npmpackage.info

generator-jhipster

JHipster is a development platform to quickly generate, develop, & deploy modern web applications & microservice architectures.

8.7.3

21,585

Apache-2.0

TypeScript

11,454,121 7.6

Installations

npm install generator-jhipster

Pull Requests

Open

19

Total

20,076

Closed

1,843

Merged

18,214

Issues

Open

102

Total

7,857

Closed

7,755

Releases

v8.7.3

Published on 30 Oct 2024

v8.7.2

Published on 29 Oct 2024

v8.7.1

Published on 21 Sept 2024

v8.7.0

Published on 27 Aug 2024

v8.6.0

Published on 24 Jun 2024

v8.5.0

Published on 31 May 2024

View all 41 releases

Developer

jhipster

Developer Guide

BETA

Module System

ESM

Min. Node Version

^18.19.0 || >= 20.6.1

Typescript Support

Yes

Node Version

20.18.0

NPM Version

10.9.0 Statistics

21,585 Stars

55,649 Commits

4,025 Forks

717 Watching

18 Branches

712 Contributors

Updated on 28 Nov 2024

Languages

TypeScript (69.8%)

Java (16.8%)

EJS (7.64%)

JavaScript (2.31%)

Vue (1.86%)

Shell (0.82%)

SCSS (0.59%)

Dockerfile (0.08%)

CSS (0.05%)

Mustache (0.03%)

HTML (0.01%)

Batchfile (0.01%)

Total Downloads

Cumulative downloads

Total Downloads

11,454,121

Last day

-46.9%

19,098

Compared to previous day

Last week

-35.2%

104,085

Compared to previous week

Last month

407.6%

724,259

Compared to previous month

Last year

53.9%

2,052,367

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

Peer Dependencies

yeoman-test

Dev Dependencies

Versions

Greetings, Java Hipster!

Full documentation and information is available on our website at https://www.jhipster.tech.

Please read our guidelines before submitting an issue. If your issue is a bug, please use the bug template pre-populated here. For feature requests and queries you can use this template. If you have found a potential security issue, please read our security policy and contact us privately first: https://github.com/jhipster/generator-jhipster/security/policy

Contributing

We are honored by any contributions you may have small or large. Please refer to our contribution guidelines and instructions document for any information about contributing to the project.

Supported Java and Node versions

The following Java and Node combinations are tested and verified by GitHub Actions:

Java	Node	Status
17/21/23	18/20/22	✅

Daily Builds

Additional builds at hipster-labs/jhipster-daily-builds

Pipeline Status

Analysis of the sample JHipster project

Stable Version

The latest stable version of the package.

Stable Version

8.7.3

CRITICAL

9.8/10

Summary

Critical severity vulnerability that affects generator-jhipster

Affected Versions

< 6.3.0

Patched Versions

6.3.0

HIGH

7.5/10

Summary

generator-jhipster allows a timing attack against validateToken due to a string comparison that stops at the first character

Affected Versions

< 2.23.0

Patched Versions

2.23.0

HIGH

0/10

Summary

generator-jhipster vulnerable to login check Regular Expression Denial of Service

Affected Versions

> 6.8.0, < 6.9.0

Patched Versions

HIGH

8.1/10

Summary

SQL Injection when creating an application with Reactive SQL backend

Affected Versions

>= 7.0.0, < 7.8.1

Patched Versions

7.8.1

HIGH

8.1/10

Summary

High severity vulnerability that affects generator-jhipster

Affected Versions

< 6.3.1

Patched Versions

6.3.1

10

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

10

Maintained

Determines if the project is "actively maintained".

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

License

Determines if the project has defined a license.

10

Security-Policy

Determines if the project has published a security policy.

10

Packaging

Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.

10

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

9

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

7

SAST

Determines if the project uses static code analysis.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

