Gathering detailed insights and metrics for @gasket/preset-nextjs
Gathering detailed insights and metrics for @gasket/preset-nextjs
Installations
npm install @gasket/preset-nextjsDeveloper Guide
BETA
Typescript
Yes
Module System
ESM
Node Version
22.16.0
NPM Version
10.9.2
Releases
438
@gasket/plugin-git@7.4.3
@gasket/plugin-git@7.4.3
Updated on Jul 03, 2025
@gasket/plugin-data@7.4.5
@gasket/plugin-data@7.4.5
Updated on Jul 03, 2025
@gasket/preset-nextjs@7.4.9
@gasket/preset-nextjs@7.4.9
Updated on Jul 03, 2025
@gasket/preset-api@7.4.6
@gasket/preset-api@7.4.6
Updated on Jul 03, 2025
@gasket/plugin-docs@7.4.4
@gasket/plugin-docs@7.4.4
Updated on Jul 03, 2025
@gasket/react-intl@7.5.4
@gasket/react-intl@7.5.4
Updated on Jul 03, 2025
Languages
4
JavaScript
TypeScript
CSS
HTML
JavaScript (95.29%)
TypeScript (3.24%)
CSS (1.3%)
HTML (0.18%)
Developer
Download Statistics
Total Downloads
0
Last Day
0
Last Week
0
Last Month
0
Last Year
0
GitHub Statistics
MIT License
138 Stars
1,585 Commits
77 Forks
17 Watchers
36 Branches
78 Contributors
Updated on Jul 10, 2025
Maintainers
8
Package Meta Information
Latest Version
7.5.0
Package Id
@gasket/preset-nextjs@7.5.0
Unpacked Size
15.99 kB
Size
4.68 kB
File Count
14
NPM Version
10.9.2
Node Version
22.16.0
Published on
Jul 10, 2025
Total Downloads
Cumulative downloads
Total Downloads
NaN
Last Day
0%
NaN
Compared to previous day
Last Week
0%
NaN
Compared to previous week
Last Month
0%
NaN
Compared to previous month
Last Year
0%
NaN
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
20
@gasket/plugin-cypress@gasket/plugin-docusaurus@gasket/plugin-docs@gasket/plugin-express@gasket/plugin-git@gasket/plugin-dynamic-plugins@gasket/plugin-intl@gasket/plugin-https@gasket/plugin-command@gasket/plugin-lint@gasket/plugin-jest@gasket/plugin-https-proxy@gasket/plugin-logger@gasket/plugin-mocha@gasket/plugin-nextjs@gasket/plugin-webpack@gasket/plugin-vitest@gasket/plugin-winston@gasket/plugin-typescript@gasket/utils
@gasket/preset-nextjs
Framework for building Next.js apps using Gasket.
Installation
npx create-gasket-app@latest <app-name> --presets @gasket/preset-nextjs
Plugins
- @gasket/plugin-express
- @gasket/plugin-https
- @gasket/plugin-winston
- @gasket/plugin-nextjs
- @gasket/plugin-webpack
License
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Reason
license file detected
Details
- Info: project has a license file: LICENSE.md:0
- Info: FSF or OSI recognized license: MIT License: LICENSE.md:0
Reason
no binaries found in the repo
Reason
security policy file detected
Details
- Info: security policy file detected: SECURITY.md:1
- Info: Found linked content: SECURITY.md:1
- Warn: One or no descriptive hints of disclosure, vulnerability, and/or timelines in security policy
- Info: Found text in security policy: SECURITY.md:1
Reason
Found 17/19 approved changesets -- score normalized to 8
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/ci.yml:1
- Info: topLevel 'contents' permission set to 'read': .github/workflows/docs-deploy.yml:10
- Warn: no topLevel permission defined: .github/workflows/release.yml:1
- Warn: no topLevel permission defined: .github/workflows/syncpack.yml:1
- Info: no jobLevel write permissions found
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/ci.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/ci.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/ci.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docs-deploy.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/docs-deploy.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/docs-deploy.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/docs-deploy.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docs-deploy.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/docs-deploy.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docs-deploy.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/docs-deploy.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docs-deploy.yml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/docs-deploy.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docs-deploy.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/docs-deploy.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docs-deploy.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/docs-deploy.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/release.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/release.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/release.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/release.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/release.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/syncpack.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/syncpack.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/syncpack.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/syncpack.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/syncpack.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/syncpack.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/syncpack.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/godaddy/gasket/syncpack.yml/main?enable=pin
- Info: 0 out of 15 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 5 third-party GitHubAction dependencies pinned
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 28 are checked with a SAST tool
Reason
21 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8
- Warn: Project is vulnerable to: GHSA-jr5f-v2jv-69x6
- Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
- Warn: Project is vulnerable to: GHSA-67mh-4wv8-2f99
- Warn: Project is vulnerable to: GHSA-f7f6-9jq7-3rqj
- Warn: Project is vulnerable to: GHSA-4www-5p9h-95mh
- Warn: Project is vulnerable to: GHSA-9gqv-wp59-fq42
- Warn: Project is vulnerable to: GHSA-m5qc-5hw7-8vg7
- Warn: Project is vulnerable to: GHSA-76p3-8jx3-jpfq
- Warn: Project is vulnerable to: GHSA-3rfm-jhwj-7488
- Warn: Project is vulnerable to: GHSA-hhq3-ff78-jv3g
- Warn: Project is vulnerable to: GHSA-35jh-r3h4-6jhm
- Warn: Project is vulnerable to: GHSA-r2fc-ccr8-96c4
- Warn: Project is vulnerable to: GHSA-x7hr-w5r2-h6wg
- Warn: Project is vulnerable to: GHSA-x574-m823-4x7w
- Warn: Project is vulnerable to: GHSA-4r4m-qw57-chr8
- Warn: Project is vulnerable to: GHSA-xcj6-pq6g-qj4x
- Warn: Project is vulnerable to: GHSA-356w-63v5-8wf4
- Warn: Project is vulnerable to: GHSA-859w-5945-r5v3
- Warn: Project is vulnerable to: GHSA-4v9v-hfq4-rm2v
- Warn: Project is vulnerable to: GHSA-9jgg-88mc-972h
Score
5.2
/10
Last Scanned on 2025-07-07
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More