npmpackage.info

Gathering detailed insights and metrics for @graphql-codegen/core

Other packages similar to @graphql-codegen/core

graphql-codegen-core

0.18.2

GraphQL types and code generator based on schema

graphql-codegen-hasura-core

4.10.0

GraphQL Code Generator plugin for generating a CRUD TypeScript Config for Hasura from Documents

@proto-graphql/codegen-core

0.5.2

@cobbl/graphql-codegen-core

0.1.1

Gathering detailed insights and metrics for @graphql-codegen/core

@graphql-codegen/core - 4.0.2 | npmpackage.info

@graphql-codegen/core

A tool for generating code based on a GraphQL schema and GraphQL operations (query/mutation/subscription), with flexible support for custom plugins.

4.0.2

11,037

MIT

TypeScript

21.24 kB

4.4

Installations

npm install @graphql-codegen/core

Developer Guide

BETA

Typescript

No

Module System

ESM

Node Version

18.19.0

NPM Version

10.2.3 Score

97.6

Supply Chain

67.6

Quality

96.2

Maintenance

100

Vulnerability

99.6

License

Pull Requests

Open

92

Total

6,668

Closed

623

Merged

5,953

Issues

Open

533

Total

2,631

Closed

2,098

Releases

1,983

May 06, 2025

release-1746539042593

Updated on May 06, 2025

March 27, 2025

release-1743074721096

Updated on Mar 27, 2025

March 07, 2025

release-1741347583945

Updated on Mar 07, 2025

February 23, 2025

release-1740342549291

Updated on Feb 23, 2025

February 19, 2025

release-1739976344714

Updated on Feb 19, 2025

February 13, 2025

release-1739457179435

Updated on Feb 13, 2025

View All 1,983 releases

Languages

TypeScript

MDX

JavaScript

Rust

Shell

CSS

TypeScript (83.69%)

MDX (14.58%)

JavaScript (1.25%)

Rust (0.47%)

Developer

dotansimha

Download Statistics

Total Downloads

Last Day

Last Week

Last Month

Last Year

GitHub Statistics

MIT License

11,037 Stars

8,390 Commits

1,365 Forks

78 Watchers

88 Branches

550 Contributors

Updated on May 12, 2025

Bundle Size

79.41 kB

Minified

21.24 kB

Minified + Gzipped

Bundlephobia

Maintainers

View All 550 Contributors

Package Meta Information

Latest Version

4.0.2

Package Id

@graphql-codegen/core@4.0.2

Unpacked Size

38.32 kB

Size

6.49 kB

File Count

NPM Version

10.2.3

Node Version

18.19.0

Published on

Feb 06, 2024

Total Downloads

Cumulative downloads

Total Downloads

NaN

Last Day

NaN

Compared to previous day

Last Week

NaN

Compared to previous week

Last Month

NaN

Compared to previous month

Last Year

NaN

Compared to previous year

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

@graphql-codegen/plugin-helpers @graphql-tools/schema @graphql-tools/utils tslib

Peer Dependencies

graphql

GraphQL Code Generator

Live demo and full documentation: the-guild.dev/graphql/codegen

Project repository: graphql-code-generator

No vulnerabilities found.

10

Maintained

Determines if the project is "actively maintained".

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

License

Determines if the project has defined a license.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

7

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

5

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 5

Details

Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:89: update your workflow using https://app.stepsecurity.io/secureworkflow/dotansimha/graphql-code-generator/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:122: update your workflow using https://app.stepsecurity.io/secureworkflow/dotansimha/graphql-code-generator/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:151: update your workflow using https://app.stepsecurity.io/secureworkflow/dotansimha/graphql-code-generator/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/dotansimha/graphql-code-generator/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:47: update your workflow using https://app.stepsecurity.io/secureworkflow/dotansimha/graphql-code-generator/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/dotansimha/graphql-code-generator/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/website-integrity.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/dotansimha/graphql-code-generator/website-integrity.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/website.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/dotansimha/graphql-code-generator/website.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/website.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/dotansimha/graphql-code-generator/website.yml/master?enable=pin
Info: 12 out of 12 GitHub-owned GitHubAction dependencies pinned
Info: 6 out of 15 third-party GitHubAction dependencies pinned

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Security-Policy

Determines if the project has published a security policy.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

0

Fuzzing

Determines if the project uses fuzzing.

0

SAST

Determines if the project uses static code analysis.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Reason

42 existing vulnerabilities detected

Details

Warn: Project is vulnerable to: RUSTSEC-2021-0139
Warn: Project is vulnerable to: RUSTSEC-2021-0145 / GHSA-g98v-hv3f-hcfr
Warn: Project is vulnerable to: RUSTSEC-2024-0375
Warn: Project is vulnerable to: RUSTSEC-2020-0095
Warn: Project is vulnerable to: RUSTSEC-2024-0421 / GHSA-h97m-ww89-6jmq
Warn: Project is vulnerable to: RUSTSEC-2024-0384
Warn: Project is vulnerable to: RUSTSEC-2023-0055 / GHSA-c2hm-mjxv-89r4
Warn: Project is vulnerable to: GHSA-2326-pfpj-vx3h
Warn: Project is vulnerable to: RUSTSEC-2023-0086
Warn: Project is vulnerable to: RUSTSEC-2024-0370
Warn: Project is vulnerable to: GHSA-c827-hfw6-qwvm
Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8
Warn: Project is vulnerable to: GHSA-8hc4-vh64-cxmj
Warn: Project is vulnerable to: GHSA-jr5f-v2jv-69x6
Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x
Warn: Project is vulnerable to: GHSA-vhxf-7vqr-mrjg
Warn: Project is vulnerable to: GHSA-67mh-4wv8-2f99
Warn: Project is vulnerable to: GHSA-f7f6-9jq7-3rqj
Warn: Project is vulnerable to: GHSA-jchw-25xp-jwwc
Warn: Project is vulnerable to: GHSA-cxjh-pqwp-8mfp
Warn: Project is vulnerable to: GHSA-3wc5-fcw2-2329
Warn: Project is vulnerable to: GHSA-64fm-8hw2-v72w
Warn: Project is vulnerable to: GHSA-cvr6-37gx-v8wc
Warn: Project is vulnerable to: GHSA-f98w-7cxr-ff2h
Warn: Project is vulnerable to: GHSA-cg87-wmx4-v546
Warn: Project is vulnerable to: GHSA-c59h-r6p8-q9wc
Warn: Project is vulnerable to: GHSA-fq54-2j52-jc42
Warn: Project is vulnerable to: GHSA-7m27-7ghc-44w9
Warn: Project is vulnerable to: GHSA-f82v-jwr5-mffw
Warn: Project is vulnerable to: GHSA-g77x-44xx-532m
Warn: Project is vulnerable to: GHSA-7gfc-8cq8-jh5f
Warn: Project is vulnerable to: GHSA-gp8f-8m3g-qvj9
Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j
Warn: Project is vulnerable to: GHSA-7fh5-64p2-3v2j
Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
Warn: Project is vulnerable to: GHSA-3mv9-4h5g-vhg3
Warn: Project is vulnerable to: GHSA-x574-m823-4x7w
Warn: Project is vulnerable to: GHSA-4r4m-qw57-chr8
Warn: Project is vulnerable to: GHSA-xcj6-pq6g-qj4x
Warn: Project is vulnerable to: GHSA-356w-63v5-8wf4
Warn: Project is vulnerable to: GHSA-859w-5945-r5v3
Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q

Score

4.4

/10

Last Scanned on 2025-05-05

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More