GITNUXREPORT 2025

Javascript Statistics

JavaScript dominates web development, powering vast ecosystems, opportunities, and risks.

Jannik Lindner

Jannik Lindner

Co-Founder of Gitnux, specialized in content and tech since 2016.

First published: Dec 11, 2025Last updated: Dec 13, 2025

Our Commitment to Accuracy

Rigorous fact-checking • Reputable sources • Regular updatesLearn more

Key Statistics

Statistic 1

The average salary for a JavaScript Developer in the US is $112000 per year

Statistic 2

JavaScript professionals are 2.6 times more likely to work remotely than on-site

Statistic 3

40% of recruiting managers identify JavaScript as the most sought-after skill

Statistic 4

Senior JavaScript developers with 6+ years experience earn 30% more than juniors

Statistic 5

57.83% of developers express a desire to continue working with JavaScript ("Loved")

Statistic 6

39.81% of developers who do not currently use JavaScript want to learn it ("Desired")

Statistic 7

Full-stack developers (heavy JS users) comprise 33.48% of the developer workforce

Statistic 8

Node.js developers earn an average of $65000 globally (adjusted for COL)

Statistic 9

72% of companies hiring for Front-end roles require JavaScript experience

Statistic 10

JavaScript developers in Switzerland earn the highest average global salary at $117k

Statistic 11

61% of JavaScript developers learn a new framework every year

Statistic 12

1 in 3 developer job postings on Indeed mention JavaScript or a JS library

Statistic 13

JavaScript developers have a 90% employment rate within the tech sector

Statistic 14

34% of JavaScript developers have less than 5 years of professional experience

Statistic 15

8 out of 10 bootcamps focus their curriculum primarily on JavaScript stacks (MERN)

Statistic 16

Only 14% of JavaScript developers work for companies with fewer than 20 employees

Statistic 17

71% of JavaScript developers prefer VS Code as their IDE

Statistic 18

The demand for JavaScript developers grew by 12% in 2023

Statistic 19

Roughly 85% of JavaScript developers write code solely in English

Statistic 20

18% of JavaScript developers contribute to open source projects weekly

Statistic 21

React is used by 40.58% of all developers making it the most popular web framework

Statistic 22

jQuery is still used by 75.8% of all websites despite the rise of modern frameworks

Statistic 23

The npm registry hosts over 2.5 million JavaScript packages

Statistic 24

TypeScript (a JavaScript superset) is used by 38.87% of developers

Statistic 25

Next.js is used by 16.67% of developers making it the top React meta-framework

Statistic 26

90% of JavaScript developers use npm as their package manager

Statistic 27

Vue.js holds a 16.38% usage rate among web frameworks

Statistic 28

Angular usage has stabilized at roughly 17.46% among professional developers

Statistic 29

Vite usage jumped to 48% retention in the State of JS survey

Statistic 30

Jest is the most popular JavaScript testing framework with 60% consistent usage

Statistic 31

3 million individual libraries depend on Lodash

Statistic 32

Express.js is the most common backend framework utilized by 19.28% of all developers

Statistic 33

Usage of Svelte has grown to roughly 5% usage but with very high satisfaction

Statistic 34

65% of JavaScript developers use build tools like Webpack or Rollup

Statistic 35

Tailwind CSS (configured via JS) has seen a 16% year-over-year growth in adoption

Statistic 36

Electron is used by 20% of developers building desktop apps with JavaScript

Statistic 37

Over 50% of React developers also use React Router

Statistic 38

Cypress usage for E2E testing in JS has surpassed 30%

Statistic 39

Roughly 26% of JavaScript developers have abandoned Redux for other state managers

Statistic 40

There are over 224 billion npm package downloads per month

Statistic 41

JavaScript is used as a client-side programming language by 98.9% of all websites

Statistic 42

JavaScript has been ranked as the most commonly used programming language for 11 consecutive years