Reason

detected GitHub workflow tokens with excessive permissions

Details

Info: found token with 'none' permissions: .github/workflows/angular.yml:223
Warn: jobLevel 'contents' permission set to 'write': .github/workflows/copyright-update.yml:30
Info: found token with 'none' permissions: .github/workflows/devserver.yml:110
Info: found token with 'none' permissions: .github/workflows/docker-compose-integration.yml:101
Info: jobLevel 'contents' permission set to 'read': .github/workflows/docker-image-publish-github-registry.yml:37
Info: found token with 'none' permissions: .github/workflows/generator-graalvm.yml:155
Info: found token with 'none' permissions: .github/workflows/generators.yml:41
Info: found token with 'none' permissions: .github/workflows/generators.yml:45
Info: found token with 'none' permissions: .github/workflows/generators.yml:49
Info: found token with 'none' permissions: .github/workflows/generators.yml:53
Info: jobLevel 'contents' permission set to 'read': .github/workflows/labeler.yml:32
Info: jobLevel 'issues' permission set to 'read': .github/workflows/linked-issue-check.yml:30
Info: jobLevel 'pull-requests' permission set to 'read': .github/workflows/linked-issue-check.yml:31
Info: found token with 'none' permissions: .github/workflows/linked-issue-check.yml:137
Warn: jobLevel 'contents' permission set to 'write': .github/workflows/lock-maintenance.yml:32
Info: found token with 'none' permissions: .github/workflows/react.yml:197
Warn: jobLevel 'contents' permission set to 'write': .github/workflows/release-drafter.yml:34
Warn: jobLevel 'contents' permission set to 'write': .github/workflows/update-spring-boot-dependencies.yml:45
Info: found token with 'none' permissions: .github/workflows/vue.yml:197
Warn: no topLevel permission defined: .github/workflows/angular.yml:1
Warn: topLevel 'contents' permission set to 'write': .github/workflows/auto-merge.yml:24
Warn: no topLevel permission defined: .github/workflows/cache.yml:1
Info: topLevel 'contents' permission set to 'read': .github/workflows/copyright-update.yml:25
Info: topLevel 'contents' permission set to 'read': .github/workflows/depsreview.yml:24
Warn: no topLevel permission defined: .github/workflows/devserver.yml:1
Warn: no topLevel permission defined: .github/workflows/docker-compose-integration.yml:1
Warn: no topLevel permission defined: .github/workflows/docker-image-publish-github-registry.yml:1
Warn: no topLevel permission defined: .github/workflows/generator-database-changelog-liquibase.yml:1
Warn: no topLevel permission defined: .github/workflows/generator-generate-blueprint.yml:1
Warn: no topLevel permission defined: .github/workflows/generator-graalvm.yml:1
Info: topLevel 'contents' permission set to 'read': .github/workflows/generator.yml:34
Info: topLevel 'contents' permission set to 'read': .github/workflows/generators.yml:35
Info: topLevel 'contents' permission set to 'read': .github/workflows/gradle-wrapper-validation.yml:35
Info: topLevel 'contents' permission set to 'read': .github/workflows/issue-check.yml:31
Warn: no topLevel permission defined: .github/workflows/label-cleanup.yml:1
Info: topLevel 'contents' permission set to 'read': .github/workflows/labeler.yml:27
Warn: no topLevel permission defined: .github/workflows/linked-issue-check.yml:1
Info: topLevel 'contents' permission set to 'read': .github/workflows/lock-maintenance.yml:27
Warn: no topLevel permission defined: .github/workflows/react.yml:1
Info: topLevel 'contents' permission set to 'read': .github/workflows/release-drafter.yml:29
Warn: no topLevel permission defined: .github/workflows/triage.yml:1
Info: topLevel 'contents' permission set to 'read': .github/workflows/update-spring-boot-dependencies.yml:40
Warn: no topLevel permission defined: .github/workflows/vue.yml:1

0

Fuzzing

Determines if the project uses fuzzing.

Score

7.6

/10

Last Scanned on 2024-11-18

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More

Other packages similar to generator-jhipster

generator-jhipster-helloworld

0.0.1

Simple module to test the generator-jhipster-module

generator-jhipster-nav-element

4.0.10

Add simple and nested pages to your JHipster app

generator-jhipster-angular-material-integration

1.0.17

This generator allows you to set up and download the dependencies necessary to use Angular Material.

generator-jhipster-x

5.7.0-a78

Spring Boot + Angular/React in one handy generator

generator-jhipster

Installations

Pull Requests

19

20,076

1,843

18,214

Issues

102

7,857

7,755

Releases

Developer

Developer Guide

ESM

^18.19.0 || >= 20.6.1

Yes

20.18.0

10.9.0

Statistics

Languages

Total Downloads

11,454,121

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

Peer Dependencies

Dev Dependencies

Contributing

Supported Java and Node versions

Sponsors

Bronze sponsors

Backers

Daily Builds

Analysis of the sample JHipster project

Stable Version

8.7.3

CRITICAL

HIGH

10

10

10

10

10

10

10

9

7

0

0

0

7.6

/10

Other packages similar to generator-jhipster