Gathering detailed insights and metrics for @11ty/eleventy
Gathering detailed insights and metrics for @11ty/eleventy
A simpler site generator. Transforms a directory of templates (of varying types) into HTML.
Installations
npm install @11ty/eleventyDeveloper Guide
BETA
Typescript
No
Module System
ESM
Min. Node Version
>=18
Node Version
20.19.2
NPM Version
10.8.2
Releases
73
Eleventy v3.1.2 (we fixed 15 more things)
v3.1.2
Updated on Jun 24, 2025
Eleventy v3.1.2-beta.4
v3.1.2-beta.4
Updated on Jun 23, 2025
Eleventy v3.1.2-beta.3
v3.1.2-beta.3
Updated on Jun 20, 2025
Eleventy v3.1.2-beta.2
v3.1.2-beta.2
Updated on Jun 18, 2025
Eleventy v3.1.2-beta.1
v3.1.2-beta.1
Updated on Jun 16, 2025
Eleventy v3.1.1 (we fixed some things)
v3.1.1
Updated on Jun 03, 2025
Languages
8
JavaScript
Nunjucks
Liquid
TypeScript
Vue
HTML
SCSS
MDX
JavaScript (97.63%)
Nunjucks (1.56%)
Liquid (0.55%)
TypeScript (0.1%)
Vue (0.09%)
HTML (0.05%)
SCSS (0.02%)
MDX (0.01%)
Developer
Download Statistics
Total Downloads
12,330,813
Last Day
7,518
Last Week
82,915
Last Month
363,524
Last Year
3,393,506
GitHub Statistics
MIT License
18,413 Stars
3,218 Commits
532 Forks
86 Watchers
15 Branches
107 Contributors
Updated on Jul 06, 2025
Sponsor this package
Maintainers
2
Package Meta Information
Latest Version
3.1.2
Package Id
@11ty/eleventy@3.1.2
Unpacked Size
526.95 kB
Size
141.99 kB
File Count
115
NPM Version
10.8.2
Node Version
20.19.2
Published on
Jun 24, 2025
Total Downloads
Cumulative downloads
Total Downloads
12,330,813
Last Day
-4.8%
7,518
Compared to previous day
Last Week
-4.3%
82,915
Compared to previous week
Last Month
8.7%
363,524
Compared to previous month
Last Year
8.1%
3,393,506
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
33
@11ty/dependency-tree@11ty/dependency-tree-esm@11ty/eleventy-dev-server@11ty/eleventy-plugin-bundle@11ty/eleventy-utils@11ty/lodash-custom@11ty/posthtml-urls@11ty/recursive-copy@sindresorhus/slugifybcp-47-normalizechokidardebugdependency-graphentitiesfilesizegray-matteriso-639-1js-yamlkleurliquidjsluxonmarkdown-itminimistmoonode-retrieve-globalsnunjuckspicomatchplease-upgrade-nodeposthtmlposthtml-match-helpersemverslugifytinyglobby
Dev Dependencies
33
@11ty/eleventy-img@11ty/eleventy-plugin-rss@11ty/eleventy-plugin-syntaxhighlight@11ty/eleventy-plugin-webc@eslint/eslintrc@eslint/js@iarna/toml@mdx-js/node-loader@types/node@vue/server-renderer@zachleat/noopavac8eslinteslint-config-prettierglobalsjsx-async-runtimemarkdown-it-abbrmarkdown-it-emojimarkednano-stagedprettierprettyreactreact-domrimrafsasssimple-git-hookstsxtypescriptvuezodzod-validation-error
eleventy 🕚⚡️🎈🐀
A simpler static site generator. An alternative to Jekyll. Written in JavaScript. Transforms a directory of templates (of varying types) into HTML.
Works with HTML, Markdown, JavaScript, Liquid, Nunjucks, with addons for WebC, Sass, Vue, Svelte, TypeScript, JSX, and many others!
➡ Documentation
- Please star this repo on GitHub!
- Follow us on Mastodon @eleventy@fosstodon.org or Twitter @eleven_ty
- Join us on Discord
- Support 11ty on Open Collective
- 11ty on npm
- 11ty on GitHub
Installation
npm install @11ty/eleventy --save-dev
Read our Getting Started guide.
Tests
npm run test
- We use the ava JavaScript test runner (Assertions documentation)
- ℹ️ To keep tests fast, thou shalt try to avoid writing files in tests.
- Continuous Integration on GitHub Actions
- Code Coverage Statistics
- Benchmark for Performance Regressions
Community Roadmap
- Top Feature Requests (Add your own votes using the 👍 reaction)
- Top Bugs 😱 (Add your own votes using the 👍 reaction)
Plugins
See the official docs on plugins.
No vulnerabilities found.