Statistic 43

63.61% of professional developers reportedly use JavaScript

Statistic 44

JavaScript is the top language used on GitHub based on pull request volume

Statistic 45

Over 4.6 million websites use Node.js for server-side JavaScript execution

Statistic 46

JavaScript ranks #1 in the RedMonk Programming Language Rankings

Statistic 47

98% of the Fortune 500 companies use JavaScript in their technology stacks

Statistic 48

JavaScript holds a 19.34% share of the PYPL (PopularitY of Programming Language) Index

Statistic 49

There are over 1.8 billion websites in the world and 98% rely on JavaScript

Statistic 50

76% of organizations in North America use JavaScript for web development

Statistic 51

JavaScript is used by 59.8% of software developers in the Asia-Pacific region

Statistic 52

The TIOBE index consistently ranks JavaScript in the top 7 languages worldwide regardless of paradigm

Statistic 53

42% of data visualization developers use JavaScript as their primary tool usage (D3.js etc)

Statistic 54

90% of the top 100k websites by traffic utilize JavaScript

Statistic 55

JavaScript's popularity grew by 500% in the last decade regarding repository creation

Statistic 56

97% of mobile developers use JavaScript frameworks (React Native/Ionic) for cross-platform dev

Statistic 57

22% of developers use JavaScript for game development

Statistic 58

JavaScript is the primary language for 32% of IoT developers using Node.js

Statistic 59

54% of students learning to code start with JavaScript

Statistic 60

JavaScript currently powers the logic of over 30 million active ecommerce sites

Statistic 61

The median amount of JavaScript transferred to mobile devices is 460 KB (gzipped)

Statistic 62

The median amount of JavaScript transferred to desktop devices is 503 KB (gzipped)

Statistic 63

Unused JavaScript accounts for 37% of the total script bytes on mobile pages

Statistic 64

94% of mobile pages utilize at least one third-party JavaScript resource

Statistic 65

JavaScript execution time correlates 0.82 with Total Blocking Time (TBT)

Statistic 66

56% of JavaScript resources are served with compression (Brotli or Gzip)

Statistic 67

The average web page makes 20 separate HTTP requests for JavaScript files

Statistic 68

Pages using jQuery 3.x are 15% faster (LCP) than those using older versions

Statistic 69

33% of JavaScript requests are cached effectively by the browser

Statistic 70

Only 17% of sites use the `defer` attribute on their script tags

Statistic 71

Roughly 80% of processing time on the main thread is spent executing JavaScript

Statistic 72

Source maps are detected on only 0.2% of production websites

Statistic 73

Sites with over 1MB of JavaScript have a 25% higher bounce rate

Statistic 74

48% of all third-party JavaScript scripts are ad-related

Statistic 75

The use of `async` on script tags has decreased to 11% in favor of modules/defer

Statistic 76

Modern JavaScript (ES6+) makes up 76% of script code served today

Statistic 77

JavaScript bundles processed by Webpack average 580ms parse time on low-end mobile

Statistic 78

29% of JavaScript bytes are wasted due to lack of code splitting

Statistic 79

Using dynamic imports reduces initial JavaScript payload by an average of 30%

Statistic 80

Sites with a Largest Contentful Paint (LCP) under 2.5s have 30% less JavaScript

Statistic 81

64% of all XSS (Cross-Site Scripting) vulnerabilities are due to improper JS sanitization

Statistic 82

83% of the top 1000 npm packages have at least one known extensive vulnerability

Statistic 83

51% of JavaScript vulnerabilities are critical or high severity

Statistic 84

The average time to fix a JavaScript vulnerability in production is 22 days

Statistic 85

Use of `eval()` is still present in 0.8% of top pages creating security risks

Statistic 86

77% of broken access control flaws are found in JavaScript-heavy SPAs

Statistic 87

Prototype pollution vulnerabilities increased by 50% in the last 2 years

Statistic 88

45% of organisations unknowingly use malicious npm packages (Typosquatting)

