sign-addon

v6.4.0

Signs a Firefox add-on using Mozilla's web service For more information about how to use this package see README

Latest version published 12 months ago
License: MPL-2.0

Ensure you're using the healthiest npm packages

Snyk scans all the packages in your projects for vulnerabilities and provides automated fix advice

Package Health Score

50 / 100

Security

Security review needed
All security vulnerabilities belong to production dependencies of direct and indirect packages.

Security and license risk for significant versions

All Versions
Version Vulnerabilities License Risk
6.4.0 | 01/2024
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.3.0 | 09/2023
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
5.3.0 | 03/2023
Popular
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
4.1.0 | 05/2022
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
4.0.1 | 03/2022
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
License
MPL-2.0
Alert

Non-Permissive License

We noticed that this project uses a license which requires less permissive conditions such as disclosing the source code, stating changes or redistributing the source under the same license. It is advised to further consult the license terms before use.

Security Policy
No

Is your project affected by vulnerabilities?

Scan your projects for vulnerabilities. Fix quickly with automated fixes. Get started with Snyk for free.

Get started free

Popularity

Recognized

Weekly Downloads (23,917)

Download trend
GitHub Stars
72
Forks
45
Contributors
30

Direct Usage Popularity

TOP 30%

The npm package sign-addon receives a total of 23,917 downloads a week. As such, we scored sign-addon popularity level to be Recognized.

Based on project statistics from the GitHub repository for the npm package sign-addon, we found that it has been starred 72 times.

Downloads are calculated as moving averages for a period of the last 12 months, excluding weekends and known missing data points.

Community

Sustainable
Readme.md
Yes
Contributing.md
No
Code of Conduct
Yes
Contributors
30
Funding
No

With more than 10 contributors for the sign-addon repository, this is possibly a sign for a growing and inviting community.


Embed Package Health Score Badge

package health: 50/100 package health 50/100

Maintenance

Inactive
deprecated

Commit Frequency

Open Issues
0
Open PR
0
Last Release
12 months ago
Last Commit
12 months ago

Further analysis of the maintenance status of sign-addon based on released npm versions cadence, the repository activity, and other data points determined that its maintenance is Inactive.

We found that sign-addon demonstrates a positive version release cadence with at least one new version released in the past 12 months.

In the past month we didn't find any pull request activity or change in issues status has been detected for the GitHub repository.

Package

Node.js Compatibility
not defined

Age
9 years
Dependencies
10 Direct
Versions
46
Install Size
117 kB
Dist-tags
1
# of Files
9
Maintainers
1
TS Typings
No

sign-addon has more than a single and default latest tag published for the npm package. This means, there may be other tags available for this package, such as next to indicate future releases, or stable to indicate stable releases.