Gathering detailed insights and metrics for pugjs-angular-cli
Gathering detailed insights and metrics for pugjs-angular-cli
Installations
npm install pugjs-angular-cliDeveloper Guide
BETA
Typescript
No
Module System
ESM
Min. Node Version
^18.19.1 || ^20.11.1 || >=22.0.0
Node Version
18.20.3
NPM Version
10.7.0
Releases
510
Languages
8
TypeScript
JavaScript
Starlark
HTML
SCSS
CSS
Shell
Nix
TypeScript (88.59%)
JavaScript (7.08%)
Starlark (2.19%)
HTML (1.16%)
SCSS (0.63%)
CSS (0.24%)
Shell (0.1%)
Nix (0.02%)
Developer
Download Statistics
Total Downloads
0
Last Day
0
Last Week
0
Last Month
0
Last Year
0
GitHub Statistics
MIT License
98,288 Stars
33,822 Commits
26,404 Forks
3,002 Watchers
100 Branches
2,140 Contributors
Updated on Jul 13, 2025
Maintainers
1
Package Meta Information
Latest Version
18.2.5-a
Package Id
pugjs-angular-cli@18.2.5-a
Unpacked Size
2.44 MB
Size
532.63 kB
File Count
369
NPM Version
10.7.0
Node Version
18.20.3
Published on
Jun 04, 2025
Total Downloads
Cumulative downloads
Total Downloads
NaN
Last Day
0%
NaN
Compared to previous day
Last Week
0%
NaN
Compared to previous week
Last Month
0%
NaN
Compared to previous month
Last Year
0%
NaN
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
ERROR: No README data found!
No vulnerabilities found.
Reason
30 commit(s) and 18 issue activity found in the last 90 days -- score normalized to 10
Reason
security policy file detected
Details
- Info: security policy file detected: SECURITY.md:1
- Info: Found linked content: SECURITY.md:1
- Info: Found disclosure, vulnerability, and/or timelines in security policy: SECURITY.md:1
- Info: Found text in security policy: SECURITY.md:1
Reason
no dangerous workflow patterns detected
Reason
update tool detected
Details
- Info: detected update tool: RenovateBot: renovate.json:1
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
project is fuzzed
Details
- Info: OSSFuzz integration found
Reason
project has 43 contributing companies or organizations
Details
- Info: found contributions from: AngularAir, Athens-AngularJS-Meetup, GoogleDeveloperExperts, HTTPArchive, NG-ZORRO, SofiaJavaScript, airpair, angular, angular @google, angular-app, angular-ui, asi, aspect, aspect-build, beerjs, blueriq, builder.io, cloudflare, esm-bundle, facebook, google, google-gemini, googlers, guess-js, karma-runner, mend, ng-bootstrap, ng-packagr, ngTraining, ngx-lottie, ngxs, ngxs-labs, nrwl, nx, obshtestvo, rx-angular, single-spa, stealth startup..., ultimatepp, verto, yearofmoo, yearofmoo-articles, 👀
Reason
dependency not pinned by hash detected -- score normalized to 9
Details
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/update-cdk-apis-and-cli-help.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/angular/angular/update-cdk-apis-and-cli-help.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/update-cdk-apis-and-cli-help.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/angular/angular/update-cdk-apis-and-cli-help.yml/main?enable=pin
- Info: 11 out of 11 GitHub-owned GitHubAction dependencies pinned
- Info: 65 out of 67 third-party GitHubAction dependencies pinned
- Info: 1 out of 1 containerImage dependencies pinned
Reason
branch protection is not maximal on development and all release branches
Details
- Info: 'allow deletion' disabled on branch 'main'
- Info: 'force pushes' disabled on branch 'main'
- Warn: required approving review count is 1 on branch 'main'
- Warn: codeowners review is not required on branch 'main'
- Warn: no status checks found to merge onto branch 'main'
- Info: PRs are required in order to make changes on branch 'main'
Reason
badge detected: InProgress
Reason
Found 0/30 approved changesets -- score normalized to 0
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Info: jobLevel 'pull-requests' permission set to 'read': .github/workflows/google-internal-tests.yml:12
- Warn: jobLevel 'statuses' permission set to 'write': .github/workflows/google-internal-tests.yml:13
- Info: jobLevel 'actions' permission set to 'read': .github/workflows/scorecard.yml:23
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/scorecard.yml:24
- Info: topLevel permissions set to 'read-all': .github/workflows/adev-preview-build.yml:14
- Info: topLevel 'contents' permission set to 'read': .github/workflows/adev-preview-deploy.yml:19
- Info: topLevel 'actions' permission set to 'read': .github/workflows/adev-preview-deploy.yml:21
- Info: topLevel 'contents' permission set to 'read': .github/workflows/assistant-to-the-branch-manager.yml:10
- Info: topLevel permissions set to 'read-all': .github/workflows/benchmark-compare.yml:7
- Info: found token with 'none' permissions: .github/workflows/ci.yml:1
- Info: topLevel 'contents' permission set to 'read': .github/workflows/dev-infra.yml:9
