← Rankings

nestjs

npm · Rank #113 of 116

42 / 100 F
STALE — No release in 1132 days. Stale packages accumulate unpatched vulnerabilities.
Find other stale packages in your tree →
1
npm publisher
Single point of failure
11K
downloads/week
Blast radius if compromised
10.3y
package age
Established package
1132 days ago
last release
Possibly unmaintained

Risk analysis

nestjs has not published a release in over 12 months. Stale packages accumulate vulnerabilities and may indicate abandonment.

What the score measures

  • Publisher depth — How many people can push to npm? Single-publisher packages are the #1 structural risk.
  • Longevity — Older packages have track records. New packages with high adoption are higher risk.
  • Release consistency — Regular releases signal active oversight. Long gaps mean unpatched vulnerabilities.
  • Download trend — Growing packages attract more scrutiny (and more attacks).
  • OpenSSF Scorecard — Process security: branch protection, code review, CI/CD safety.

nestjs is one package. Score them all.

You came looking for nestjs. Your node_modules has hundreds more. Run one command to score every dependency you ship:

npx proof-of-commitment

Auto-detects your lockfile. Scores every dependency. Zero install.

Try online audit → Quickstart → Free API key →

Add the badge to your README

Commit trust score for nestjs
![Commit Trust](https://getcommit.dev/badge/npm/nestjs)

Related packages

hapi
74
69K/wk · 4 pubs
parcel
72
362K/wk · 1 pub
recoil
63
471K/wk · 3 pubs
pm2
74
3M/wk · 1 pub
sequelize
90
3M/wk · 9 pubs
pug
65
3M/wk · 2 pubs
View all 116 ranked packages →

npm registry → Live score card →