npmpackage.info

Gathering detailed insights and metrics for antd

Other packages similar to antd

antd-mobile

5.39.0

use-media-antd-query

1.1.0

An antd compatible media query hooks

antd-style

3.7.1

css-in-js solution for application combine with antd v5 token system and emotion

antd-dayjs-webpack-plugin

1.0.6

Day.js webpack plugin for Ant Design (antd)

Gathering detailed insights and metrics for antd

antd - 5.24.6 | npmpackage.info

antd

An enterprise-class UI design language and React UI library

5.24.6

94,153

MIT

TypeScript

451.11 kB

282,854,846 4.7

Installations

npm install antd

Developer Guide

BETA

Typescript

No

Module System

CommonJS

Node Version

22.5.1

NPM Version

10.8.2 Score

83.7

Supply Chain

86.6

Quality

98.5

Maintenance

100

Vulnerability

100

License

Pull Requests

Open

64

Total

19,368

Closed

4,121

Merged

15,183

Issues

Open

1,224

Total

31,107

Closed

29,883

Releases

696

5.24.6

Updated on Apr 01, 2025

5.24.5

Updated on Mar 24, 2025

5.24.4

Updated on Mar 17, 2025

5.24.3

Updated on Mar 05, 2025

5.24.2

Updated on Feb 24, 2025

5.24.1

Updated on Feb 17, 2025

View All 696 releases

Languages

TypeScript

JavaScript

CSS

HTML

Shell

TypeScript (99.4%)

JavaScript (0.43%)

CSS (0.06%)

HTML (0.05%)

Shell (0.05%)

Developer

ant-design

Download Statistics

Total Downloads

282,854,846

Last Day

310,816

Last Week

1,633,322

Last Month

7,474,047

Last Year

78,349,205

GitHub Statistics

MIT License

94,153 Stars

29,314 Commits

51,806 Forks

244 Watchers

27 Branches

2,247 Contributors

Updated on Apr 03, 2025

Bundle Size

1.46 MB

Minified

451.11 kB

Minified + Gzipped

Bundlephobia

Sponsor this package

https://opencollective.com/ant-design

Maintainers

View All 2,247 Contributors

Package Meta Information

Latest Version

5.24.6

Package Id

antd@5.24.6

Unpacked Size

45.64 MB

Size

9.68 MB

File Count

3,715

NPM Version

10.8.2

Node Version

22.5.1

Published on

Apr 01, 2025

Total Downloads

Cumulative downloads

Total Downloads

282,854,846

Last Day

-5.2%

310,816

Compared to previous day

Last Week

-4.2%

1,633,322

Compared to previous week

Last Month

7,474,047

Compared to previous month

Last Year

20.9%

78,349,205

Compared to previous year

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

Peer Dependencies

react react-dom

Dev Dependencies

173

ora tar tsx dumi glob jest open axios chalk dekko husky immer is-ci jsdom p-all pngjs react sharp dotenv eslint jquery lodash remark rimraf runes2 semver tar-fs terser adm-zip ali-oss cheerio prismjs typedoc webpack @antv/g6 css-tree fs-extra gh-pages jest-axe minimist mockdate prettier spinnies xhr-mock cross-env env-paths fast-glob jsonml.js lz-string puppeteer rc-footer react-dom @types/tar antd-style node-fetch pixelmatch react-scan remark-cli remark-gfm simple-git size-limit typescript @types/jest @types/node cross-fetch html2sketch http-server lint-staged react-icons remark-lint @emotion/css @types/jsdom @types/pngjs @types/react cli-progress rc-tween-one vanilla-tilt @dnd-kit/core @octokit/rest @types/jquery @types/lodash @types/semver antd-img-crop node-notifier pretty-format react-countup remark-rehype @biomejs/biome @emotion/react @prettier/sync @types/adm-zip @types/ali-oss @types/gtag.js @types/prismjs @types/warning jest-puppeteer @emotion/server @stackblitz/sdk @types/css-tree @types/fs-extra @types/jest-axe @types/minimist @types/progress @types/spinnies rc-virtual-list react-draggable react-resizable @size-limit/file @types/nprogress @types/react-dom isomorphic-fetch jest-canvas-mock lunar-typescript react-router-dom react-sticky-box rehype-stringify @ant-design/tools @dnd-kit/sortable @inquirer/prompts @types/pixelmatch csstree-validator @dnd-kit/modifiers @dnd-kit/utilities @npmcli/run-script @types/http-server eslint-plugin-jest identity-obj-proxy react-fast-marquee vanilla-jsoneditor @types/cli-progress jest-image-snapshot regenerator-runtime @antfu/eslint-config @testing-library/dom antd-token-previewer eslint-plugin-compat jest-environment-node react-highlight-words @ant-design/compatible @testing-library/react @types/react-resizable eslint-plugin-jsx-a11y jest-environment-jsdom @codecov/webpack-plugin @types/isomorphic-fetch dumi-plugin-color-chunk jsonml-to-react-element react-copy-to-clipboard webpack-bundle-analyzer @types/throttle-debounce package-manager-detector @microflash/rehype-figure @testing-library/jest-dom eslint-plugin-react-hooks @types/jest-image-snapshot circular-dependency-plugin @codesandbox/sandpack-react @eslint-react/eslint-plugin @testing-library/user-event eslint-plugin-react-refresh react-intersection-observer @ant-design/happy-work-theme @types/react-highlight-words @types/react-copy-to-clipboard cypress-image-diff-html-report remark-preset-lint-recommended react-infinite-scroll-component @ant-design/v5-patch-for-react-19 @types/jest-environment-puppeteer @ianvs/prettier-plugin-sort-imports @qixian.cs/github-contributors-list remark-lint-no-undefined-references @madccc/duplicate-package-checker-webpack-plugin

