string

v3.3.3

string contains methods that aren't included in the vanilla JavaScript string such as escaping html, decoding html entities, stripping tags, etc.

MIT
Latest version published about 4 years ago
    npm install string
  

Package Health Score

40 / 100
  • Popularity
    Recognized
  • Maintenance
    Inactive
  • Security
    Security issues found
  • Community
    Sustainable
Make sure the open source you're using is safe to use Secure my Project

Popularity

Recognized
Weekly Downloads (76,146)
Dependents
1.27K
GitHub Stars
1.72K
Forks
235
Contributors
20

The npm package string receives a total of 76,146 downloads a week. As such, we scored string popularity level to be Recognized.

Based on project statistics from the GitHub repository for the npm package string, we found that it has been starred 1,717 times, and that 1,272 other projects on the ecosystem are dependent on it.

Downloads are calculated as moving averages for a period of the last 12 months, excluding weekends and known missing data points.

Security

Security issues found
Powered by Snyk

Security and license risk for significant versions

All Versions

Direct Vulnerabilities

1.8.1
1.9.1
2.2.0
3.2.1
3.3.3

Indirect Vulnerabilities

1.8.1
1.9.1
2.2.0
3.2.1
3.3.3
  • 0
    H
  • 0
    M
  • 0
    L
  • 0
    H
  • 0
    M
  • 0
    L
  • 0
    H
  • 0
    M
  • 0
    L
  • 0
    H
  • 0
    M
  • 0
    L
  • 0
    H
  • 0
    M
  • 0
    L

License Risks

1.8.1
1.9.1
2.2.0
3.2.1
3.3.3
  • 0
    H
  • 0
    M
  • 0
    L
  • 0
    H
  • 0
    M
  • 0
    L
  • 0
    H
  • 0
    M
  • 0
    L
  • 0
    H
  • 0
    M
  • 0
    L
  • 0
    H
  • 0
    M
  • 0
    L
All security vulnerabilities belong to production dependencies of direct and indirect packages.

Security Policy
No

Snyk detected that the latest version of string has a security vulnerability.

We highly advise you to review these security issues.

You can connect your project's repository to Snyk to stay up to date on security alerts and receive automatic fix pull requests.

We found a way for you to contribute to the project! Looks like string is missing a security policy.

    # Install the Snyk CLI and test your project
npm i snyk && snyk test string
Fix it in your project with Snyk!

Maintenance

Inactive
Commit Frequency
No Recent Commits
Open Issues
53
Merged PR
51
Open PR
26
Last Commit
4 years ago

Further analysis of the maintenance status of string based on released npm versions cadence, the repository activity, and other data points determined that its maintenance is Inactive.

An important project maintenance signal to consider for string is that it hasn't seen any new versions released to npm in the past 12 months, and could be considered as a discontinued project, or that which receives low attention from its maintainers.

In the past month we didn't find any pull request activity or change in issues status has been detected for the GitHub repository.

Community

Sustainable
Readme.md
Yes
Contributing.md
No
Code of Conduct
No
Contributors
20
Funding
No
License
MIT

With more than 10 contributors for the string repository, this is possibly a sign for a growing and inviting community.

We found a way for you to contribute to the project! Looks like string is missing a Code of Conduct.


Embed Package Health Score Badge

package health: 40/100 package health 40/100

Package

Node.js Compatibility
not defined

Age
9 years
Dependencies
0 Direct / 0 Total
Versions
5
Install Size
0 B
Dist-tags
1
# of Files
0
Maintainers
2
TS Typings
Yes

string has more than a single and default latest tag published for the npm package. This means, there may be other tags available for this package, such as next to indicate future releases, or stable to indicate stable releases.