Gathering detailed insights and metrics for antd
Gathering detailed insights and metrics for antd
An enterprise-class UI design language and React UI library
Installations
npm install antdDeveloper Guide
BETA
Typescript
No
Module System
CommonJS
Node Version
22.5.1
NPM Version
10.8.2
Releases
696
Languages
5
TypeScript
JavaScript
CSS
HTML
Shell
TypeScript (99.4%)
JavaScript (0.43%)
CSS (0.06%)
HTML (0.05%)
Shell (0.05%)
Developer
Download Statistics
Total Downloads
282,544,030
Last Day
321,522
Last Week
1,650,353
Last Month
7,457,925
Last Year
78,293,345
GitHub Statistics
MIT License
94,154 Stars
29,310 Commits
51,798 Forks
244 Watchers
30 Branches
2,247 Contributors
Updated on Apr 03, 2025
Bundle Size
1.46 MB
Minified
451.11 kB
Minified + Gzipped
Sponsor this package
Maintainers
6
Package Meta Information
Latest Version
5.24.6
Package Id
antd@5.24.6
Unpacked Size
45.64 MB
Size
9.68 MB
File Count
3,715
NPM Version
10.8.2
Node Version
22.5.1
Published on
Apr 01, 2025
Total Downloads
Cumulative downloads
Total Downloads
282,544,030
Dependencies
49
dayjsrc-menurc-raterc-tabsrc-treerc-utilrc-imagerc-inputrc-stepsrc-tablerc-dialogrc-drawerrc-motionrc-pickerrc-selectrc-sliderrc-switchrc-uploadclassnamesrc-tooltiprc-cascaderrc-checkboxrc-collapserc-dropdownrc-mentionsrc-progressrc-textarearc-segmentedrc-field-formrc-pagination@babel/runtimerc-tree-selectrc-input-numberrc-notification@ant-design/iconscopy-to-clipboardthrottle-debounce@ant-design/colors@rc-component/tourrc-resize-observer@ant-design/cssinjs@rc-component/qrcode@rc-component/trigger@ant-design/fast-color@ant-design/react-slick@ant-design/cssinjs-utils@rc-component/color-pickerscroll-into-view-if-needed@rc-component/mutate-observer
Dev Dependencies
173
oratartsxdumiglobjestopenaxioschalkdekkohuskyimmeris-cijsdomp-allpngjsreactsharpdotenveslintjquerylodashremarkrimrafrunes2semvertar-fsterseradm-zipali-osscheerioprismjstypedocwebpack@antv/g6css-treefs-extragh-pagesjest-axeminimistmockdateprettierspinniesxhr-mockcross-envenv-pathsfast-globjsonml.jslz-stringpuppeteerrc-footerreact-dom@types/tarantd-stylenode-fetchpixelmatchreact-scanremark-cliremark-gfmsimple-gitsize-limittypescript@types/jest@types/nodecross-fetchhtml2sketchhttp-serverlint-stagedreact-iconsremark-lint@emotion/css@types/jsdom@types/pngjs@types/reactcli-progressrc-tween-onevanilla-tilt@dnd-kit/core@octokit/rest@types/jquery@types/lodash@types/semverantd-img-cropnode-notifierpretty-formatreact-countupremark-rehype@biomejs/biome@emotion/react@prettier/sync@types/adm-zip@types/ali-oss@types/gtag.js@types/prismjs@types/warningjest-puppeteer@emotion/server@stackblitz/sdk@types/css-tree@types/fs-extra@types/jest-axe@types/minimist@types/progress@types/spinniesrc-virtual-listreact-draggablereact-resizable@size-limit/file@types/nprogress@types/react-domisomorphic-fetchjest-canvas-mocklunar-typescriptreact-router-domreact-sticky-boxrehype-stringify@ant-design/tools@dnd-kit/sortable@inquirer/prompts@types/pixelmatchcsstree-validator@dnd-kit/modifiers@dnd-kit/utilities@npmcli/run-script@types/http-servereslint-plugin-jestidentity-obj-proxyreact-fast-marqueevanilla-jsoneditor@types/cli-progressjest-image-snapshotregenerator-runtime@antfu/eslint-config@testing-library/domantd-token-previewereslint-plugin-compatjest-environment-nodereact-highlight-words@ant-design/compatible@testing-library/react@types/react-resizableeslint-plugin-jsx-a11yjest-environment-jsdom@codecov/webpack-plugin@types/isomorphic-fetchdumi-plugin-color-chunkjsonml-to-react-elementreact-copy-to-clipboardwebpack-bundle-analyzer@types/throttle-debouncepackage-manager-detector@microflash/rehype-figure@testing-library/jest-domeslint-plugin-react-hooks@types/jest-image-snapshotcircular-dependency-plugin@codesandbox/sandpack-react@eslint-react/eslint-plugin@testing-library/user-eventeslint-plugin-react-refreshreact-intersection-observer@ant-design/happy-work-theme@types/react-highlight-words@types/react-copy-to-clipboardcypress-image-diff-html-reportremark-preset-lint-recommendedreact-infinite-scroll-component@ant-design/v5-patch-for-react-19@types/jest-environment-puppeteer@ianvs/prettier-plugin-sort-imports@qixian.cs/github-contributors-listremark-lint-no-undefined-references@madccc/duplicate-package-checker-webpack-plugin
Ant Design
An enterprise-class UI design language and React UI library.
