Home
Docs
GitHub
Pricing
Blog
Log In

Run Sandworm Audit for your App

Get started
Hold on, we're currently generating a fresh version of this report
Generated on Jun 7, 2024 via pnpm

@pm2/io 4.3.5

PM2.io NodeJS APM
Package summary
Share
12
issues
1
critical severity
vulnerability
1
6
high severity
vulnerability
3
license
1
meta
2
3
moderate severity
vulnerability
3
2
low severity
vulnerability
1
license
1
7
licenses
73
MIT
9
ISC
9
BSD-2-Clause
7
other licenses
Apache-2.0
4
Apache-2
1
BSD-3-Clause
1
0BSD
1
Package created
17 May 2018
Version published
22 Apr 2020
Maintainers
2
Total deps
98
Direct deps
11
License
Apache-2

Issues

12

1 critical severity issue

critical
Recommendation: Upgrade to version 1.1.0 or later
via: @pm2/agent-node@1.1.10
Collapse
Expand

6 high severity issues

high
Recommendation: Upgrade to version 5.0.0 or later
via: @pm2/agent-node@1.1.10
Recommendation: Upgrade to version 3.0.1 or later
via: @pm2/agent-node@1.1.10
Recommendation: None
via: @pm2/agent-node@1.1.10
Recommendation: Validate that the package complies with your license policy
via: @pm2/io@4.3.5
via: @pm2/agent-node@1.1.10 & others
via: @opencensus/core@0.0.9 & others
Collapse
Expand

3 moderate severity issues

moderate
Recommendation: Upgrade to version 2.0.1 or later
via: @pm2/agent-node@1.1.10
Recommendation: Upgrade to version 6.3.1 or later
via: semver@6.3.0
Recommendation: Upgrade to version 1.1.9 or later
via: @pm2/agent-node@1.1.10
Collapse
Expand

2 low severity issues

low
Recommendation: Upgrade to version 4.3.1 or later
via: @pm2/agent-node@1.1.10 & others
Recommendation: Read and validate the license terms
via: @pm2/io@4.3.5
Collapse
Expand

Licenses

MIT License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
Cannot
hold-liable
Must
include-copyright
include-license
73 Packages, Including:
agent-base@4.2.1
agent-base@4.3.0
ast-types@0.14.2
async-limiter@1.0.1
async@2.6.4
bytes@3.1.2
co@4.6.0
core-util-is@1.0.3
data-uri-to-buffer@1.2.0
debug@2.6.9
debug@3.1.0
debug@3.2.7
debug@4.1.1
deep-is@0.1.4
degenerator@1.0.4
depd@2.0.0
es6-promise@4.2.8
es6-promisify@5.0.0
eventemitter2@5.0.1
eventemitter2@6.4.9
extend@3.0.2
fast-levenshtein@2.0.6
file-uri-to-path@1.0.0
ftp@0.3.10
function-bind@1.1.2
get-uri@2.0.4
hasown@2.0.2
http-errors@2.0.0
http-proxy-agent@2.1.0
https-proxy-agent@3.0.1
iconv-lite@0.4.24
ip@1.1.5
ip@1.1.9
is-core-module@2.13.1
isarray@0.0.1
isarray@1.0.0
levn@0.3.0
lodash@4.17.21
module-details-from-path@1.0.3
ms@2.0.0
ms@2.1.3
netmask@1.0.6
optionator@0.8.3
pac-proxy-agent@3.0.1
pac-resolver@3.0.0
path-parse@1.0.7
prelude-ls@1.1.2
process-nextick-args@2.0.1
proxy-agent@3.1.1
proxy-from-env@1.1.0

ISC License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
Cannot
hold-liable
Must
include-copyright
include-license
9 Packages, Including:
@pm2/agent-node@1.1.10
inherits@2.0.4
log-driver@1.2.7
lru-cache@5.1.1
semver@5.7.2
semver@6.3.0
setprototypeof@1.2.0
signal-exit@3.0.7
yallist@3.1.1

BSD 2-Clause "Simplified" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
hold-liable
Must
include-copyright
include-license
9 Packages, Including:
async-listener@0.6.10
continuation-local-storage@3.2.1
emitter-listener@1.1.2
escodegen@1.14.3
esprima@3.1.3
esprima@4.0.1
estraverse@4.3.0
esutils@2.0.3
shimmer@1.2.1

Apache License 2.0

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
use-patent-claims
place-warranty
Cannot
hold-liable
use-trademark
Must
include-copyright
include-license
state-changes
include-notice
4 Packages, Including:
@opencensus/core@0.0.8
@opencensus/core@0.0.9
@opencensus/propagation-b3@0.0.8
tslib@1.9.3

Apache-2

Invalid
Not OSI Approved
1 Packages, Including:
@pm2/io@4.3.5

BSD 3-Clause "New" or "Revised" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
use-trademark
hold-liable
Must
include-copyright
include-license
1 Packages, Including:
source-map@0.6.1

BSD Zero Clause License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
include-copyright
include-license
include-original
Cannot
hold-liable
Must
1 Packages, Including:
tslib@2.6.3
Disclaimer

This deed highlights only some of the key features and terms of the actual license. It is not a license and has no legal value. You should carefully review all of the terms and conditions of the actual license before using the licensed material.

Sandworm is not a law firm and does not provide legal services. Distributing, displaying, or linking to this deed or the license that it summarizes does not create a lawyer-client or any other relationship.

Direct Dependencies

11
All Dependencies CSV
β“˜ This is a list of @pm2/io 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.
NameVersionSizeLicenseTypeVulnerabilities
@opencensus/core0.0.947.38 kBApache-2.0
prod
1
@opencensus/propagation-b30.0.86.16 kBApache-2.0
prod
1
@pm2/agent-node1.1.1030.96 kBISC
prod
1
4
2
1
async2.6.4120.04 kBMIT
prod
debug4.1.121.26 kBMIT
prod
1
1
eventemitter26.4.918.67 kBMIT
prod
require-in-the-middle5.2.04.5 kBMIT
prod
1
1
semver6.3.018.48 kBISC
prod
1
shimmer1.2.15.04 kBBSD-2-Clause
prod
signal-exit3.0.73.76 kBISC
prod
tslib1.9.313.98 kBApache-2.0
prod

Visualizations