Generated on Feb 29, 2024 via pnpm

Npm

Home

@expo/config 8.0.4

A library for interacting with the app.json

json

react-native

expo

react

Package summary

issues

licenses

Package created

29 Mar 2019

Version published

8 May 2023

Maintainers

Total deps

113

Direct deps

License

MIT

Issues

2 high severity issues

high

jackspeak@2.3.6

Package uses an atypical license ("BlueOak-1.0.0")

Recommendation: Read and validate the license terms

via: sucrase@3.35.0

path-scurry@1.10.1

Package uses an atypical license ("BlueOak-1.0.0")

Recommendation: Read and validate the license terms

via: sucrase@3.35.0

Collapse

Expand

3 moderate severity issues

moderate

xml2js@0.4.23

xml2js is vulnerable to prototype pollution

Recommendation: Upgrade to version 0.5.0 or later

via: @expo/config-plugins@7.0.0

semver@7.3.2

semver vulnerable to Regular Expression Denial of Service

Recommendation: Upgrade to version 7.5.2 or later

via: semver@7.3.2

@expo/sdk-runtime-versions@1.0.0

Package has no specified source code repository

via: @expo/config-plugins@7.0.0

Collapse

Expand

2 low severity issues

low

jackspeak@2.3.6

Package uses a license that is not OSI approved ("BlueOak-1.0.0")

Recommendation: Read and validate the license terms

via: sucrase@3.35.0

path-scurry@1.10.1

Package uses a license that is not OSI approved ("BlueOak-1.0.0")

Recommendation: Read and validate the license terms

via: sucrase@3.35.0

Collapse

Expand

Licenses

MIT License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

Cannot

hold-liable

Must

include-copyright

include-license

83 Packages, Including:

@babel/code-frame@7.10.4

@babel/helper-validator-identifier@7.22.20

@babel/highlight@7.23.4

@expo/config-plugins@7.0.0

@expo/config-types@49.0.0

@expo/config@8.0.4

@expo/json-file@8.2.37

@expo/json-file@8.3.0

@expo/plist@0.0.20

@expo/sdk-runtime-versions@1.0.0

@jridgewell/gen-mapping@0.3.4

@jridgewell/resolve-uri@3.1.2

@jridgewell/set-array@1.2.1

@jridgewell/sourcemap-codec@1.4.15

@jridgewell/trace-mapping@0.3.23

@pkgjs/parseargs@0.11.0

@react-native/normalize-color@2.1.0

@xmldom/xmldom@0.7.13

@xmldom/xmldom@0.8.10

ansi-regex@6.0.1

ansi-styles@3.2.1

ansi-styles@4.3.0

ansi-styles@6.2.1

any-promise@1.3.0

balanced-match@1.0.2

base64-js@1.5.1

bplist-creator@0.1.0

bplist-parser@0.3.1

brace-expansion@1.1.11

brace-expansion@2.0.1

chalk@2.4.2

chalk@4.1.2

color-convert@1.9.3

color-convert@2.0.1

color-name@1.1.3

color-name@1.1.4

commander@4.1.1

concat-map@0.0.1

cross-spawn@7.0.3

debug@4.3.4

eastasianwidth@0.2.0

emoji-regex@9.2.2

escape-string-regexp@1.0.5

find-up@5.0.0

getenv@1.0.0

has-flag@3.0.0

has-flag@4.0.0

imurmurhash@0.1.4

js-tokens@4.0.0

json5@2.2.3

ISC License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

Cannot

hold-liable

Must

include-copyright

include-license

24 Packages, Including:

@isaacs/cliui@8.0.2

foreground-child@3.1.1

fs.realpath@1.0.0

glob@10.3.10

glob@7.1.6

graceful-fs@4.2.11

inflight@1.0.6

inherits@2.0.4

isexe@2.0.0

lru-cache@10.2.0

lru-cache@6.0.0

minimatch@3.1.2

minimatch@9.0.3

minipass@7.0.4

once@1.4.0

sax@1.3.0

semver@7.3.2

semver@7.6.0

signal-exit@3.0.7

signal-exit@4.1.0

which@2.0.2

wrappy@1.0.2

write-file-atomic@2.4.3

yallist@4.0.0

The Unlicense

Public Domain

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

private-use

modify

Cannot

include-copyright

hold-liable

Must

2 Packages, Including:

big-integer@1.6.52

stream-buffers@2.2.0

Blue Oak Model License 1.0.0

Uncategorized

Not OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

Cannot

Must

2 Packages, Including:

jackspeak@2.3.6

path-scurry@1.10.1

Apache License 2.0

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

use-patent-claims

place-warranty

Cannot

hold-liable

use-trademark

Must

include-copyright

include-license

state-changes

include-notice

2 Packages, Including:

ts-interface-checker@0.1.13

xcode@3.0.1

Direct Dependencies

All Dependencies CSV

ⓘ This is a list of @expo/config 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.

Name	Version	Size	License	Type	Vulnerabilities
@babel/code-frame	7.10.4	3.07 kB	MIT	prod
@expo/config-plugins	7.0.0	247.75 kB	MIT	prod	2
@expo/config-types	49.0.0	12.13 kB	MIT	prod
@expo/json-file	8.3.0	6.98 kB	MIT	prod
getenv	1.0.0	3.92 kB	MIT	prod
glob	7.1.6	15.51 kB	ISC	prod
require-from-string	2.0.2	1.77 kB	MIT	prod
resolve-from	5.0.0	2.28 kB	MIT	prod
semver	7.3.2	23.95 kB	ISC	prod	1
slugify	1.6.6	8.5 kB	MIT	prod
sucrase	3.35.0	189.24 kB	MIT	prod	2 2