Ant Design

An enterprise-class UI design language and React UI library.

Changelog · Report Bug · Request Feature · English · 中文

❤️ Sponsors and Backers

✨ Features

🌈 Enterprise-class UI designed for web applications.
📦 A set of high-quality React components out of the box.
🛡 Written in TypeScript with predictable static types.
⚙️ Whole package of design resources and development tools.
🌍 Internationalization support for dozens of languages.
🎨 Powerful theme customization based on CSS-in-JS.

🖥 Environment Support

Modern browsers
Server-side Rendering
Electron

Edge	Firefox	Chrome	Safari	Electron
Edge	last 2 versions	last 2 versions	last 2 versions	last 2 versions

📦 Install

1npm install antd

1yarn add antd

1pnpm add antd

1bun add antd

🔨 Usage

1import { Button, DatePicker } from 'antd';
2
3export default () => (
4  <>
5    <Button type="primary">PRESS ME</Button>
6    <DatePicker placeholder="select date" />
7  </>
8);

🔗 Links

⌨️ Development

Use opensumi.run, a free online pure front-end dev environment.

Or clone locally:

1$ git clone git@github.com:ant-design/ant-design.git
2$ cd ant-design
3$ npm install
4$ npm start

Open your browser and visit http://127.0.0.1:8001 , see more at Development.

🤝 Contributing

Let's build a better antd together.

We warmly invite contributions from everyone. Before you get started, please take a moment to review our Contributing Guide. Feel free to share your ideas through Pull Requests or GitHub Issues. If you're interested in enhancing our codebase, explore the Development Instructions and enjoy your coding journey! :)

For collaborators, adhere to our Pull Request Principle and utilize our Pull Request Template when creating a Pull Request.

Issue funding

We use Polar.sh and Issuehunt to up-vote and promote specific features that you would like to see and implement. Check our backlog and help us:

No vulnerabilities found.

10

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

10

Maintained

Determines if the project is "actively maintained".

10

License

Determines if the project has defined a license.

10

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

5

SAST

Determines if the project uses static code analysis.

4

Security-Policy

Determines if the project has published a security policy.