- Info: found token with 'none' permissions: .github/workflows/google-internal-tests.yml:1
- Warn: no topLevel permission defined: .github/workflows/manual.yml:1
- Info: found token with 'none' permissions: .github/workflows/merge-ready-status.yml:1
- Info: topLevel 'contents' permission set to 'read': .github/workflows/perf.yml:9
- Info: found token with 'none' permissions: .github/workflows/pr.yml:1
- Info: topLevel 'contents' permission set to 'read': .github/workflows/scorecard.yml:12
- Info: topLevel 'contents' permission set to 'read': .github/workflows/update-cdk-apis-and-cli-help.yml:13
Reason
no SAST tool detected
Details
- Warn: no pull requests merged into dev branch
Reason
74 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8
- Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
- Warn: Project is vulnerable to: GHSA-67mh-4wv8-2f99
- Warn: Project is vulnerable to: GHSA-x574-m823-4x7w
- Warn: Project is vulnerable to: GHSA-4r4m-qw57-chr8
- Warn: Project is vulnerable to: GHSA-xcj6-pq6g-qj4x
- Warn: Project is vulnerable to: GHSA-356w-63v5-8wf4
- Warn: Project is vulnerable to: GHSA-859w-5945-r5v3
- Warn: Project is vulnerable to: GHSA-v88g-cgmw-v5xw
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3
- Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j
- Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
- Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
- Warn: Project is vulnerable to: GHSA-776f-qx25-q3cc
- Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x
- Warn: Project is vulnerable to: GHSA-j4f2-536g-r55m
- Warn: Project is vulnerable to: GHSA-r7qp-cfhv-p84w
- Warn: Project is vulnerable to: GHSA-7x7c-qm48-pq9c
- Warn: Project is vulnerable to: GHSA-rc3x-jf5g-xvc5
- Warn: Project is vulnerable to: GHSA-82v2-mx6x-wq7q
- Warn: Project is vulnerable to: GHSA-vh95-rmgr-6w4m
- Warn: Project is vulnerable to: GHSA-xvch-5gv4-984h
- Warn: Project is vulnerable to: GHSA-6fx8-h7jm-663j
- Warn: Project is vulnerable to: GHSA-fxwf-4rqh-v8g3
- Warn: Project is vulnerable to: GHSA-25hc-qcg6-38wj
- Warn: Project is vulnerable to: GHSA-xfhh-g9f5-x4m4
- Warn: Project is vulnerable to: GHSA-qm95-pgcg-qqfq
- Warn: Project is vulnerable to: GHSA-cqmj-92xf-r6r9
- Warn: Project is vulnerable to: GHSA-mgfv-m47x-4wqp
- Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q
- Warn: Project is vulnerable to: GHSA-72mh-269x-7mh5
- Warn: Project is vulnerable to: GHSA-h4j5-c7cj-74xg
- Warn: Project is vulnerable to: GHSA-wf5p-g6vw-rhxx
- Warn: Project is vulnerable to: GHSA-jr5f-v2jv-69x6
- Warn: Project is vulnerable to: GHSA-r7jx-5m6m-cpg9
- Warn: Project is vulnerable to: GHSA-89w7-5q45-r53w
- Warn: Project is vulnerable to: GHSA-m6fv-jmcg-4jfg
- Warn: Project is vulnerable to: GHSA-cm22-4g7w-348p
- Warn: Project is vulnerable to: GHSA-qwcr-r2fm-qrc7
- Warn: Project is vulnerable to: GHSA-rv95-896h-c2vc
- Warn: Project is vulnerable to: GHSA-qw6h-vgh9-j6wx
- Warn: Project is vulnerable to: GHSA-rhx6-c78j-4q9w
- Warn: Project is vulnerable to: GHSA-hrpp-h998-j3pp
- Warn: Project is vulnerable to: GHSA-76p3-8jx3-jpfq
- Warn: Project is vulnerable to: GHSA-3rfm-jhwj-7488
- Warn: Project is vulnerable to: GHSA-hhq3-ff78-jv3g
- Warn: Project is vulnerable to: GHSA-gcx4-mw62-g8wm
- Warn: Project is vulnerable to: GHSA-gxpj-cx7g-858c
- Warn: Project is vulnerable to: GHSA-394c-5j6w-4xmx
- Warn: Project is vulnerable to: GHSA-78cj-fxph-m83p
- Warn: Project is vulnerable to: GHSA-fhg7-m89q-25r3
- Warn: Project is vulnerable to: GHSA-4www-5p9h-95mh
- Warn: Project is vulnerable to: GHSA-9gqv-wp59-fq42
- Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55
- Warn: Project is vulnerable to: GHSA-vg6x-rcgg-rjx6
- Warn: Project is vulnerable to: GHSA-4v9v-hfq4-rm2v
- Warn: Project is vulnerable to: GHSA-9jgg-88mc-972h
- Warn: Project is vulnerable to: GHSA-28hp-fgcr-2r4h
- Warn: Project is vulnerable to: GHSA-89mq-4x47-5v83
- Warn: Project is vulnerable to: GHSA-5cp4-xmrw-59wf
- Warn: Project is vulnerable to: GHSA-mhp6-pxh8-r675
- Warn: Project is vulnerable to: GHSA-2qqx-w9hr-q5gx
- Warn: Project is vulnerable to: GHSA-2vrf-hf26-jrp5
- Warn: Project is vulnerable to: GHSA-4w4v-5hc9-xrr2
- Warn: Project is vulnerable to: GHSA-j58c-ww9w-pwp5
- Warn: Project is vulnerable to: GHSA-m9gf-397r-hwpg
- Warn: Project is vulnerable to: GHSA-mqm9-c95h-x2p6
- Warn: Project is vulnerable to: GHSA-prc3-vjfx-vhm9
- Warn: Project is vulnerable to: GHSA-qwqh-hm9m-p5hr
- Warn: Project is vulnerable to: GHSA-m2h2-264f-f486
- Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
- Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
- Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
Score
6.3
/10
Last Scanned on 2025-07-13T00:03:52Z
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More