npm package
k-vue-funnel-graph-js
check_circle
arrow_drop_down0.1.9
Default versionPublished
Description
   [. The Scorecard provides security health metrics for open source projects.
View information about checks and how to fix failures.
Score
1.7/10
Scorecard as of .
SAST
0/10
Determines if the project uses static code analysis.
Reasoning
no SAST tool detected
Code-Review
0/10
Determines if the project requires human code review before pull requests (aka merge requests) are merged.
Reasoning
Found 0/30 approved changesets -- score normalized to 0
Maintained
0/10
Determines if the project is "actively maintained".
Reasoning
0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Binary-Artifacts
10/10
Determines if the project has generated executable (binary) artifacts in the source repository.
Reasoning
no binaries found in the repo
CII-Best-Practices
0/10
Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.
Reasoning
no effort to earn an OpenSSF best practices badge detected
Security-Policy
0/10
Determines if the project has published a security policy.
Reasoning
security policy file not detected
Fuzzing
0/10
Determines if the project uses fuzzing.
Reasoning
project is not fuzzed
License
10/10
Determines if the project has defined a license.
Reasoning
license file detected
Branch-Protection
0/10
Determines if the default and release branches are protected with GitHub's branch protection settings.
Reasoning
branch protection not enabled on development/release branches
Vulnerabilities
0/10
Determines if the project has open, known unfixed vulnerabilities.
Reasoning
58 existing vulnerabilities detected
Project metadata as of .