New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details
Socket
Book a DemoSign in
Socket
Book a DemoSign in

d20

Package Overview
Dependencies
Maintainers
1
Versions
5
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

d20

Library for rolling dice based on dice-syntax used in RPGs.

Source
npmnpm
Version
1.2.0
Version published
Weekly downloads
28
16.67%
Maintainers
1
Weekly downloads
 
Created
Source

d20.js

Javascript library for rolling RPG dice. Supports dice notation such as "4d6" and "d20+2".

Installation

In the browser

Download the files from GitHub and include the d20.js file somewhere in your HTML page.

<script src="path/to/d20.js"></script>

As a Node.js module

Add the git repository as a dependency in your package.json file (you can specify a version branch instead of "master" if you want a specific version).

{
	"dependencies": {
		"d20": "git://github.com/michaelenger/d20.js.git#master"
	}
}

require it in your app.

var d20 = require('d20');

Usage

Both methods of using the library provides a d20 object with the roll() method which is used to roll dice.

d20.roll(20); // roll a 20-sided die
d20.roll('4d6'); // roll four 6-sided dice
d20.roll('2d8+1'); // roll two 8-sided dice and add 1 to the result
d20.roll('1d8 +1 +2 -20'); // roll an 8-sided die with multiple modifiers

You can get the result as an array of values rather than a single result if you pass true along as the second parameter. Note that the results will be sorted in ascending order except for the modifiers which will be in their order of apperance.

d20.roll(20, true);
d20.roll('4d6', true);
d20.roll('2d8+1', true);
d20.roll('1d8 +1 +2 -20', true);

Testing

The library can be tested by installing the dependencies and running npm test:

npm install
npm test

Keywords

dice
rpg
d20

FAQs

Package last updated on 07 May 2015

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

108 Chrome Extensions Linked to Data Exfiltration and Session Theft via Shared C2 Infrastructure

Research

/

Security News

108 Chrome Extensions Linked to Data Exfiltration and Session Theft via Shared C2 Infrastructure

Campaign of 108 extensions harvests identities, steals sessions, and adds backdoors to browsers, all tied to the same C2 infrastructure.

By Kush Pandya  -  Apr 13, 2026
Don't Kill the Goose That Lays the Golden Eggs

Security News

Don't Kill the Goose That Lays the Golden Eggs

Open source is under attack because of how much value it creates. It has been the foundation of every major software innovation for the last three decades. This is not the time to walk away from it.

By Sarah Gooding  -  Apr 10, 2026