Product
Socket Now Supports uv.lock Files
Socket now supports uv.lock files to ensure consistent, secure dependency resolution for Python projects and enhance supply chain security.
By Trevor Norris - Jan 09, 2025
Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More →
all-contributors-for-repository
Advanced tools
all-contributors-for-repository
Generates an allcontributors list for an existing repository.
All Contributors For Repository
Generates an allcontributors list for an existing repository.
✨ See this tool in action with all-contributors-auto-action! ✨
Usage
npm i all-contributors-for-repository
import { createAllContributorsForRepository } from "all-contributors-for-repository";
const contributors = await createAllContributorsForRepository({
owner: "JoshuaKGoldberg",
repo: "template-typescript-node-package",
});
/*
{
john_reilly: [ 'bug', 'code' ],
joshuakgoldberg: [ 'maintenance', 'tool' ],
}
*/
Warning This tool only sees contributions that can be detected from the last 500 events in GitHub's API. Don't forget to manually add in other forms of contributions!
The types of contributions detected from the GitHub API are:
- 🐛
bug: anybody who filed an issue labeled as accepting PRs and a bug (see options) - 📖
doc: authors of merged PRs that address issues labeled as accepting PRs and docs (see options) - 🚧
maintenance: adding labels to issues and PRs, and merging PRs - 👀
review: submitting a review for a PR - 🔧
tool: authors of merged PRs that address issues labeled as accepting PRs and tooling (see options)
Additionally, based on PR conventional commit titles in the Angular convention, for all PR authors and co-authors:
buildandci: will be treated as an:infra:contributiondocs: will be treated as an:doc:contributiontest: will be treated as an:test:contribution- All other PRs -including those without a conventional title- will be treated as
:code:contributions
💡 Given that list of contributors, you might want to run
all-contributors addon each contributor & contribution type.import { $ } from "execa"; for (const [contributor, contributions] of Object.entries(contributors)) { await $`npx all-contributors add ${contributor} ${contributions.join(",")}`; }
Development
See .github/CONTRIBUTING.md, then .github/DEVELOPMENT.md.
Thanks! 💖
Contributors
 Josh Goldberg 🔧 🐛 💻 🚧 👀 📖 |
💙 This package is based on @JoshuaKGoldberg's template-typescript-node-package.
FAQs
Generates an allcontributors list for an existing repository. 🤝
The npm package all-contributors-for-repository receives a total of 1,095 weekly downloads. As such, all-contributors-for-repository popularity was classified as popular.
We found that all-contributors-for-repository demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Package last updated on 09 May 2023
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Security News
Gmail For Exfiltration: Malicious npm Packages Target Solana Private Keys and Drain Victims' Wallets
Socket researchers have discovered multiple malicious npm packages targeting Solana private keys, abusing Gmail to exfiltrate the data and drain Solana wallets.
By Kirill Boychenko - Jan 08, 2025
Security News
New Python Packaging Proposal Aims to Solve Phantom Dependency Problem with SBOMs
PEP 770 proposes adding SBOM support to Python packages to improve transparency and catch hidden non-Python dependencies that security tools often miss.
By Sarah Gooding - Jan 07, 2025