Gathering detailed insights and metrics for angular
Gathering detailed insights and metrics for angular
npm install angular
Typescript
Module System
Node Version
NPM Version
99.9
Supply Chain
91.8
Quality
76
Maintenance
71.5
Vulnerability
100
License
JavaScript (98.17%)
HTML (1.22%)
Shell (0.46%)
BitBake (0.1%)
CSS (0.05%)
Love this project? Help keep it running — sponsor us today! 🚀
Total Downloads
190,065,584
Last Day
84,377
Last Week
414,802
Last Month
1,801,896
Last Year
20,944,086
MIT License
58,771 Stars
9,074 Commits
27,441 Forks
3,772 Watchers
22 Branches
1,684 Contributors
Updated on Feb 14, 2025
Minified
Minified + Gzipped
Latest Version
1.8.3
Package Id
angular@1.8.3
Unpacked Size
1.99 MB
Size
611.27 kB
File Count
10
NPM Version
6.14.16
Node Version
14.19.0
Cumulative downloads
Total Downloads
Last Day
4.2%
84,377
Compared to previous day
Last Week
-0.3%
414,802
Compared to previous week
Last Month
32.7%
1,801,896
Compared to previous month
Last Year
-13.5%
20,944,086
Compared to previous year
No dependencies detected.
AngularJS lets you write client-side web applications as if you had a smarter browser. It lets you use good old HTML (or HAML, Jade/Pug and friends!) as your template language and lets you extend HTML’s syntax to express your application’s components clearly and succinctly. It automatically synchronizes data from your UI (view) with your JavaScript objects (model) through 2-way data binding. To help you structure your application better and make it easy to test, AngularJS teaches the browser how to do dependency injection and inversion of control.
It also helps with server-side communication, taming async callbacks with promises and deferred objects, and it makes client-side navigation and deep linking with hashbang urls or HTML5 pushState a piece of cake. Best of all? It makes development fun!
AngularJS support has officially ended as of January 2022. See what ending support means and read the end of life announcement.
Visit angular.io for the actively supported Angular.
Go to https://docs.angularjs.org
We've set up a separate document for our contribution guidelines.
We've set up a separate document for developers.
AngularJS is the next generation framework where each component is designed to work with every other component in an interconnected way like a well-oiled machine. AngularJS is JavaScript MVC made easy and done right. (Well it is not really MVC, read on, to understand what this means.)
MVC, short for Model-View-Controller, is a design pattern, i.e. how the code should be organized and how the different parts of an application separated for proper readability and debugging. Model is the data and the database. View is the user interface and what the user sees. Controller is the main link between Model and View. These are the three pillars of major programming frameworks present on the market today. On the other hand AngularJS works on MV*, short for Model-View-Whatever. The Whatever is AngularJS's way of telling that you may create any kind of linking between the Model and the View here.
Unlike other frameworks in any programming language, where MVC, the three separate components, each one has to be written and then connected by the programmer, AngularJS helps the programmer by asking him/her to just create these and everything else will be taken care of by AngularJS.
AngularJS uses HTML to define the user's interface. AngularJS also enables the programmer to write new HTML tags (AngularJS Directives) and increase the readability and understandability of the HTML code. Directives are AngularJS’s way of bringing additional functionality to HTML. Directives achieve this by enabling us to invent our own HTML elements. This also helps in making the code DRY (Don't Repeat Yourself), which means once created, a new directive can be used anywhere within the application.
HTML is also used to determine the wiring of the app. Special attributes in the HTML determine where to load the app, which components or controllers to use for each element, etc. We specify "what" gets loaded, but not "how". This declarative approach greatly simplifies app development in a sort of WYSIWYG way. Rather than spending time on how the program flows and orchestrating the various moving parts, we simply define what we want and AngularJS will take care of the dependencies.
Data and Data Models in AngularJS are plain JavaScript objects and one can add and change properties directly on it and loop over objects and arrays at will.
One of AngularJS's strongest features. Two-way Data Binding means that if something changes in the
Model, the change gets reflected in the View instantaneously, and the same happens the other way
around. This is also referred to as Reactive Programming, i.e. suppose a = b + c
is being
programmed and after this, if the value of b
and/or c
is changed then the value of a
will be
automatically updated to reflect the change. AngularJS uses its "scopes" as a glue between the Model
and View and makes these updates in one available for the other.
Everything in AngularJS is created to enable the programmer to end up writing less code that is easily maintainable and readable by any other new person on the team. Believe it or not, one can write a complete working two-way data binded application in less than 10 lines of code. Try and see for yourself!
AngularJS has Dependency Injection, i.e. it takes care of providing all the necessary dependencies to its controllers and services whenever required. This helps in making the AngularJS code ready for unit testing by making use of mock dependencies created and injected. This makes AngularJS more modular and easily testable thus in turn helping a team create more robust applications.
Stable Version
2
7.5/10
Summary
angular vulnerable to super-linear runtime due to backtracking
Affected Versions
>= 1.3.0, <= 1.8.3
7.5/10
Summary
Prototype Pollution in angular
Affected Versions
< 1.7.9
Patched Versions
1.7.9
9
6.1/10
Summary
Angular (deprecated package) Cross-site Scripting
Affected Versions
<= 1.8.3
5.4/10
Summary
Cross site scripting in Angular
Affected Versions
< 1.8.0
Patched Versions
1.8.0
5.3/10
Summary
angular vulnerable to regular expression denial of service via the angular.copy() utility
Affected Versions
<= 1.8.3
5.3/10
Summary
angular vulnerable to regular expression denial of service via the $resource service
Affected Versions
<= 1.8.3
5.3/10
Summary
angular vulnerable to regular expression denial of service via the <input type="url"> element
Affected Versions
<= 1.8.3
6.1/10
Summary
AngularJS Cross-site Scripting due to failure to sanitize `xlink.href` attributes
Affected Versions
< 1.5.0-beta.1
Patched Versions
1.5.0-beta.1
5.3/10
Summary
angular vulnerable to regular expression denial of service (ReDoS)
Affected Versions
>= 1.7.0
5/10
Summary
XSS via JQLite DOM manipulation functions in AngularJS
Affected Versions
< 1.8.0
Patched Versions
1.8.0
0/10
Summary
Cross-Site Scripting via JSONP
Affected Versions
< 1.6.0
Patched Versions
1.6.0
2
4.8/10
Summary
AngularJS allows attackers to bypass common image source restrictions
Affected Versions
>= 1.3.0-rc.4, <= 1.8.3
4.8/10
Summary
AngularJS allows attackers to bypass common image source restrictions
Affected Versions
<= 1.8.3
Reason
security policy file detected
Details
Reason
license file detected
Details
Reason
binaries present in source code
Details
Reason
branch protection is not maximal on development and all release branches
Details
Reason
Found 3/30 approved changesets -- score normalized to 1
Reason
project is archived
Details
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
Reason
project is not fuzzed
Details
Reason
165 existing vulnerabilities detected
Details
Score
Last Scanned on 2025-02-10
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More