Changelog · Report Bug · Request Feature · English · 中文
❤️ Sponsors and Backers 
✨ Features
- 🌈 Enterprise-class UI designed for web applications.
- 📦 A set of high-quality React components out of the box.
- 🛡 Written in TypeScript with predictable static types.
- ⚙️ Whole package of design resources and development tools.
- 🌍 Internationalization support for dozens of languages.
- 🎨 Powerful theme customization based on CSS-in-JS.
🖥 Environment Support
- Modern browsers
- Server-side Rendering
- Electron
 Edge |  Firefox |  Chrome |  Safari |  Electron |
|---|---|---|---|---|
| Edge | last 2 versions | last 2 versions | last 2 versions | last 2 versions |
📦 Install
1npm install antd
1yarn add antd
1pnpm add antd
1bun add antd
🔨 Usage
1import { Button, DatePicker } from 'antd'; 2 3export default () => ( 4 <> 5 <Button type="primary">PRESS ME</Button> 6 <DatePicker placeholder="select date" /> 7 </> 8);
🔗 Links
- Home page
- Components Overview
- Change Log
- rc-components
- 🆕 Ant Design X
- Ant Design Pro
- Pro Components
- Ant Design Mobile
- Ant Design Mini
- Ant Design Charts
- Ant Design Web3
- Landing Pages
- Ant Motion
- Scaffold Market
- Developer Instruction
- Versioning Release Note
- FAQ
- Online Playground for bug reports
- Customize Theme
- How to Apply for Being A Collaborator
⌨️ Development
Use opensumi.run, a free online pure front-end dev environment.
Or clone locally:
1$ git clone git@github.com:ant-design/ant-design.git 2$ cd ant-design 3$ npm install 4$ npm start
Open your browser and visit http://127.0.0.1:8001 , see more at Development.
🤝 Contributing 
|
|
|
Let's build a better antd together.
We warmly invite contributions from everyone. Before you get started, please take a moment to review our Contributing Guide. Feel free to share your ideas through Pull Requests or GitHub Issues. If you're interested in enhancing our codebase, explore the Development Instructions and enjoy your coding journey! :)
For collaborators, adhere to our Pull Request Principle and utilize our Pull Request Template when creating a Pull Request.
Issue funding
We use Polar.sh and Issuehunt to up-vote and promote specific features that you would like to see and implement. Check our backlog and help us:
No vulnerabilities found.
Reason
all changesets reviewed
Reason
30 commit(s) and 12 issue activity found in the last 90 days -- score normalized to 10
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
0 existing vulnerabilities detected
Reason
no binaries found in the repo
Reason
SAST tool is not run on all commits -- score normalized to 5
Details
- Warn: 17 commits out of 30 are checked with a SAST tool
Reason
security policy file detected
Details
- Info: security policy file detected: SECURITY.md:1
- Warn: no linked content found
- Info: Found disclosure, vulnerability, and/or timelines in security policy: SECURITY.md:1
- Info: Found text in security policy: SECURITY.md:1
Reason
badge detected: InProgress
Reason
dangerous workflow patterns detected
Details
- Warn: untrusted code checkout '${{ github.event.workflow_run.head_sha || github.event.workflow_run.head_branch}}': .github/workflows/visual-regression-persist-finish.yml:60
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/discussion-open-check.yml:13
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/issue-open-check.yml:13
- Info: jobLevel 'checks' permission set to 'read': .github/workflows/pr-auto-merge.yml:15
- Warn: jobLevel 'contents' permission set to 'write': .github/workflows/pr-auto-merge.yml:16
- Info: jobLevel 'actions' permission set to 'read': .github/workflows/preview-deploy.yml:55
- Warn: jobLevel 'contents' permission set to 'write': .github/workflows/rebase.yml:13
- Info: jobLevel 'pull-requests' permission set to 'read': .github/workflows/rebase.yml:14
- Warn: jobLevel 'contents' permission set to 'write': .github/workflows/release-dingtalk.yml:19
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/size-limit.yml:14
