Gathering detailed insights and metrics for @angular-devkit/core
Gathering detailed insights and metrics for @angular-devkit/core
Installations
npm install @angular-devkit/coreScore
60.6
Supply Chain
99.6
Quality
96.6
Maintenance
100
Vulnerability
99.3
License
Developer
Developer Guide
BETA
Module System
CommonJS, ESM
Min. Node Version
^18.19.1 || ^20.11.1 || >=22.0.0
Typescript Support
No
Node Version
20.17.0
NPM Version
10.9.0
Statistics
26,787 Stars
15,771 Commits
11,980 Forks
1,002 Watching
28 Branches
658 Contributors
Updated on 27 Nov 2024
Bundle Size
323.15 kB
Minified
91.50 kB
Minified + Gzipped
Languages
TypeScript (94.72%)
Starlark (2.26%)
HTML (1.58%)
JavaScript (1.08%)
EJS (0.26%)
Shell (0.07%)
jq (0.03%)
CSS (0.01%)
Total Downloads
Cumulative downloads
Total Downloads
1,761,773,909
Last day
-2.5%
2,045,213
Compared to previous day
Last week
3.3%
10,560,986
Compared to previous week
Last month
15%
43,833,349
Compared to previous month
Last year
8.3%
451,289,447
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
6
Peer Dependencies
1
Versions
Angular CLI - The CLI tool for Angular.
The Angular CLI is a command-line interface tool that you use to initialize, develop, scaffold,
and maintain Angular applications directly from a command shell.
Contributing Guidelines
·
Submit an Issue
·
Blog
Documentation
Get started with Angular CLI, learn the fundamentals and explore advanced topics on our documentation website.
Development Setup
Prerequisites
- Install Node.js which includes Node Package Manager
Setting Up a Project
Install the Angular CLI globally:
npm install -g @angular/cli
Create workspace:
ng new [PROJECT NAME]
Run the application:
cd [PROJECT NAME]
ng serve
Angular is cross-platform, fast, scalable, has incredible tooling, and is loved by millions.
Quickstart
Ecosystem
Changelog
Learn about the latest improvements.
Upgrading
Check out our upgrade guide to find out the best way to upgrade your project.
Contributing
Contributing Guidelines
Read through our contributing guidelines to learn about our submission process, coding rules and more.
Want to Help?
Want to report a bug, contribute some code, or improve documentation? Excellent! Read up on our guidelines for contributing and then check out one of our issues labeled as help wanted or good first issue.
Code of Conduct
Help us keep Angular open and inclusive. Please read and follow our Code of Conduct.
Developer Guide
Read through our developer guide to learn about how to build and test the Angular CLI locally.
Community
Join the conversation and help the community.
- X (formerly Twitter)
- Discord
- Gitter
- YouTube
- StackOverflow
- Find a Local Meetup
Packages
This is a monorepo which contains many tools and packages:
Tools
| Project | Package | Version | Links |
|---|---|---|---|
| Angular Build System | @angular/build |  |   |
| Angular CLI | @angular/cli |  | |
| Architect CLI | @angular-devkit/architect-cli |  | |
| Schematics CLI | @angular-devkit/schematics-cli |  | |
Packages
| Project | Package | Version | Links |
|---|---|---|---|
| Angular SSR | @angular/ssr |  | |
| Architect | @angular-devkit/architect |  | |
| Build Angular | @angular-devkit/build-angular |  | |
| Build Webpack | @angular-devkit/build-webpack |  | |
| Core | @angular-devkit/core |  | |
| Schematics | @angular-devkit/schematics |  | |
Misc
| Project | Package | Version | Links |
|---|---|---|---|
| Angular Create | @angular/create |  | |
| Webpack Angular Plugin | @ngtools/webpack |  | |
Schematics
| Project | Package | Version | Links |
|---|---|---|---|
| Angular PWA Schematics | @angular/pwa |  | |
| Angular Schematics | @schematics/angular |  | |
Love Angular CLI? Give our repo a star :star: :arrow_up:.
No vulnerabilities found.