Statistic 89

99% of JavaScript codebases contain open source components with potential risks

Statistic 90

21% of JavaScript projects have no automated security scanning in place

Statistic 91

Cross-site scripting (XSS) is the #2 most common vulnerability in JS web apps

Statistic 92

Indirect dependencies account for 78% of vulnerabilities in JavaScript projects

Statistic 93

55% of Docker containers running Node.js have critical security vulnerabilities

Statistic 94

Malicious npm packages have risen by 315% year over year

Statistic 95

87% of JavaScript applications fail at least one OWASP Top 10 check on the first scan

Statistic 96

Browser-based crypto-jacking scripts affected 1 in 50 websites at peak usage

Statistic 97

15% of JavaScript repos leak secrets (API keys) in their commit history

Statistic 98

`npm audit` is run by developers 30 million times per week

Statistic 99

69% of outdated JavaScript libraries in use have a patch available that is ignored

Statistic 100

Server-Side Request Forgery (SSRF) in Node.js apps increased by 20% recently

Slide 1 of 100
Share:FacebookLinkedIn
Sources

Our Reports have been cited by:

Trust Badges - Publications that have cited our reports

Key Highlights

  • JavaScript is used as a client-side programming language by 98.9% of all websites
  • JavaScript has been ranked as the most commonly used programming language for 11 consecutive years
  • 63.61% of professional developers reportedly use JavaScript
  • React is used by 40.58% of all developers making it the most popular web framework
  • jQuery is still used by 75.8% of all websites despite the rise of modern frameworks
  • The npm registry hosts over 2.5 million JavaScript packages
  • The average salary for a JavaScript Developer in the US is $112000 per year
  • JavaScript professionals are 2.6 times more likely to work remotely than on-site
  • 40% of recruiting managers identify JavaScript as the most sought-after skill
  • The median amount of JavaScript transferred to mobile devices is 460 KB (gzipped)
  • The median amount of JavaScript transferred to desktop devices is 503 KB (gzipped)
  • Unused JavaScript accounts for 37% of the total script bytes on mobile pages
  • 64% of all XSS (Cross-Site Scripting) vulnerabilities are due to improper JS sanitization
  • 83% of the top 1000 npm packages have at least one known extensive vulnerability
  • 51% of JavaScript vulnerabilities are critical or high severity
98.9% of websites rely on JavaScript — a surprising share that underscores how pervasive the language has become. This data-driven report compiles current Javascript statistics on adoption, ecosystem growth, server-side usage, security incidents, and salary trends to give you a clear snapshot of the language’s real-world footprint. With JavaScript remaining the most-used language for over a decade and Node.js powering millions of sites, these up-to-the-minute numbers matter for developers, managers, and security teams making critical decisions today. Read on for concrete figures, trend analysis, and actionable insights to benchmark strategy and spot emerging risks and opportunities.

Developer Economy & Sentiment

  • The average salary for a JavaScript Developer in the US is $112000 per year
  • JavaScript professionals are 2.6 times more likely to work remotely than on-site
  • 40% of recruiting managers identify JavaScript as the most sought-after skill
  • Senior JavaScript developers with 6+ years experience earn 30% more than juniors
  • 57.83% of developers express a desire to continue working with JavaScript ("Loved")
  • 39.81% of developers who do not currently use JavaScript want to learn it ("Desired")
  • Full-stack developers (heavy JS users) comprise 33.48% of the developer workforce
  • Node.js developers earn an average of $65000 globally (adjusted for COL)
  • 72% of companies hiring for Front-end roles require JavaScript experience
  • JavaScript developers in Switzerland earn the highest average global salary at $117k
  • 61% of JavaScript developers learn a new framework every year
  • 1 in 3 developer job postings on Indeed mention JavaScript or a JS library
  • JavaScript developers have a 90% employment rate within the tech sector
  • 34% of JavaScript developers have less than 5 years of professional experience
  • 8 out of 10 bootcamps focus their curriculum primarily on JavaScript stacks (MERN)
  • Only 14% of JavaScript developers work for companies with fewer than 20 employees
  • 71% of JavaScript developers prefer VS Code as their IDE
  • The demand for JavaScript developers grew by 12% in 2023
  • Roughly 85% of JavaScript developers write code solely in English
  • 18% of JavaScript developers contribute to open source projects weekly

Developer Economy & Sentiment Interpretation

JavaScript has quietly become the tech world’s common tongue and cash cow: recruiters crave it and one in three job listings mention it, developers enjoy high employment and strong pay with seniors and Swiss-based engineers earning the most, they work remotely far more often, often learn a new framework every year and code mainly in English while bootcamps and full stack roles feed the pipeline, yet only a modest share contribute to open source or work at very small companies.

