npmpackage.info

Gathering detailed insights and metrics for linaria

Other packages similar to linaria

@linaria/utils

5.0.2

Blazing fast zero-runtime CSS in JS library

@linaria/logger

5.0.0

Blazing fast zero-runtime CSS in JS library

@linaria/tags

5.0.2

Blazing fast zero-runtime CSS in JS library

@linaria/core

6.3.0

Blazing fast zero-runtime CSS in JS library

Gathering detailed insights and metrics for linaria

linaria - 6.3.0 | npmpackage.info

linaria

Zero-runtime CSS in JS library

6.3.0

12,108

MIT

TypeScript

7.99 kB

3.1

Installations

npm install linaria

Developer Guide

BETA

Typescript

Yes

Module System

CommonJS

Min. Node Version

>=16.0.0

Node Version

20.18.3

NPM Version

10.8.2 Score

69.3

Supply Chain

67.8

Quality

81.5

Maintenance

100

Vulnerability

99.6

License

Pull Requests

Open

12

Total

766

Closed

101

Merged

653

Issues

Open

152

Total

682

Closed

530

Releases

568

@linaria/server@6.3.0

Updated on Mar 16, 2025

@linaria/stylelint-config-standard-linaria@6.3.0

Updated on Mar 16, 2025

@linaria/stylelint@6.3.0

Updated on Mar 16, 2025

linaria@6.3.0

Updated on Mar 16, 2025

@linaria/react@6.3.0

Updated on Mar 16, 2025

@linaria/postcss-linaria@6.3.0

Updated on Mar 16, 2025

View All 568 releases

Languages

TypeScript

JavaScript

Shell

HTML

TypeScript (87.19%)

JavaScript (12.34%)

Shell (0.32%)

HTML (0.14%)

Developer

callstack

Download Statistics

Total Downloads

Last Day

Last Week

Last Month

Last Year

GitHub Statistics

MIT License

12,108 Stars

999 Commits

414 Forks

66 Watchers

55 Branches

172 Contributors

Updated on Jul 11, 2025

Maintainers

View All 172 Contributors

Package Meta Information

Latest Version

6.3.0

Package Id

linaria@6.3.0

Unpacked Size

7.99 kB

Size

3.26 kB

File Count

NPM Version

10.8.2

Node Version

20.18.3

Published on

Mar 16, 2025

Total Downloads

Cumulative downloads

Total Downloads

NaN

Last Day

NaN

Compared to previous day

Last Week

NaN

Compared to previous week

Last Month

NaN

Compared to previous month

Last Year

NaN

Compared to previous year

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

@linaria/core @linaria/react @linaria/server

Zero-runtime CSS in JS library.

📖 Please refer to the GitHub for full documentation.

Features

Write CSS in JS, but with zero runtime, CSS is extracted to CSS files during build
Familiar CSS syntax with Sass like nesting
Use dynamic prop based styles with the React bindings, uses CSS variables behind the scenes
Easily find where the style was defined with CSS sourcemaps
Lint your CSS in JS with stylelint
Use JavaScript for logic, no CSS preprocessor needed
Optionally use any CSS preprocessor such as Sass or PostCSS

Why use Linaria

Installation

1npm install @linaria/core @linaria/react @linaria/babel-preset

1yarn add @linaria/core @linaria/react @linaria/babel-preset

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

License

Determines if the project has defined a license.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

3

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

Maintained

Determines if the project is "actively maintained".

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/callstack/linaria/check.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/check.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/callstack/linaria/check.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/callstack/linaria/check.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/callstack/linaria/check.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/callstack/linaria/main.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/callstack/linaria/main.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/callstack/linaria/release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/callstack/linaria/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/callstack/linaria/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/callstack/linaria/release.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/callstack/linaria/release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/callstack/linaria/site-deploy.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/callstack/linaria/site-deploy.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/callstack/linaria/site-deploy.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/callstack/linaria/site-deploy.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/site-deploy.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/callstack/linaria/site-deploy.yml/master?enable=pin
Info: 0 out of 10 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 6 third-party GitHubAction dependencies pinned

0

Fuzzing

Determines if the project uses fuzzing.

0

Security-Policy

Determines if the project has published a security policy.

0

SAST

Determines if the project uses static code analysis.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Reason

50 existing vulnerabilities detected

Details

Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8
Warn: Project is vulnerable to: GHSA-c4pw-33h3-35xw
Warn: Project is vulnerable to: GHSA-49w6-73cw-chjr
Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x
Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
Warn: Project is vulnerable to: GHSA-ff7x-qrg7-qggm
Warn: Project is vulnerable to: GHSA-f6v4-cf5j-vf3w
Warn: Project is vulnerable to: GHSA-67mh-4wv8-2f99
Warn: Project is vulnerable to: GHSA-jchw-25xp-jwwc
Warn: Project is vulnerable to: GHSA-cxjh-pqwp-8mfp
Warn: Project is vulnerable to: GHSA-pfrx-2q88-qq97
Warn: Project is vulnerable to: GHSA-c7qv-q95q-8v27
Warn: Project is vulnerable to: GHSA-4www-5p9h-95mh
Warn: Project is vulnerable to: GHSA-9gqv-wp59-fq42
Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h
Warn: Project is vulnerable to: GHSA-593f-38f6-jp5m
Warn: Project is vulnerable to: GHSA-x2rg-q646-7m2v
Warn: Project is vulnerable to: GHSA-76p3-8jx3-jpfq
Warn: Project is vulnerable to: GHSA-3rfm-jhwj-7488
Warn: Project is vulnerable to: GHSA-hhq3-ff78-jv3g
Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55
Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j
Warn: Project is vulnerable to: GHSA-x7hr-w5r2-h6wg
Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
Warn: Project is vulnerable to: GHSA-gcx4-mw62-g8wm
Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
Warn: Project is vulnerable to: GHSA-3qxh-p7jc-5xh6
Warn: Project is vulnerable to: GHSA-f5x3-32g6-xq36
Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
Warn: Project is vulnerable to: GHSA-7p7h-4mm5-852v
Warn: Project is vulnerable to: GHSA-3mv9-4h5g-vhg3
Warn: Project is vulnerable to: GHSA-64vr-g452-qvp3
Warn: Project is vulnerable to: GHSA-9cwx-2883-4wfx
Warn: Project is vulnerable to: GHSA-vg6x-rcgg-rjx6
Warn: Project is vulnerable to: GHSA-x574-m823-4x7w
Warn: Project is vulnerable to: GHSA-4r4m-qw57-chr8
Warn: Project is vulnerable to: GHSA-xcj6-pq6g-qj4x
Warn: Project is vulnerable to: GHSA-356w-63v5-8wf4
Warn: Project is vulnerable to: GHSA-859w-5945-r5v3
Warn: Project is vulnerable to: GHSA-c24v-8rfc-w8vw
Warn: Project is vulnerable to: GHSA-8jhw-289h-jh2g
Warn: Project is vulnerable to: GHSA-wr3j-pwj9-hqq6
Warn: Project is vulnerable to: GHSA-4v9v-hfq4-rm2v
Warn: Project is vulnerable to: GHSA-9jgg-88mc-972h
Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q
Warn: Project is vulnerable to: GHSA-p9pc-299p-vxgp
Warn: Project is vulnerable to: GHSA-m95q-7qp3-xv42

Score

3.1

/10

Last Scanned on 2025-07-07

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More