- Info: found token with 'none' permissions: .github/workflows/sync-gitee.yml:21
- Warn: jobLevel 'contents' permission set to 'write': .github/workflows/upgrade-deps.yml:14
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/verify-package-version.yml:13
- Warn: jobLevel 'statuses' permission set to 'write': .github/workflows/visual-regression-diff-approver.yml:17
- Info: jobLevel 'actions' permission set to 'read': .github/workflows/visual-regression-diff-finish.yml:59
- Warn: jobLevel 'statuses' permission set to 'write': .github/workflows/visual-regression-diff-finish.yml:62
- Info: jobLevel 'actions' permission set to 'read': .github/workflows/visual-regression-persist-finish.yml:56
- Info: topLevel 'contents' permission set to 'read': .github/workflows/discussion-open-check.yml:8
- Info: topLevel 'contents' permission set to 'read': .github/workflows/issue-check-inactive.yml:8
- Info: topLevel 'contents' permission set to 'read': .github/workflows/issue-close-require.yml:8
- Info: topLevel 'contents' permission set to 'read': .github/workflows/issue-labeled.yml:10
- Info: topLevel 'contents' permission set to 'read': .github/workflows/issue-open-check.yml:8
- Info: topLevel 'contents' permission set to 'read': .github/workflows/issue-remove-inactive.yml:10
- Warn: no topLevel permission defined: .github/workflows/issue-schedule.yml:1
- Warn: no topLevel permission defined: .github/workflows/mock-project-build.yml:1
- Warn: no topLevel permission defined: .github/workflows/pkg.pr.new.yml:1
- Info: topLevel 'contents' permission set to 'read': .github/workflows/pr-auto-merge.yml:9
- Info: topLevel 'contents' permission set to 'read': .github/workflows/pr-check-merge.yml:8
- Info: topLevel 'contents' permission set to 'read': .github/workflows/pr-contributor-welcome.yml:12
- Info: topLevel 'contents' permission set to 'read': .github/workflows/pr-open-check.yml:8
- Info: topLevel 'contents' permission set to 'read': .github/workflows/pr-open-notify.yml:8
- Info: topLevel 'contents' permission set to 'read': .github/workflows/preview-build.yml:15
- Info: topLevel 'contents' permission set to 'read': .github/workflows/preview-deploy.yml:12
- Info: topLevel 'contents' permission set to 'read': .github/workflows/preview-start.yml:14
- Info: topLevel 'contents' permission set to 'read': .github/workflows/rebase.yml:8
- Info: topLevel 'contents' permission set to 'read': .github/workflows/release-dingtalk.yml:14
- Warn: no topLevel permission defined: .github/workflows/release-x.yml:1
- Warn: topLevel 'contents' permission set to 'write': .github/workflows/site-deploy.yml:11
- Info: topLevel 'contents' permission set to 'read': .github/workflows/size-limit.yml:9
- Info: topLevel 'contents' permission set to 'read': .github/workflows/sync-gitee.yml:16
- Info: topLevel 'contents' permission set to 'read': .github/workflows/test-v6.yml:17
- Info: topLevel 'contents' permission set to 'read': .github/workflows/test.yml:17
- Warn: no topLevel permission defined: .github/workflows/upgrade-deps.yml:1
- Info: topLevel 'contents' permission set to 'read': .github/workflows/verify-files-modify.yml:8
- Info: topLevel 'contents' permission set to 'read': .github/workflows/verify-package-version.yml:8
- Info: topLevel 'contents' permission set to 'read': .github/workflows/visual-regression-diff-approver.yml:11
- Info: topLevel 'contents' permission set to 'read': .github/workflows/visual-regression-diff-build.yml:16
- Info: topLevel 'contents' permission set to 'read': .github/workflows/visual-regression-diff-finish.yml:12
- Info: topLevel 'contents' permission set to 'read': .github/workflows/visual-regression-diff-start.yml:15
- Info: topLevel 'contents' permission set to 'read': .github/workflows/visual-regression-persist-finish.yml:12
- Info: topLevel 'contents' permission set to 'read': .github/workflows/visual-regression-persist-start.yml:13
Reason
Project has not signed or included provenance with any releases.
