Gathering detailed insights and metrics for @patternfly-test/react-core
Installations
npm install @patternfly-test/react-coreDeveloper Guide
BETA
Typescript
No
Module System
CommonJS
Node Version
8.15.0
NPM Version
lerna/3.10.5/node@v8.15.0+x64 (linux)
Score
55.2
Supply Chain
59.2
Quality
75.6
Maintenance
50
Vulnerability
96.7
License
Releases
14,951
Contributors
206
Languages
6
TypeScript
JavaScript
CSS
Shell
Handlebars
HTML
TypeScript (98.09%)
JavaScript (1.71%)
CSS (0.13%)
Shell (0.03%)
Handlebars (0.03%)
HTML (0.01%)
validate.email 🚀
Verify real, reachable, and deliverable emails with instant MX records, SMTP checks, and disposable email detection.
Developer
Download Statistics
Total Downloads
3,778
Last Day
1
Last Week
2
Last Month
18
Last Year
354
GitHub Statistics
MIT License
811 Stars
7,262 Commits
359 Forks
27 Watchers
33 Branches
206 Contributors
Updated on Feb 26, 2025
Maintainers
3
Package Meta Information
Latest Version
0.2.2
Package Id
@patternfly-test/react-core@0.2.2
Unpacked Size
1.06 MB
Size
168.85 kB
File Count
595
NPM Version
lerna/3.10.5/node@v8.15.0+x64 (linux)
Node Version
8.15.0
Total Downloads
Cumulative downloads
Total Downloads
3,778
Last Day
0%
1
Compared to previous day
Last Week
-33.3%
2
Compared to previous week
Last Month
-61.7%
18
Compared to previous month
Last Year
-55%
354
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
PatternFly React
This project provides a set of React components for the PatternFly project.
Community: PatternFly website | Slack | Medium | Mailing list
Table of contents
Using PatternFly 3? Take a look at the PatternFly 3 React component information.
PatternFly React packages
| Package link | Description |
|---|---|
| :blue_heart: Core packages | |
| @patternfly/react-core | Core set of components |
| @patternfly/react-table | Table components |
| @patternfly/react-charts | Chart components |
| @patternfly/react-icons | Icon components |
| @patternfly/react-styles | PatternFly CSS styles |
| @patternfly/react-tokens | PatternFly CSS variable tokens |
| :yellow_heart: Extension packages | |
| @patternfly/react-log-viewer | Virtualized log viewer component |
| @patternfly/react-catalog-view-extension | Catalog view extension |
| @patternfly/react-topology | Topology components |
| :open_file_folder: Supporting packages | |
| @patternfly/react-docs | Gatsby documentation site for components |
| @patternfly/react-integration | Cypress integration tests |
| :x: Deprecated packages | |
| @patternfly/react-virtualized-extension | Table and list row virtualization extension |
Setup
Before you begin, check out this overview of PatternFly to get familiar with the basic elements of the design system.
Install a package manager
Install a package manager before using the PatternFly libraries.
Start with PatternFly React seed
If you want to start with your existing project, skip to Install and configure PatternFly React.
PatternFly React seed is an open source build scaffolding utility. It gives developers a jump-start when creating new projects that will use PatternFly.
- Fork the project
-
TypeScript: Fork and clone the PatternFly React Seed project.
-
JavaScript: Fork and clone the JavaScript branch of the PatternFly React Seed project.
For more information about how to fork and clone a repo, view GitHub Help.
-
Install the project
Follow the steps outlined in the PatternFly React Seed README to install.
Install and configure PatternFly React
-
Using npm, run the following command to install:
npm install @patternfly/react-core --saveOR
-
Using yarn, run the following command to install:
yarn add @patternfly/react-coreOnce the library is installed, use the specific setup instructions for that library to access the components it contains. These can be found in the readme for each library.
Contribution guidelines
All React contributors must first be PatternFly community contributors. If you're already a PatternFly community contributor, check out the React contribution guidelines to make React contributions.
License
PatternFly React is licensed under the MIT License.
No vulnerabilities found.