Reason
no binaries found in the repo
Reason
1 out of 1 merged PRs checked by a CI test -- score normalized to 10
Reason
33 different organizations found -- score normalized to 10
Details
- Info: contributors work for 11ty,11ty @fortawesome,FortAwesome,GoogleChromeLabs,HTTPArchive,NebraskaJS,NixOS,Offene-Bibel,ResponsiveImagesCG,SearchFeed,andré jaenisch web-development & -consulting,baidu,catppuccin,cc-fiae-2024,ecomfe,everything-registry,expath,factorial gmbh,filamentgroup,gemium,jamstack,lipu-tenpo,microsoft,mipengine,rollup,sheffieldhackspace,simple-icons,tc39,tiktok,w3c,w3ctag,warpdotdev,yazi-rs
Reason
no dangerous workflow patterns detected
Reason
update tool detected
Details
- Info: tool 'Dependabot' is used: .github/dependabot.yml:1
Reason
license file detected
Details
- Info: License file found in expected location: LICENSE:1
- Info: FSF or OSI recognized license: LICENSE:1
Reason
30 commit(s) out of 30 and 22 issue activity out of 30 found in the last 90 days -- score normalized to 10
Reason
publishing workflow detected
Details
- Info: GitHub/GitLab publishing workflow used in run https://api.github.com/repos/11ty/eleventy/actions/runs/15862169054: .github/workflows/release.yml:7
Reason
all dependencies are pinned
Details
- Info: 8 out of 8 GitHub-owned GitHubAction dependencies pinned
- Info: 1 out of 1 third-party GitHubAction dependencies pinned
- Info: 2 out of 2 npmCommand dependencies pinned
Reason
SAST tool is run on all commits
Details
- Info: all commits (8) are checked with a SAST tool
- Info: SAST tool detected: CodeQL
Reason
security policy file detected
Details
- Info: security policy file detected: SECURITY.md:1
- Info: Found linked content: SECURITY.md:1
- Info: Found disclosure, vulnerability, and/or timelines in security policy: SECURITY.md:1
- Info: Found text in security policy: SECURITY.md:1
Reason
GitHub workflow tokens follow principle of least privilege
Details
- Info: topLevel permissions set to 'read-all': .github/workflows/ci.yml:3
- Info: topLevel permissions set to 'read-all': .github/workflows/codeql.yml:23
- Info: jobLevel 'packages' permission set to 'read': .github/workflows/codeql.yml:39
- Info: jobLevel 'actions' permission set to 'read': .github/workflows/codeql.yml:42
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/codeql.yml:43
- Info: topLevel permissions set to 'read-all': .github/workflows/release.yml:5
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/release.yml:10
- Info: topLevel permissions set to 'read-all': .github/workflows/scorecard.yml:18
- Info: no jobLevel write permissions found
Reason
1 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55
Reason
branch protection is not maximal on development and all release branches
Details
- Info: 'force pushes' disabled on branch 'main'
- Info: 'allow deletion' disabled on branch 'main'
- Warn: no status checks found to merge onto branch 'main'
- Warn: number of required reviewers is only 1 on branch 'main'
- Info: stale review dismissal enabled on branch 'main'
- Warn: settings do not apply to administrators on branch 'main'
- Info: codeowner review is required on branch 'main'
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
found 23 unreviewed changesets out of 23 -- score normalized to 0
Reason
project is not fuzzed
Details
- Warn: no OSSFuzz integration found: Follow the steps in https://github.com/google/oss-fuzz to integrate fuzzing for your project. Over time, try to add fuzzing for more functionalities of your project. (High effort)
- Warn: no OneFuzz integration found: Follow the steps in https://github.com/microsoft/onefuzz to start fuzzing for your project. Over time, try to add fuzzing for more functionalities of your project. (High effort)
- Warn: no GoBuiltInFuzzer integration found: Follow the steps in https://go.dev/doc/fuzz/ to enable fuzzing on your project. Over time, try to add fuzzing for more functionalities of your project. (Medium effort)
- Warn: no PythonAtherisFuzzer integration found: Follow the steps in https://github.com/google/atheris to enable fuzzing on your project. Over time, try to add fuzzing for more functionalities of your project. (Medium effort)
- Warn: no CLibFuzzer integration found: Follow the steps in https://llvm.org/docs/LibFuzzer.html to enable fuzzing on your project. Over time, try to add fuzzing for more functionalities of your project. (Medium effort)
- Warn: no CppLibFuzzer integration found: Follow the steps in https://llvm.org/docs/LibFuzzer.html to enable fuzzing on your project. Over time, try to add fuzzing for more functionalities of your project. (Medium effort)
- Warn: no SwiftLibFuzzer integration found: Follow the steps in https://google.github.io/oss-fuzz/getting-started/new-project-guide/swift-lang/ to enable fuzzing on your project. Over time, try to add fuzzing for more functionalities of your project. (Medium effort)
- Warn: no RustCargoFuzzer integration found: Follow the steps in https://rust-fuzz.github.io/book/cargo-fuzz.html to enable fuzzing on your project. Over time, try to add fuzzing for more functionalities of your project. (Medium effort)
- Warn: no JavaJazzerFuzzer integration found: Follow the steps in https://github.com/CodeIntelligenceTesting/jazzer to enable fuzzing on your project. Over time, try to add fuzzing for more functionalities of your project. (Medium effort)
- Warn: no ClusterFuzzLite integration found: Follow the steps in https://github.com/google/clusterfuzzlite to integrate fuzzing as part of CI. Over time, try to add fuzzing for more functionalities of your project. (High effort)
- Warn: no HaskellPropertyBasedTesting integration found: Use one of the following frameworks to fuzz your project: QuickCheck: https://hackage.haskell.org/package/QuickCheck hedgehog: https://hedgehog.qa/ validity: https://github.com/NorfairKing/validity smallcheck: https://hackage.haskell.org/package/smallcheck hspec: https://hspec.github.io/ tasty: https://hackage.haskell.org/package/tasty (High effort)
- Warn: no TypeScriptPropertyBasedTesting integration found: Use fast-check: https://github.com/dubzzz/fast-check (High effort)
- Warn: no JavaScriptPropertyBasedTesting integration found: Use fast-check: https://github.com/dubzzz/fast-check (High effort)
Score
8.1
/10
Last Scanned on 2025-07-01T07:41:38Z
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More