Ecosyste.ms: Summary
An open API service providing a high level summary for open source projects.
https://github.com/ericcornelissen/shescape
command-line escape-library security shell shell-injection shell-scripting
Score: 21.16474796776493
Last synced: about 12 hours ago
JSON representation
Repository metadata:
Simple shell escape library for JavaScript
- Host: GitHub
- URL: https://github.com/ericcornelissen/shescape
- Owner: ericcornelissen
- License: mpl-2.0
- Created: 2020-11-02T20:23:47.000Z (over 3 years ago)
- Default Branch: main
- Last Pushed: 2024-04-12T05:50:19.000Z (22 days ago)
- Last Synced: 2024-04-14T04:55:02.606Z (20 days ago)
- Topics: command-line, escape-library, security, shell, shell-injection, shell-scripting
- Language: JavaScript
- Homepage:
- Size: 3.75 MB
- Stars: 1
- Watchers: 2
- Forks: 8
- Open Issues: 7
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- Contributing: CONTRIBUTING.md
- License: LICENSE
- Security: SECURITY.md
Owner metadata:
- Name: Eric Cornelissen
- Login: ericcornelissen
- Email:
- Kind: user
- Description:
- Website: https://www.ericcornelissen.dev/
- Location: Germany
- Twitter:
- Company:
- Icon url: https://avatars.githubusercontent.com/u/3742559?u=85512029e3a499cbb9458f582c1a2e3015360319&v=4
- Repositories: 19
- Last ynced at: 2023-02-28T22:00:27.794Z
- Profile URL: https://github.com/ericcornelissen
Committers metadata
Last synced: 1 day ago
Total Commits: 1,328
Total Committers: 8
Avg Commits per committer: 166.0
Development Distribution Score (DDS): 0.441
Commits in past year: 509
Committers in past year: 4
Avg Commits per committer in past year: 127.25
Development Distribution Score (DDS) in past year: 0.409
Name | Commits | |
---|---|---|
dependabot[bot] | 4****] | 742 |
Eric Cornelissen | e****n@g****m | 548 |
ec-automation-bot[bot] | 1****] | 16 |
github-actions[bot] | 4****] | 14 |
ericcornelissen-release-bot[bot] | 1****] | 4 |
Step Security Bot | b****t@s****o | 2 |
Nico Jansen | j****o@g****m | 1 |
Samantha Crespo | 1****o | 1 |
Issue and Pull Request metadata
Last synced: 3 days ago
Total issues: 22
Total pull requests: 595
Average time to close issues: 8 months
Average time to close pull requests: 2 days
Total issue authors: 1
Total pull request authors: 3
Average comments per issue: 0.59
Average comments per pull request: 0.37
Merged pull request: 452
Bot issues: 0
Bot pull requests: 403
Past year issues: 8
Past year pull requests: 511
Past year average time to close issues: about 2 months
Past year average time to close pull requests: 2 days
Past year issue authors: 1
Past year pull request authors: 3
Past year average comments per issue: 0.5
Past year average comments per pull request: 0.4
Past year merged pull request: 374
Past year bot issues: 0
Past year bot pull requests: 365
Top Issue Authors
- ericcornelissen (22)
Top Pull Request Authors
- dependabot[bot] (393)
- ericcornelissen (192)
- ec-automation-bot[bot] (10)
Top Issue Labels
- enhancement (10)
- breaking change (10)
- help wanted (3)
- performance (2)
- meta (2)
- ci/cd (2)
- documentation (2)
- bug (2)
- fuzz (2)
- benchmark (1)
- good first issue (1)
- out of scope (1)
- dependencies (1)
- pending (1)
- test (1)
Top Pull Request Labels
- dependencies (436)
- ci/cd (208)
- meta (64)
- test (51)
- fuzz (31)
- documentation (17)
- security (13)
- refactor (13)
- enhancement (11)
- breaking change (8)
- benchmark (7)
- reverted (6)
- performance (4)
- bug (4)
- invalid (2)
- out of scope (1)
- pending (1)
Package metadata
- Total packages: 1
-
Total downloads:
- npm: 14,382 last-month
- Total docker downloads: 24,282,606
- Total dependent packages: 15
- Total dependent repositories: 28
- Total versions: 51
- Total maintainers: 1
- Total advisories: 7
npmjs.org: shescape
simple shell escape library
- Homepage: https://github.com/ericcornelissen/shescape
- Licenses: MPL-2.0
- Latest release: 2.1.1 (published 3 days ago)
- Last Synced: 2024-05-01T12:53:57.186Z (3 days ago)
- Versions: 51
- Dependent Packages: 15
- Dependent Repositories: 28
- Downloads: 14,382 Last month
- Docker Downloads: 24,282,606
-
Rankings:
- Docker downloads count: 0.269%
- Downloads: 0.982%
- Dependent packages count: 1.85%
- Dependent repos count: 2.459%
- Average: 5.056%
- Forks count: 7.528%
- Stargazers count: 17.251%
- Maintainers (1)
-
Advisories:
- Null characters not escaped
- Shescape vulnerable to insufficient escaping of whitespace
- Shescape potential environment variable exposure on Windows with CMD
- Shescape prior to 1.5.8 vulnerable to insufficient escaping of line feeds for CMD
- Exposure of home directory through shescape on Unix with Bash
- Inefficient Regular Expression Complexity in shescape
- Shescape on Windows escaping may be bypassed in threaded context
Dependencies
- actions/cache 6998d139ddd3e68c71e9e398d8e40b71a2f39812 composite
- actions/checkout ac593985615ec2ede58e132d2e21d2b1cbd6127c composite
