Secure-Supply-Chain
By microsoft
safernode
By mikecardwell
Secure-Supply-Chain | safernode | |
---|---|---|
2 | 1 | |
27 | - | |
- | - | |
1.8 | - | |
over 2 years ago | - | |
MIT License | - |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Secure-Supply-Chain
Posts with mentions or reviews of Secure-Supply-Chain.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2021-10-22.
- Microsoft Secure-Supply-Chain – Improving OSS Provenance
-
NPM package ‘ua-parser-JS’ with more than 7M weekly download is compromised
Semi-related: Microsoft is going to be (or has begun) checking for differences between published npm packages and their source control.
I got a PR in my repository a few days ago leading back to a team trying to make it easier for packages to be reproducible from source https://github.com/microsoft/Secure-Supply-Chain
safernode
Posts with mentions or reviews of safernode.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2021-10-22.
-
NPM package ‘ua-parser-JS’ with more than 7M weekly download is compromised
Seems like a good time to plug my project https://gitlab.com/mikecardwell/safernode
What are some alternatives?
When comparing Secure-Supply-Chain and safernode you can also consider the following projects:
goggles.mozilla.org - Update: This project is no longer maintained and has been archived. See https://foundation.mozilla.org/blog/putting-away-our-x-ray-goggles/ for more information.
handlebars-helpers - 188 handlebars helpers in ~20 categories. Can be used with Assemble, Ghost, YUI, express.js etc.
ua-parser-js - UAParser.js - Free & open-source JavaScript library to detect user's Browser, Engine, OS, CPU, and Device type/model. Runs either in browser (client-side) or node.js (server-side).