Gathering detailed insights and metrics for keycloak-js
Gathering detailed insights and metrics for keycloak-js
Gathering detailed insights and metrics for keycloak-js
Gathering detailed insights and metrics for keycloak-js
@dsb-norge/vue-keycloak-js
A Keycloak plugin for Vue >= 3.x
@react-keycloak/web
React bindings for Keycloak javascript adapter
keycloak-angular
Easy Keycloak integration for Angular applications.
@bitspur/keycloak-js
A client-side JavaScript OpenID Connect library that can be used to secure web applications
Open Source Identity and Access Management For Modern Applications and Services
npm install keycloak-js
Typescript
Module System
Node Version
NPM Version
Java (91.2%)
TypeScript (7.57%)
FreeMarker (0.72%)
JavaScript (0.15%)
CSS (0.11%)
Shell (0.1%)
XSLT (0.08%)
mupad (0.02%)
HTML (0.01%)
Batchfile (0.01%)
Groovy (0.01%)
Dockerfile (0.01%)
Mustache (0.01%)
Total Downloads
0
Last Day
0
Last Week
0
Last Month
0
Last Year
0
Apache-2.0 License
28,190 Stars
28,629 Commits
7,437 Forks
390 Watchers
24 Branches
1,351 Contributors
Updated on Jul 12, 2025
Latest Version
26.2.0
Package Id
keycloak-js@26.2.0
Unpacked Size
112.31 kB
Size
25.60 kB
File Count
7
NPM Version
10.9.2
Node Version
22.14.0
Published on
Feb 20, 2025
Cumulative downloads
Total Downloads
Last Day
0%
NaN
Compared to previous day
Last Week
0%
NaN
Compared to previous week
Last Month
0%
NaN
Compared to previous month
Last Year
0%
NaN
Compared to previous year
Keycloak is an Open Source Identity and Access Management solution for modern Applications and Services.
This repository contains the client-side JavaScript library that can be used to secure web applications and integrate them with Keycloak.
If you've found a security vulnerability, please look at the instructions on how to properly report it
If you believe you have discovered a defect in the keycloak-js adapter please open an issue in our Issue Tracker. Please remember to provide a good summary, description as well as steps to reproduce the issue. The tracker can also be used for feature and enhancement requests.
To start with the keycloak-js adapter please try one of our quickstarts.
For more details refer to the Keycloak Documentation.
Before contributing to keycloak-js adapter please read our contributing guidelines.
9.8/10
Summary
keycloak-connect and keycloak-js improperly handle invalid tokens
Affected Versions
>= 2.5.0, < 3.1.0
Patched Versions
3.1.0
Reason
all changesets reviewed
Reason
30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Reason
license file detected
Details
Reason
no dangerous workflow patterns detected
Reason
security policy file detected
Details
Reason
GitHub workflow tokens follow principle of least privilege
Details
Reason
no binaries found in the repo
Reason
SAST tool detected
Details
Reason
project is fuzzed
Details
Reason
5 out of the last 5 releases have a total of 5 signed artifacts.
Details
Reason
2 existing vulnerabilities detected
Details
Reason
dependency not pinned by hash detected -- score normalized to 7
Details
Reason
badge detected: Passing
Score
Last Scanned on 2025-07-07
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More