Frameworks & Libraries

  • React is used by 40.58% of all developers making it the most popular web framework
  • jQuery is still used by 75.8% of all websites despite the rise of modern frameworks
  • The npm registry hosts over 2.5 million JavaScript packages
  • TypeScript (a JavaScript superset) is used by 38.87% of developers
  • Next.js is used by 16.67% of developers making it the top React meta-framework
  • 90% of JavaScript developers use npm as their package manager
  • Vue.js holds a 16.38% usage rate among web frameworks
  • Angular usage has stabilized at roughly 17.46% among professional developers
  • Vite usage jumped to 48% retention in the State of JS survey
  • Jest is the most popular JavaScript testing framework with 60% consistent usage
  • 3 million individual libraries depend on Lodash
  • Express.js is the most common backend framework utilized by 19.28% of all developers
  • Usage of Svelte has grown to roughly 5% usage but with very high satisfaction
  • 65% of JavaScript developers use build tools like Webpack or Rollup
  • Tailwind CSS (configured via JS) has seen a 16% year-over-year growth in adoption
  • Electron is used by 20% of developers building desktop apps with JavaScript
  • Over 50% of React developers also use React Router
  • Cypress usage for E2E testing in JS has surpassed 30%
  • Roughly 26% of JavaScript developers have abandoned Redux for other state managers
  • There are over 224 billion npm package downloads per month

Frameworks & Libraries Interpretation

With React used by over 40 percent of developers, npm relied on by 90 percent and hosting millions of packages with hundreds of billions of monthly downloads, the JavaScript landscape is simultaneously dominant and chaotic, where jQuery still powers a shocking share of the web, TypeScript and Next.js steer modern best practices, Vite and Tailwind speed up workflows, Lodash and Express quietly underpin massive dependency trees, and the steady migration away from Redux toward newer tools along with growing satisfaction in Svelte shows that popularity and innovation sprint together.

Market Usage & Adoption

  • JavaScript is used as a client-side programming language by 98.9% of all websites
  • JavaScript has been ranked as the most commonly used programming language for 11 consecutive years
  • 63.61% of professional developers reportedly use JavaScript
  • JavaScript is the top language used on GitHub based on pull request volume
  • Over 4.6 million websites use Node.js for server-side JavaScript execution
  • JavaScript ranks #1 in the RedMonk Programming Language Rankings
  • 98% of the Fortune 500 companies use JavaScript in their technology stacks
  • JavaScript holds a 19.34% share of the PYPL (PopularitY of Programming Language) Index
  • There are over 1.8 billion websites in the world and 98% rely on JavaScript
  • 76% of organizations in North America use JavaScript for web development
  • JavaScript is used by 59.8% of software developers in the Asia-Pacific region
  • The TIOBE index consistently ranks JavaScript in the top 7 languages worldwide regardless of paradigm
  • 42% of data visualization developers use JavaScript as their primary tool usage (D3.js etc)
  • 90% of the top 100k websites by traffic utilize JavaScript
  • JavaScript's popularity grew by 500% in the last decade regarding repository creation
  • 97% of mobile developers use JavaScript frameworks (React Native/Ionic) for cross-platform dev
  • 22% of developers use JavaScript for game development
  • JavaScript is the primary language for 32% of IoT developers using Node.js
  • 54% of students learning to code start with JavaScript
  • JavaScript currently powers the logic of over 30 million active ecommerce sites

Market Usage & Adoption Interpretation

JavaScript has quietly become the world's software common tongue, so pervasive across websites, servers, mobile, IoT and data visualization that knowing it is less a choice than the difference between shaping the digital world and merely surfing it.

