Homepage

chromane vulnerabilities

Chromane is a framework for developing chrome extensions with most of their UI code hosted outside of the chrome extension package, in a page that is included in the extension via an iFrame. Listed below are some benefits of this approach.
Licenses: ISC | MIT
Published: 3 years ago Last updated: 1 years ago Latest version: 1.0.136 Latest non-vulnerable version: 1.0.136
npm
GitHub

Package Health Score

40/100
  • securitySecurity review needed
  • popularityLimited
  • maintenanceInactive
  • communityLimited

Maintenance

INACTIVE

Commit Frequency

No commits over the last 6 months

Open Issues
0
Open PR
0
New PRS
0
Last Release
1 years ago
Last Commit
1 years ago
Maintainers
2

Further analysis of the maintenance status of chromane based on released npm versions cadence, the repository activity, and other data points determined that its maintenance is Inactive.

An important project maintenance signal to consider for chromane is that it hasn't seen any new versions released to npm in the past 12 months, and could be considered as a discontinued project, or that which receives low attention from its maintainers.

In the past month we didn't find any pull request activity or change in issues status has been detected for the GitHub repository.

Popularity

LIMITED
Weekly downloads (3)
GitHub Stars
1
Forks
0
Contributors
1

The npm package chromane receives a total of 3 downloads a week. As such, we scored chromane popularity level to be Limited.

Based on project statistics from the GitHub repository for the npm package chromane, we found that it has been starred 1 times.

Downloads are calculated as moving averages for a period of the last 12 months, excluding weekends and known missing data points.

Community

LIMITED
Readme.md
Yes
Contributing.md
No
Code of Conduct
No
Contributors
1
Funding
No
LICENSE
MIT

This project has seen only 10 or less contributors.

We found a way for you to contribute to the project! Looks like chromane is missing a Code of Conduct.

License

ISC>=1.0.0 <1.0.126;
MIT>=1.0.126;
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

No direct vulnerabilities have been found for this package in Snyk’s vulnerability database. This does not include vulnerabilities belonging to this package’s dependencies.

Does your project rely on vulnerable package dependencies?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities (in both your packages & their dependencies) and provides automated fixes for free.

Scan for indirect vulnerabilities

Security

SECURITY REVIEW NEEDED
Show only direct vulnerabilities in latest version
No vulnerabilities found

No vulnerabilities found in the latest version

Package versions

125 VERSIONS IN TOTAL See all versions
versionpublisheddirect vulnerabilities
1.0.1361 May, 2024
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
1.0.13529 Apr, 2024
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
1.0.13428 Apr, 2024
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
1.0.13325 Apr, 2024
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
1.0.13221 Apr, 2024
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
1.0.13121 Apr, 2024
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
1.0.13021 Apr, 2024
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
1.0.12918 Apr, 2024
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
1.0.12818 Apr, 2024
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
1.0.12718 Apr, 2024
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L

chromane dependencies

44 IN TOTAL
@babel/core@babel/preset-typescript@google-cloud/aiplatform@google-cloud/firestore@google-cloud/storage@mdi/svg@rollup/plugin-dynamic-import-vars@sendgrid/mail@types/chrome@vitejs/plugin-vuearchiverautoprefixerchokidarcopy-dircss-loaderexpressfs-extraglobgoogle-auth-libraryhtml-loader
Show more dependencies