2

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

Reason

detected GitHub workflow tokens with excessive permissions

Details

Info: jobLevel 'contents' permission set to 'read': .github/workflows/discussion-open-check.yml:13
Info: jobLevel 'contents' permission set to 'read': .github/workflows/issue-open-check.yml:13
Info: jobLevel 'checks' permission set to 'read': .github/workflows/pr-auto-merge.yml:15
Warn: jobLevel 'contents' permission set to 'write': .github/workflows/pr-auto-merge.yml:16
Info: jobLevel 'actions' permission set to 'read': .github/workflows/preview-deploy.yml:55
Warn: jobLevel 'contents' permission set to 'write': .github/workflows/rebase.yml:13
Info: jobLevel 'pull-requests' permission set to 'read': .github/workflows/rebase.yml:14
Warn: jobLevel 'contents' permission set to 'write': .github/workflows/release-dingtalk.yml:19
Info: jobLevel 'contents' permission set to 'read': .github/workflows/size-limit.yml:14
Info: found token with 'none' permissions: .github/workflows/sync-gitee.yml:21
Warn: jobLevel 'contents' permission set to 'write': .github/workflows/upgrade-deps.yml:14
Info: jobLevel 'contents' permission set to 'read': .github/workflows/verify-package-version.yml:13
Warn: jobLevel 'statuses' permission set to 'write': .github/workflows/visual-regression-diff-approver.yml:17
Info: jobLevel 'actions' permission set to 'read': .github/workflows/visual-regression-diff-finish.yml:59
Warn: jobLevel 'statuses' permission set to 'write': .github/workflows/visual-regression-diff-finish.yml:62
Info: jobLevel 'actions' permission set to 'read': .github/workflows/visual-regression-persist-finish.yml:56
Info: topLevel 'contents' permission set to 'read': .github/workflows/discussion-open-check.yml:8
Info: topLevel 'contents' permission set to 'read': .github/workflows/issue-check-inactive.yml:8
Info: topLevel 'contents' permission set to 'read': .github/workflows/issue-close-require.yml:8
Info: topLevel 'contents' permission set to 'read': .github/workflows/issue-labeled.yml:10
Info: topLevel 'contents' permission set to 'read': .github/workflows/issue-open-check.yml:8
Info: topLevel 'contents' permission set to 'read': .github/workflows/issue-remove-inactive.yml:10
Warn: no topLevel permission defined: .github/workflows/issue-schedule.yml:1
Warn: no topLevel permission defined: .github/workflows/mock-project-build.yml:1
Warn: no topLevel permission defined: .github/workflows/pkg.pr.new.yml:1
Info: topLevel 'contents' permission set to 'read': .github/workflows/pr-auto-merge.yml:9
Info: topLevel 'contents' permission set to 'read': .github/workflows/pr-check-merge.yml:8
Info: topLevel 'contents' permission set to 'read': .github/workflows/pr-contributor-welcome.yml:12
Info: topLevel 'contents' permission set to 'read': .github/workflows/pr-open-check.yml:8
Info: topLevel 'contents' permission set to 'read': .github/workflows/pr-open-notify.yml:8
Info: topLevel 'contents' permission set to 'read': .github/workflows/preview-build.yml:15
Info: topLevel 'contents' permission set to 'read': .github/workflows/preview-deploy.yml:12
Info: topLevel 'contents' permission set to 'read': .github/workflows/preview-start.yml:14
Info: topLevel 'contents' permission set to 'read': .github/workflows/rebase.yml:8
Info: topLevel 'contents' permission set to 'read': .github/workflows/release-dingtalk.yml:14
Warn: no topLevel permission defined: .github/workflows/release-x.yml:1
Warn: topLevel 'contents' permission set to 'write': .github/workflows/site-deploy.yml:11
Info: topLevel 'contents' permission set to 'read': .github/workflows/size-limit.yml:9
Info: topLevel 'contents' permission set to 'read': .github/workflows/sync-gitee.yml:16
Info: topLevel 'contents' permission set to 'read': .github/workflows/test-v6.yml:17
Info: topLevel 'contents' permission set to 'read': .github/workflows/test.yml:17
Warn: no topLevel permission defined: .github/workflows/upgrade-deps.yml:1
Info: topLevel 'contents' permission set to 'read': .github/workflows/verify-files-modify.yml:8
Info: topLevel 'contents' permission set to 'read': .github/workflows/verify-package-version.yml:8
Info: topLevel 'contents' permission set to 'read': .github/workflows/visual-regression-diff-approver.yml:11
Info: topLevel 'contents' permission set to 'read': .github/workflows/visual-regression-diff-build.yml:16
Info: topLevel 'contents' permission set to 'read': .github/workflows/visual-regression-diff-finish.yml:12
Info: topLevel 'contents' permission set to 'read': .github/workflows/visual-regression-diff-start.yml:15
Info: topLevel 'contents' permission set to 'read': .github/workflows/visual-regression-persist-finish.yml:12
Info: topLevel 'contents' permission set to 'read': .github/workflows/visual-regression-persist-start.yml:13

0

Signed-Releases

Determines if the project cryptographically signs release artifacts.

