Gathering detailed insights and metrics for nuxt
Gathering detailed insights and metrics for nuxt
Gathering detailed insights and metrics for nuxt
Gathering detailed insights and metrics for nuxt
npm install nuxt
Typescript
Module System
Min. Node Version
Node Version
NPM Version
63.7
Supply Chain
62.6
Quality
94.4
Maintenance
100
Vulnerability
93.4
License
TypeScript (95.36%)
JavaScript (1.82%)
HTML (1.65%)
Vue (0.96%)
Shell (0.18%)
Dockerfile (0.03%)
Total Downloads
140,486,698
Last Day
40,811
Last Week
809,888
Last Month
3,447,932
Last Year
39,681,370
MIT License
57,496 Stars
7,891 Commits
5,285 Forks
788 Watchers
64 Branches
860 Contributors
Updated on Jul 06, 2025
Latest Version
3.17.6
Package Id
nuxt@3.17.6
Unpacked Size
811.53 kB
Size
182.80 kB
File Count
265
NPM Version
10.9.2
Node Version
22.16.0
Published on
Jul 01, 2025
Cumulative downloads
Total Downloads
Last Day
0.5%
40,811
Compared to previous day
Last Week
-6.1%
809,888
Compared to previous week
Last Month
1.7%
3,447,932
Compared to previous month
Last Year
34.2%
39,681,370
Compared to previous year
61
2
Nuxt is a free and open-source framework with an intuitive and extendable way to create type-safe, performant and production-grade full-stack web applications and websites with Vue.js.
It provides a number of features that make it easy to build fast, SEO-friendly, and scalable web applications, including:
Use the following command to create a new starter project. This will create a starter project with all the necessary files and dependencies:
1npm create nuxt <my-project>
[!TIP] Discover also nuxt.new: Open a Nuxt starter on CodeSandbox, StackBlitz or locally to get up and running in a few seconds.
Simple, intuitive and powerful, Nuxt lets you write Vue components in a way that makes sense. Every repetitive task is automated, so you can focus on writing your full-stack Vue application with confidence.
Example of an app.vue
:
1<script setup lang="ts"> 2useSeoMeta({ 3 title: 'Meet Nuxt', 4 description: 'The Intuitive Vue Framework.' 5}) 6</script> 7 8<template> 9 <div id="app"> 10 <AppHeader /> 11 <NuxtPage /> 12 <AppFooter /> 13 </div> 14</template> 15 16<style scoped> 17#app { 18 background-color: #020420; 19 color: #00DC82; 20} 21</style>
We highly recommend you take a look at the Nuxt documentation to level up. It’s a great resource for learning more about the framework. It covers everything from getting started to advanced topics.
Discover our list of modules to supercharge your Nuxt project, created by the Nuxt team and community.
We invite you to contribute and help improve Nuxt 💚
Here are a few ways you can get involved:
Follow the docs to Set Up Your Local Development Environment to contribute to the framework and documentation.
8.8/10
Summary
Nuxt vulnerable to remote code execution via the browser when running the test locally
Affected Versions
>= 3.4.0, < 3.12.4
Patched Versions
3.12.4
8.1/10
Summary
nuxt Code Injection vulnerability
Affected Versions
>= 3.4.0, < 3.4.3
Patched Versions
3.4.3
7.5/10
Summary
Nuxt allows DOS via cache poisoning with payload rendering response
Affected Versions
>= 3.0.0, < 3.16.0
Patched Versions
3.16.0
6.3/10
Summary
nuxt vulnerable to Cross-site Scripting in navigateTo if used after SSR
Affected Versions
< 3.12.4
Patched Versions
3.12.4
Reason
30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10
Reason
update tool detected
Details
Reason
security policy file detected
Details
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
GitHub workflow tokens follow principle of least privilege
Details
Reason
all dependencies are pinned
Details
Reason
license file detected
Details
Reason
25 out of 25 merged PRs checked by a CI test -- score normalized to 10
Reason
project has 76 contributing companies or organizations
Details
Reason
SAST tool detected but not run on all commits
Details
Reason
1 existing vulnerabilities detected
Details
Reason
branch protection is not maximal on development and all release branches
Details
Reason
Found 10/24 approved changesets -- score normalized to 4
Reason
badge detected: InProgress
Reason
project is not fuzzed
Details
Score
Last Scanned on 2025-07-02T21:52:15Z
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More