Details
- Warn: release artifact 5.24.6 not signed: https://api.github.com/repos/ant-design/ant-design/releases/209554337
- Warn: release artifact 5.24.5 not signed: https://api.github.com/repos/ant-design/ant-design/releases/207878131
- Warn: release artifact 5.24.4 not signed: https://api.github.com/repos/ant-design/ant-design/releases/206165565
- Warn: release artifact 5.24.3 not signed: https://api.github.com/repos/ant-design/ant-design/releases/203775995
- Warn: release artifact 5.24.2 not signed: https://api.github.com/repos/ant-design/ant-design/releases/201984562
- Warn: release artifact 5.24.6 does not have provenance: https://api.github.com/repos/ant-design/ant-design/releases/209554337
- Warn: release artifact 5.24.5 does not have provenance: https://api.github.com/repos/ant-design/ant-design/releases/207878131
- Warn: release artifact 5.24.4 does not have provenance: https://api.github.com/repos/ant-design/ant-design/releases/206165565
- Warn: release artifact 5.24.3 does not have provenance: https://api.github.com/repos/ant-design/ant-design/releases/203775995
- Warn: release artifact 5.24.2 does not have provenance: https://api.github.com/repos/ant-design/ant-design/releases/201984562
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/discussion-open-check.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/discussion-open-check.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-check-inactive.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-check-inactive.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-close-require.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-close-require.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-close-require.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-close-require.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/issue-inactivity-reminder.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-inactivity-reminder.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-labeled.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-labeled.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-labeled.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-labeled.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-labeled.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-labeled.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-labeled.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-labeled.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-labeled.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-labeled.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-labeled.yml:87: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-labeled.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-open-check.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-open-check.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-open-check.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-open-check.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-open-check.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-open-check.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-open-check.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-open-check.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-open-check.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-open-check.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-open-check.yml:81: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-open-check.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-open-check.yml:89: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-open-check.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-open-check.yml:97: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-open-check.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-remove-inactive.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-remove-inactive.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/issue-schedule.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-schedule.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/mock-project-build.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/mock-project-build.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/mock-project-build.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/mock-project-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/mock-project-build.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/mock-project-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/mock-project-build.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/mock-project-build.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/mock-project-build.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/mock-project-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pkg.pr.new.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pkg.pr.new.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/pkg.pr.new.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pkg.pr.new.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pkg.pr.new.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pkg.pr.new.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-auto-merge.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pr-auto-merge.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-check-merge.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pr-check-merge.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-contributor-welcome.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pr-contributor-welcome.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-open-check.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pr-open-check.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-open-check.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pr-open-check.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-open-notify.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pr-open-notify.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/preview-build.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-build.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/preview-build.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/preview-build.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/preview-build.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/preview-deploy.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-deploy.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/preview-deploy.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-deploy.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/preview-deploy.yml:84: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-deploy.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/preview-deploy.yml:100: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-deploy.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/preview-deploy.yml:112: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-deploy.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/preview-start.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-start.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/rebase.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/rebase.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/rebase.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/rebase.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-dingtalk.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/release-dingtalk.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-dingtalk.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/release-dingtalk.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-x.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/release-x.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:81: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:94: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:108: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/size-limit.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/size-limit.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/size-limit.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/size-limit.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/size-limit.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/size-limit.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/sync-gitee.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/sync-gitee.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:79: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:94: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:95: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:99: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:122: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:123: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:126: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:137: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:146: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:147: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:151: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:157: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:166: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:182: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:211: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:212: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:218: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:125: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:126: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:129: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:140: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:149: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:150: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:154: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:160: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:169: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:185: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:214: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:215: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:221: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:97: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:98: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:102: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/upgrade-deps.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/upgrade-deps.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/upgrade-deps.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/upgrade-deps.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/upgrade-deps.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/upgrade-deps.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/verify-files-modify.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/verify-files-modify.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/verify-files-modify.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/verify-files-modify.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify-package-version.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/verify-package-version.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/verify-package-version.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/verify-package-version.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-approver.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-approver.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-build.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-build.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-build.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-build.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-build.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-build.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-build.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-build.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-build.yml:74: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-build.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-finish.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-finish.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-finish.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-finish.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-finish.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-finish.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-finish.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-finish.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-finish.yml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-finish.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-finish.yml:126: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-finish.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-finish.yml:138: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-finish.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-finish.yml:155: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-finish.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-start.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-start.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-persist-finish.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-persist-finish.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-persist-finish.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-persist-finish.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-persist-finish.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-persist-finish.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-persist-finish.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-persist-finish.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-persist-start.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-persist-start.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-persist-start.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-persist-start.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-persist-start.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-persist-start.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-persist-start.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-persist-start.yml/master?enable=pin
- Warn: npmCommand not pinned by hash: .github/workflows/visual-regression-persist-finish.yml:98
- Info: 0 out of 66 GitHub-owned GitHubAction dependencies pinned
- Info: 1 out of 81 third-party GitHubAction dependencies pinned
- Info: 0 out of 1 npmCommand dependencies pinned
Score
4.7
/10
Last Scanned on 2025-03-31
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More