Performance & Codebase Metrics

  • The median amount of JavaScript transferred to mobile devices is 460 KB (gzipped)
  • The median amount of JavaScript transferred to desktop devices is 503 KB (gzipped)
  • Unused JavaScript accounts for 37% of the total script bytes on mobile pages
  • 94% of mobile pages utilize at least one third-party JavaScript resource
  • JavaScript execution time correlates 0.82 with Total Blocking Time (TBT)
  • 56% of JavaScript resources are served with compression (Brotli or Gzip)
  • The average web page makes 20 separate HTTP requests for JavaScript files
  • Pages using jQuery 3.x are 15% faster (LCP) than those using older versions
  • 33% of JavaScript requests are cached effectively by the browser
  • Only 17% of sites use the `defer` attribute on their script tags
  • Roughly 80% of processing time on the main thread is spent executing JavaScript
  • Source maps are detected on only 0.2% of production websites
  • Sites with over 1MB of JavaScript have a 25% higher bounce rate
  • 48% of all third-party JavaScript scripts are ad-related
  • The use of `async` on script tags has decreased to 11% in favor of modules/defer
  • Modern JavaScript (ES6+) makes up 76% of script code served today
  • JavaScript bundles processed by Webpack average 580ms parse time on low-end mobile
  • 29% of JavaScript bytes are wasted due to lack of code splitting
  • Using dynamic imports reduces initial JavaScript payload by an average of 30%
  • Sites with a Largest Contentful Paint (LCP) under 2.5s have 30% less JavaScript

Performance & Codebase Metrics Interpretation

We are effectively sending phones roughly half a megabyte of JavaScript only to waste over a third of it and to burden the main thread with third party ad scripts that are often uncompressed, uncached and not deferred, which tightly predicts blocking, slower LCP and higher bounce rates, so adopting modern ES6, code splitting and dynamic imports is the fast path to better performance and happier users.

Security & Metrics

  • 64% of all XSS (Cross-Site Scripting) vulnerabilities are due to improper JS sanitization
  • 83% of the top 1000 npm packages have at least one known extensive vulnerability
  • 51% of JavaScript vulnerabilities are critical or high severity
  • The average time to fix a JavaScript vulnerability in production is 22 days
  • Use of `eval()` is still present in 0.8% of top pages creating security risks
  • 77% of broken access control flaws are found in JavaScript-heavy SPAs
  • Prototype pollution vulnerabilities increased by 50% in the last 2 years
  • 45% of organisations unknowingly use malicious npm packages (Typosquatting)
  • 99% of JavaScript codebases contain open source components with potential risks
  • 21% of JavaScript projects have no automated security scanning in place
  • Cross-site scripting (XSS) is the #2 most common vulnerability in JS web apps
  • Indirect dependencies account for 78% of vulnerabilities in JavaScript projects
  • 55% of Docker containers running Node.js have critical security vulnerabilities
  • Malicious npm packages have risen by 315% year over year
  • 87% of JavaScript applications fail at least one OWASP Top 10 check on the first scan
  • Browser-based crypto-jacking scripts affected 1 in 50 websites at peak usage
  • 15% of JavaScript repos leak secrets (API keys) in their commit history
  • `npm audit` is run by developers 30 million times per week
  • 69% of outdated JavaScript libraries in use have a patch available that is ignored
  • Server-Side Request Forgery (SSRF) in Node.js apps increased by 20% recently

Security & Metrics Interpretation

Taken together, these figures make the JavaScript ecosystem look less like a carefully engineered platform and more like a party where everyone's left their keys on the table, because pervasive bad sanitization, toxic and outdated dependencies, ignored patches and missing scans, slow remediation, and frequent high severity flaws combine to make supply chain and runtime attacks easy and common.

Sources & References

Logos provided by Logo.dev