- actions/download-artifact 9bc31d5ccc31df68ecc42ccf4149144866c47d8a composite
- actions/setup-node 64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c composite
- actions/upload-artifact 0b7f8abb1508181956e8e162db84b466c27e18ce composite
- asdf-vm/actions/install 707e84f3ee349548310aeabdad0dd3bfcb9b69fa composite
- benchmark-action/github-action-benchmark c3efd4d54319dbc90622069cc273cba59b46abbf composite
- codecov/codecov-action d9f34f8cd5cb3b3eb79b3e4b5dae3a16df499a70 composite
- dorny/paths-filter 4512585405083f25c027a35db413c2b3b9006d50 composite
- github/codeql-action/analyze 8775e868027fa230df8586bdf502bbd9b618a477 composite
- github/codeql-action/init 8775e868027fa230df8586bdf502bbd9b618a477 composite
- step-security/harden-runner 18bf8ad2ca49c14cbb28b91346d626ccfb00c518 composite
- actions/checkout ac593985615ec2ede58e132d2e21d2b1cbd6127c composite
- asdf-vm/actions/install 707e84f3ee349548310aeabdad0dd3bfcb9b69fa composite
- nick-fields/retry 943e742917ac94714d2f408a0e8320f2d1fcafcd composite
- peter-evans/create-pull-request d7db273d6c7206ba99224e659c982ae34a1025e3 composite
- step-security/harden-runner 18bf8ad2ca49c14cbb28b91346d626ccfb00c518 composite
- tibdex/github-app-token b62528385c34dbc9f38e5f4225ac829252d1ea92 composite
- actions/checkout ac593985615ec2ede58e132d2e21d2b1cbd6127c composite
- actions/github-script 98814c53be79b1d30f795b907e553d8679345975 composite
- actions/setup-node 64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c composite
- ncipollo/release-action a2e71bdd4e7dab70ca26a852f29600c98b33153e composite
- step-security/harden-runner 18bf8ad2ca49c14cbb28b91346d626ccfb00c518 composite
- actions/checkout ac593985615ec2ede58e132d2e21d2b1cbd6127c composite
- actions/setup-node 64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c composite
- peter-evans/create-pull-request d7db273d6c7206ba99224e659c982ae34a1025e3 composite
- step-security/harden-runner 18bf8ad2ca49c14cbb28b91346d626ccfb00c518 composite
- tibdex/github-app-token b62528385c34dbc9f38e5f4225ac829252d1ea92 composite
- actions/cache 6998d139ddd3e68c71e9e398d8e40b71a2f39812 composite
- actions/checkout ac593985615ec2ede58e132d2e21d2b1cbd6127c composite
- actions/github-script 98814c53be79b1d30f795b907e553d8679345975 composite
- actions/setup-node 64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c composite
- actions/upload-artifact 0b7f8abb1508181956e8e162db84b466c27e18ce composite
- step-security/harden-runner 18bf8ad2ca49c14cbb28b91346d626ccfb00c518 composite
- 804 dependencies
- @ericcornelissen/eslint-plugin-top 0.3.0 development
- @fast-check/ava 1.1.2 development
- @stryker-mutator/core 6.3.1 development
- ava 5.1.1 development
- benchmark 2.1.4 development
- c8 7.12.0 development
- depcheck 1.4.3 development
- dotenv 16.0.1 development
- eslint 8.33.0 development
- eslint-plugin-ava 14.0.0 development
- eslint-plugin-jsdoc 40.0.0 development
- eslint-plugin-json 3.1.0 development
- eslint-plugin-regexp 1.12.0 development
- eslint-plugin-yml 1.3.0 development
- fast-check 3.6.3 development
- husky 8.0.3 development
- is-ci 3.0.1 development
- jsfuzz 1.0.15 development
- licensee 10.0.0 development
- markdownlint-cli 0.33.0 development
- mocha 9.2.2 development
- prettier 2.8.4 development
- publint 0.1.9 development
- rollup 3.15.0 development
- sinon 15.0.1 development
- unimported 1.23.0 development
- which ^2.0.0
- actions/checkout 3df4ab11eba7bda6032a0b82a6bb43b11571feac composite
- actions/setup-node 5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d composite
- step-security/harden-runner 8ca2b8b2ece13480cda6dacd3511b49857a23c09 composite
- actions/checkout 3df4ab11eba7bda6032a0b82a6bb43b11571feac composite
- actions/setup-node 5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d composite
- step-security/harden-runner 8ca2b8b2ece13480cda6dacd3511b49857a23c09 composite
- actions/checkout 3df4ab11eba7bda6032a0b82a6bb43b11571feac composite
- ericcornelissen/codecov-config-validator-action bbb3f8ef45de6f6ce57ea8d566940bdd78b4814a composite
- step-security/harden-runner 8ca2b8b2ece13480cda6dacd3511b49857a23c09 composite
- actions/checkout 3df4ab11eba7bda6032a0b82a6bb43b11571feac composite
- actions/setup-node 5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d composite
- step-security/harden-runner 8ca2b8b2ece13480cda6dacd3511b49857a23c09 composite
- actions/labeler 9fcb2c2f5584144ca754f8bfe8c6f81e77753375 composite
- step-security/harden-runner 8ca2b8b2ece13480cda6dacd3511b49857a23c09 composite
- actions/checkout 3df4ab11eba7bda6032a0b82a6bb43b11571feac composite
- gitleaks/gitleaks-action 1f2d10fb689bc07a5f56f48d6db61f5bbbe772fa composite
- step-security/harden-runner 8ca2b8b2ece13480cda6dacd3511b49857a23c09 composite
- actions/checkout 3df4ab11eba7bda6032a0b82a6bb43b11571feac composite
- github/codeql-action/upload-sarif 6a28655e3dcb49cb0840ea372fd6d17733edd8a4 composite