Reason
30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Reason
no dangerous workflow patterns detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
no binaries found in the repo
Reason
Found 7/13 approved changesets -- score normalized to 5
Reason
branch protection is not maximal on development and all release branches
Details
- Warn: branch protection not enabled for branch '5.3.x'
- Warn: branch protection not enabled for branch '5.2.x'
- Info: 'allow deletion' disabled on branch 'main'
- Info: 'force pushes' disabled on branch 'main'
- Info: required approving review count is 2 on branch 'main'
- Warn: codeowners review is not required on branch 'main'
- Warn: no status checks found to merge onto branch 'main'
- Info: PRs are required in order to make changes on branch 'main'
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/add-new-issues-to-project.yml:1
- Warn: no topLevel permission defined: .github/workflows/documentation.yml:1
- Warn: no topLevel permission defined: .github/workflows/extensions.yml:1
- Warn: no topLevel permission defined: .github/workflows/main.yml:1
- Warn: no topLevel permission defined: .github/workflows/promote.yml:1
- Warn: no topLevel permission defined: .github/workflows/release.yml:1
- Warn: no topLevel permission defined: .github/workflows/stale.yml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/add-new-issues-to-project.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/patternfly/patternfly-react/add-new-issues-to-project.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/add-new-issues-to-project.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/patternfly/patternfly-react/add-new-issues-to-project.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/patternfly/patternfly-react/documentation.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/patternfly/patternfly-react/documentation.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/extensions.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/patternfly/patternfly-react/extensions.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:81: update your workflow using https://app.stepsecurity.io/secureworkflow/patternfly/patternfly-react/main.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:87: update your workflow using https://app.stepsecurity.io/secureworkflow/patternfly/patternfly-react/main.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/patternfly/patternfly-react/main.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/patternfly/patternfly-react/main.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/patternfly/patternfly-react/main.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/patternfly/patternfly-react/main.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/patternfly/patternfly-react/main.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/patternfly/patternfly-react/main.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/promote.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/patternfly/patternfly-react/promote.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/patternfly/patternfly-react/release.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/stale.yml:9: update your workflow using https://app.stepsecurity.io/secureworkflow/patternfly/patternfly-react/stale.yml/main?enable=pin
- Info: 0 out of 15 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 1 third-party GitHubAction dependencies pinned
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 24 are checked with a SAST tool
Reason
29 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
- Warn: Project is vulnerable to: GHSA-x4c5-c7rf-jjgv
- Warn: Project is vulnerable to: GHSA-h5c3-5r3r-rr8q
- Warn: Project is vulnerable to: GHSA-rmvr-2pp2-xj38
- Warn: Project is vulnerable to: GHSA-xx4v-prfh-6cgc
- Warn: Project is vulnerable to: GHSA-4w2v-q235-vp99
- Warn: Project is vulnerable to: GHSA-cph5-m8f7-6c5x
- Warn: Project is vulnerable to: GHSA-wf5p-g6vw-rhxx
- Warn: Project is vulnerable to: GHSA-8hc4-vh64-cxmj
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-67mh-4wv8-2f99
- Warn: Project is vulnerable to: GHSA-74fj-2j2h-c42q
- Warn: Project is vulnerable to: GHSA-pw2r-vq6v-hr8c
- Warn: Project is vulnerable to: GHSA-jchw-25xp-jwwc
- Warn: Project is vulnerable to: GHSA-cxjh-pqwp-8mfp
- Warn: Project is vulnerable to: GHSA-pfrx-2q88-qq97
- Warn: Project is vulnerable to: GHSA-rc47-6667-2j5j
- Warn: Project is vulnerable to: GHSA-2p57-rm9w-gvfp
- Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
- Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55
- Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j
- Warn: Project is vulnerable to: GHSA-7fh5-64p2-3v2j
- Warn: Project is vulnerable to: GHSA-gcx4-mw62-g8wm
- Warn: Project is vulnerable to: GHSA-325j-24f4-qv5x
- Warn: Project is vulnerable to: GHSA-vx3p-948g-6vhq
- Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
- Warn: Project is vulnerable to: GHSA-w5p7-h5w8-2hfq
- Warn: Project is vulnerable to: GHSA-4vvj-4cpr-p986
- Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q
Score
4
/10
Last Scanned on 2025-02-17
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More