Reason
no binaries found in the repo
Reason
30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Reason
project has 65 contributing companies or organizations
Details
- Info: coddict contributor org/company found, ReactWeek contributor org/company found, beerjs contributor org/company found, googlers contributor org/company found, typings contributor org/company found, QwikDev contributor org/company found, trilonio co-founder contributor org/company found, rangleio contributor org/company found, mend contributor org/company found, AngularClass contributor org/company found, wasmbinaries contributor org/company found, nestjs contributor org/company found, angular-redux contributor org/company found, obshtestvo contributor org/company found, ngcommunity contributor org/company found, webpack contributor org/company found, leadingagile contributor org/company found, newlinedotco contributor org/company found, hizenapp contributor org/company found, async-framework contributor org/company found, ng-packagr contributor org/company found, angular-community contributor org/company found, keychain contributor org/company found, uniform-team contributor org/company found, HTTPArchive contributor org/company found, SofiaJavaScript contributor org/company found, google-gemini contributor org/company found, FieldDB contributor org/company found, testiumjs contributor org/company found, FEMR contributor org/company found, AngularAir contributor org/company found, nguniversal contributor org/company found, everything-registry contributor org/company found, rangle contributor org/company found, gethuman contributor org/company found, ng-newsletter contributor org/company found, Ninja-Squad contributor org/company found, ninja-squad contributor org/company found, angular @google contributor org/company found, https://1fpga.com contributor org/company found, angularjs-in-action contributor org/company found, vuejs contributor org/company found, angular contributor org/company found, aspect-build contributor org/company found, deployd contributor org/company found, expert support contributor org/company found, source-map contributor org/company found, TrilonIO contributor org/company found, storybookjs contributor org/company found, qwikifiers contributor org/company found, Jasig contributor org/company found, typed-typings contributor org/company found, kunai-consulting contributor org/company found, app-demos contributor org/company found, guess-js contributor org/company found, nrwl contributor org/company found, RedditInsight contributor org/company found, hackreactor contributor org/company found, vue-software contributor org/company found, ng-cruise contributor org/company found, nko4 contributor org/company found, monsoonco contributor org/company found, google contributor org/company found, rectanglepodcast-com contributor org/company found, FACTORYX contributor org/company found,
Reason
no dangerous workflow patterns detected
Reason
update tool detected
Details
- Info: detected update tool: Dependabot: .github/dependabot.yml:1
- Info: detected update tool: RenovateBot: renovate.json:1
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10
Reason
all dependencies are pinned
Details
- Info: 10 out of 10 GitHub-owned GitHubAction dependencies pinned
- Info: 51 out of 51 third-party GitHubAction dependencies pinned
Reason
security policy file detected
Details
- Info: security policy file detected: SECURITY.md:1
- Info: Found linked content: SECURITY.md:1
- Info: Found disclosure, vulnerability, and/or timelines in security policy: SECURITY.md:1
- Info: Found text in security policy: SECURITY.md:1
Reason
GitHub workflow tokens follow principle of least privilege
Details
- Info: jobLevel 'actions' permission set to 'read': .github/workflows/scorecard.yml:19
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/scorecard.yml:20
- Info: topLevel 'contents' permission set to 'read': .github/workflows/assistant-to-the-branch-manager.yml:10
- Info: found token with 'none' permissions: .github/workflows/ci.yml:1
- Info: topLevel 'contents' permission set to 'read': .github/workflows/dev-infra.yml:9
- Info: topLevel 'contents' permission set to 'read': .github/workflows/feature-requests.yml:5
- Info: topLevel 'contents' permission set to 'read': .github/workflows/perf.yml:9
- Info: found token with 'none' permissions: .github/workflows/pr.yml:1
- Info: topLevel 'contents' permission set to 'read': .github/workflows/scorecard.yml:12
- Info: no jobLevel write permissions found
Reason
Found 29/30 approved changesets -- score normalized to 9
Reason
branch protection is not maximal on development and all release branches
Details
- Info: 'allow deletion' disabled on branch 'main'
- Info: 'force pushes' disabled on branch 'main'
- Warn: required approving review count is 1 on branch 'main'
- Warn: codeowners review is not required on branch 'main'
- Warn: no status checks found to merge onto branch 'main'
- Info: PRs are required in order to make changes on branch 'main'
Reason
5 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
- Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
- Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
- Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q
- Warn: Project is vulnerable to: GHSA-776f-qx25-q3cc
Reason
badge detected: InProgress
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 30 are checked with a SAST tool
Score
7.9
/10
Last Scanned on 2024-11-27T15:00:24Z
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More