter.serializeProject(project),
    }) as any) as Buffer)

    let newPath: string | null = path
    if (keepPath) {
      newPath = context.getStore(EditorStore).getState().projectPath
    }

    context.executeOperation(setActiveProject, { project, path: newPath }) // update path

    !silent &&
      (await context.executeOperation(notify, {
        message: t(t.k.saved),
        title: '',
        level: 'info',
        timeout: 1000,

View more ways to use msgpack5

msgpack5

A msgpack v5 implementation for node.js and the browser, with extension point support.

Install

npm install msgpack5 --save

Usage

var msgpack = require('msgpack5')() // namespace our extensions
  , a       = new MyType(2, 'a')
  , encode  = msgpack.encode
  , decode  = msgpack.decode

msgpack.register(0x42, MyType, mytipeEncode, mytipeDecode)

console.log(encode({ 'hello': 'world' }).toString('hex'))
// 81a568656c6c6fa5776f726c64
console.log(decode(encode({ 'hello': 'world' })))
// { hello: 'world' }
console.log(encode(a).toString('hex'))
// d5426161
console.log(decode(encode(a)) instanceof MyType)
// true
console.log(decode(encode(a)))
// { value: 'a', size: 2 }

function MyType(size, value) {
  this.value = value
  this.size  = size
}

function mytipeEncode(obj) {
  var buf = new Buffer(obj.size)
  buf.fill(obj.value)
  return buf
}

function mytipeDecode(data) {
  var result = new MyType(data.length, data.toString('utf8', 0, 1))
    , i

  for (i = 0; i &lt; data.length; i++) {
    if (data.readUInt8(0) != data.readUInt8(i)) {
      throw new Error('should all be the same')
    }
  }

  return result
}

In the Browser

This library is compatible with Browserify.

If you want to use standalone, grab the file in the dist folder of this repo, and use in your own HTML page, the module will expose a msgpack5 global.

To build

	npm run build

API

msgpack(options(obj))

Creates a new instance on which you can register new types for being encoded.

options:

forceFloat64, a boolean to that forces all floats to be encoded as 64-bits floats. Defaults to false.
sortKeys, a boolean to force a determinate keys order
compatibilityMode, a boolean that enables "compatibility mode" which doesn't use bin format family and str 8 format. Defaults to false.
disableTimestampEncoding, a boolean that when set disables the encoding of Dates into the timestamp extension type. Defaults to false.
preferMap, a boolean that forces all maps to be decoded to Maps rather than plain objects. This ensures that decode(encode(new Map())) instanceof Map and that iteration order is preserved. Defaults to false.
protoAction, a string which can be error|ignore|remove that determines what happens when decoding a plain object with a __proto__ property which would cause prototype poisoning. error (default) throws an error, remove removes the property, ignore (not recommended) allows the property, thereby causing prototype poisoning on the decoded object.

encode(object)

Encodes object in msgpack, returns a bl.

decode(buf)

Decodes buf from in msgpack. buf can be a Buffer or a bl instance.

In order to support a stream interface, a user must pass in a bl instance.

registerEncoder(check(obj), encode(obj))

check, a function that will be called to check if the passed object should be encoded with the encode function
encode, a function that will be called to encode an object in binary form; this function must return a Buffer which include the same type for registerDecoder.

registerDecoder(type, decode(buf))

type, is a greater than zero integer identificating the type once serialized
decode, a function that will be called to decode the object from the passed Buffer

register(type, constructor, encode(obj), decode(buf))

type, is a greater than zero integer identificating the type once serialized
constructor, the function that will be used to match the objects with instanceof
encode, a function that will be called to encode an object in binary form; this function must return a Buffer that can be deserialized by the decode function
decode, a function that will be called to decode the object from the passed Buffer

This is just a commodity that calls registerEncoder and registerDecoder internally.

encoder(options)

Builds a stream in object mode that encodes msgpack.

Supported options:

wrap, objects should be passed to encoder in wrapped object {value: data}. Wrap option should be used if you need to pass null to encoder.

decoder(options)

Builds a stream in object mode that decodes msgpack.

Supported options:

wrap, decoded objects returned in wrapped object {value: data}. Wrap option should be used if stream contains msgpack nil.

LevelUp Support

msgpack5 can be used as a LevelUp valueEncoding straight away:

var level = require('level')
  , pack  = msgpack()
  , db    = level('foo', {
      valueEncoding: pack
    })
  , obj   = { my: 'obj' }

db.put('hello', obj, function(err) {
  db.get('hello', function(err, result) {
    console.log(result)
    db.close()
  })
})

Related projects

msgpack5rpc: An implementation of the msgpack-rpc spec on top of this library.

Disclaimer

This library is built fully on JS and on bl to simplify the code. Every improvement that keeps the same API is welcome.

Acknowledgements

This project was kindly sponsored by nearForm.

This library was originally built as the data format for JSChan.

License

MIT

msgpack5 dependencies

bl inherits readable-stream safe-buffer

msgpack5 development dependencies

browserify memdb pre-commit standard tap-mocha-reporter tape uglify-js

FAQs

What is msgpack5?

A msgpack v5 implementation for node.js and the browser, with extension points. Visit Snyk Advisor to see a full health score report for msgpack5, including popularity, security, maintenance & community analysis.

Is msgpack5 popular?

The npm package msgpack5 receives a total of 118,293 weekly downloads. As such, msgpack5 popularity was classified as a popular. Visit the popularity section on Snyk Advisor to see the full health analysis.

Is msgpack5 well maintained?

We found indications that msgpack5 is an Inactive project. See the full package health analysis to learn more about the package maintenance status.

Is msgpack5 safe to use?

The npm package msgpack5 was scanned for known vulnerabilities and missing license, and no issues were found. Thus the package was deemed as safe to use. See the full health analysis review.

Last updated on 18 April-2024, at 12:23 (UTC).

Build a secure application checklist

Select a recommended open source package

Minimize your risk by selecting secure & well maintained open source packages

DONE

Scan your app for vulnerabilities

Scan your application to find vulnerabilities in your: source code, open source dependencies, containers and configuration files

SCAN NOW

Fix identified vulnerabilities

Easily fix your code by leveraging automatically generated PRs

AUTO FIX

Monitor for new issues

New vulnerabilities are discovered every day. Get notified if your application is affected

MONITOR APP

Package Health Score

Explore Similar Packages

Security and license risk for significant versions

Is your project affected by vulnerabilities?

Weekly Downloads (118,293)

Direct Usage Popularity

Embed Package Health Score Badge

Commit Frequency

Keep your project healthy

Check your package.json

Snyk Vulnerability Scanner

Not sure how to use msgpack5?

msgpack5

Install

Usage

In the Browser

To build

API

API

msgpack(options(obj))

encode(object)

decode(buf)

registerEncoder(check(obj), encode(obj))

registerDecoder(type, decode(buf))

register(type, constructor, encode(obj), decode(buf))

encoder(options)

decoder(options)

LevelUp Support

Related projects

Disclaimer

Acknowledgements

License

msgpack5 dependencies

msgpack5 development dependencies

FAQs

What is msgpack5?

Is msgpack5 popular?

Is msgpack5 well maintained?

Is msgpack5 safe to use?

Build a secure application checklist

Select a recommended open source package

Scan your app for vulnerabilities

Source Code

Open Source

Container

Config

Fix identified vulnerabilities

Monitor for new issues