0

Fuzzing

Determines if the project uses fuzzing.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: third-party GitHubAction not pinned by hash: .github/workflows/discussion-open-check.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/discussion-open-check.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-check-inactive.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-check-inactive.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-close-require.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-close-require.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-close-require.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-close-require.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/issue-inactivity-reminder.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-inactivity-reminder.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-labeled.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-labeled.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-labeled.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-labeled.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-labeled.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-labeled.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-labeled.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-labeled.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-labeled.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-labeled.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-labeled.yml:87: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-labeled.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-open-check.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-open-check.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-open-check.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-open-check.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-open-check.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-open-check.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-open-check.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-open-check.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-open-check.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-open-check.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-open-check.yml:81: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-open-check.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-open-check.yml:89: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-open-check.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-open-check.yml:97: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-open-check.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-remove-inactive.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-remove-inactive.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/issue-schedule.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/issue-schedule.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/mock-project-build.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/mock-project-build.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/mock-project-build.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/mock-project-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/mock-project-build.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/mock-project-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/mock-project-build.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/mock-project-build.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/mock-project-build.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/mock-project-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pkg.pr.new.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pkg.pr.new.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pkg.pr.new.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pkg.pr.new.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pkg.pr.new.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pkg.pr.new.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-auto-merge.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pr-auto-merge.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-check-merge.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pr-check-merge.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-contributor-welcome.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pr-contributor-welcome.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-open-check.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pr-open-check.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-open-check.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pr-open-check.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-open-notify.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/pr-open-notify.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/preview-build.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-build.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/preview-build.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/preview-build.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/preview-build.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/preview-deploy.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-deploy.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/preview-deploy.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-deploy.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/preview-deploy.yml:84: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-deploy.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/preview-deploy.yml:100: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-deploy.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/preview-deploy.yml:112: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-deploy.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/preview-start.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/preview-start.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/rebase.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/rebase.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/rebase.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/rebase.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-dingtalk.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/release-dingtalk.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-dingtalk.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/release-dingtalk.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-x.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/release-x.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:81: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:94: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:108: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/site-deploy.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/size-limit.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/size-limit.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/size-limit.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/size-limit.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/size-limit.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/size-limit.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/sync-gitee.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/sync-gitee.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:79: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:94: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:95: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:99: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:122: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:123: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:126: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:137: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:146: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:147: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:151: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:157: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:166: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:182: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:211: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-v6.yml:212: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-v6.yml:218: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test-v6.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:125: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:126: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:129: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:140: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:149: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:150: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:154: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:160: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:169: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:185: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:214: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:215: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:221: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:97: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:98: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:102: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/test.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/upgrade-deps.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/upgrade-deps.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/upgrade-deps.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/upgrade-deps.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/upgrade-deps.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/upgrade-deps.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/verify-files-modify.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/verify-files-modify.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/verify-files-modify.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/verify-files-modify.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify-package-version.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/verify-package-version.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/verify-package-version.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/verify-package-version.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-approver.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-approver.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-build.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-build.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-build.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-build.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-build.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-build.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-build.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-build.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-build.yml:74: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-build.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-finish.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-finish.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-finish.yml:66: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-finish.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-finish.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-finish.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-finish.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-finish.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-finish.yml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-finish.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-finish.yml:126: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-finish.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-finish.yml:138: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-finish.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-finish.yml:155: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-finish.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-diff-start.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-diff-start.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-persist-finish.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-persist-finish.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-persist-finish.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-persist-finish.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-persist-finish.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-persist-finish.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-persist-finish.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-persist-finish.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-persist-start.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-persist-start.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/visual-regression-persist-start.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-persist-start.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-persist-start.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-persist-start.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/visual-regression-persist-start.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/ant-design/ant-design/visual-regression-persist-start.yml/master?enable=pin
Warn: npmCommand not pinned by hash: .github/workflows/visual-regression-persist-finish.yml:98
Info: 0 out of 66 GitHub-owned GitHubAction dependencies pinned
Info: 1 out of 81 third-party GitHubAction dependencies pinned
Info: 0 out of 1 npmCommand dependencies pinned

Score

4.7

/10

Last Scanned on 2025-03-31

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More