Hold on, we're currently generating a fresh version of this report

Generated on Apr 27, 2024 via pnpm

@testing-library/cypress 5.0.1

Simple and complete custom Cypress commands and utilities that encourage good testing practices.

Package summary

22

issues

10

licenses

Package created

30 May 2019

Version published

17 Sep 2019

Maintainers

15

Total deps

346

Direct deps

4

License

MIT

Issues

22

2 critical severity issues

minimist@0.0.8

Prototype Pollution in minimist

Recommendation: Upgrade to version 0.2.4 or later

via: cypress@3.8.3

minimist@1.2.0

Prototype Pollution in minimist

Recommendation: Upgrade to version 1.2.6 or later

via: cypress@3.8.3

14 high severity issues

moment@2.24.0

Moment.js vulnerable to Inefficient Regular Expression Complexity

Recommendation: Upgrade to version 2.29.4 or later

via: cypress@3.8.3

moment@2.24.0

Path Traversal: 'dir/../../filename' in moment.locale

Recommendation: Upgrade to version 2.29.2 or later

via: cypress@3.8.3

lodash@4.17.15

Prototype Pollution in lodash

Recommendation: Upgrade to version 4.17.19 or later

via: cypress@3.8.3

async@2.6.1

Prototype Pollution in async

Recommendation: Upgrade to version 2.6.4 or later

via: cypress@3.8.3

lodash@4.17.15

Command Injection in lodash

Recommendation: Upgrade to version 4.17.21 or later

via: cypress@3.8.3

core-js-pure@3.37.0

Package uses postinstall script: "node -e "try{require('./postinstall')}catch(e){}""

via: @testing-library/dom@6.16.0 & others

cypress@13.8.1

Package uses postinstall script: "node index.js --exec install"

via: @types/testing-library__cypress@5.0.13

cypress@3.8.3

Package uses postinstall script: "node index.js --exec install"

via: cypress@3.8.3

debug@3.2.6

Deprecated package

via: cypress@3.8.3

har-validator@5.1.5

Deprecated package

via: cypress@3.8.3

mkdirp@0.5.1

Deprecated package

via: cypress@3.8.3

querystring@0.2.0

Deprecated package

via: cypress@3.8.3

request@2.88.0

Deprecated package

via: cypress@3.8.3

uuid@3.4.0

Deprecated package

via: cypress@3.8.3

5 moderate severity issues

lodash@4.17.15

Regular Expression Denial of Service (ReDoS) in lodash

Recommendation: Upgrade to version 4.17.21 or later

via: cypress@3.8.3

minimist@1.2.0

Prototype Pollution in minimist

Recommendation: Upgrade to version 1.2.3 or later

via: cypress@3.8.3

minimist@0.0.8

Prototype Pollution in minimist

Recommendation: Upgrade to version 0.2.1 or later

via: cypress@3.8.3

tough-cookie@2.4.3

tough-cookie Prototype Pollution vulnerability

Recommendation: Upgrade to version 4.1.3 or later

via: cypress@3.8.3

request@2.88.0

Server-Side Request Forgery in Request

Recommendation: None

via: cypress@3.8.3

1 low severity issue

debug@3.2.6

Regular Expression Denial of Service in debug

Recommendation: Upgrade to version 3.2.7 or later

via: cypress@3.8.3

Licenses

MIT License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

Cannot

hold-liable

Must

include-copyright

include-license

297 Packages, Including:

@babel/code-frame@7.24.2

@babel/helper-validator-identifier@7.22.20

@babel/highlight@7.24.2

@babel/runtime-corejs3@7.24.4

@babel/runtime@7.24.4

@colors/colors@1.5.0

@cypress/listr-verbose-renderer@0.4.1

@cypress/xvfb@1.2.4

@jest/types@24.9.0

@jest/types@25.5.0

@jest/types@26.6.2

@sheerun/mutationobserver-shim@0.3.3

@testing-library/cypress@5.0.1

@testing-library/dom@6.16.0

@testing-library/dom@7.31.2

@types/aria-query@4.2.2

@types/istanbul-lib-coverage@2.0.6

@types/istanbul-lib-report@3.0.3

@types/istanbul-reports@1.1.2

@types/istanbul-reports@3.0.4

@types/node@20.12.7

@types/sinonjs__fake-timers@8.1.1

@types/sizzle@2.3.2

@types/sizzle@2.3.8

@types/testing-library__cypress@5.0.13

@types/testing-library__dom@6.14.0

@types/yargs-parser@21.0.3

@types/yargs@13.0.12

@types/yargs@15.0.19

@types/yauzl@2.10.3

aggregate-error@3.1.0

ajv@6.12.6

ansi-colors@4.1.3

ansi-escapes@1.4.0

ansi-escapes@4.3.2

ansi-regex@2.1.1

ansi-regex@4.1.1

ansi-regex@5.0.1

ansi-styles@2.2.1

ansi-styles@3.2.1

ansi-styles@4.3.0

arch@2.1.1

arch@2.2.0

asn1@0.2.6

assert-plus@1.0.0

astral-regex@2.0.0

async@2.6.1

async@3.2.5

asynckit@0.4.0

aws4@1.12.0

ISC License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

Cannot

hold-liable

Must

include-copyright

include-license

23 Packages, Including:

at-least-node@1.0.0

fs.realpath@1.0.0

glob@7.2.3

graceful-fs@4.2.11

har-schema@2.0.0

inflight@1.0.6

inherits@2.0.4

ini@1.3.8

ini@2.0.0

isexe@2.0.0

json-stringify-safe@5.0.1

lru-cache@6.0.0

minimatch@3.1.2

once@1.4.0

picocolors@1.0.0

rimraf@2.7.1

semver@5.7.2

semver@7.6.0

signal-exit@3.0.7

which@1.3.1

which@2.0.2

wrappy@1.0.2

yallist@4.0.0

Apache License 2.0

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

use-patent-claims

place-warranty

Cannot

hold-liable

use-trademark

Must

include-copyright

include-license

state-changes

include-notice

12 Packages, Including:

@cypress/request@3.0.1

aria-query@4.2.2

aws-sign2@0.7.0

blob-util@2.0.2

caseless@0.12.0

forever-agent@0.6.1

human-signals@1.1.1

oauth-sign@0.9.0

request@2.88.0

rxjs@5.5.12

rxjs@7.8.1

tunnel-agent@0.6.0

BSD 3-Clause "New" or "Revised" License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

place-warranty

Cannot

use-trademark

hold-liable

Must

include-copyright

include-license

6 Packages, Including:

bcrypt-pbkdf@1.0.2

ieee754@1.2.1

qs@6.10.4

qs@6.5.3

tough-cookie@2.4.3

tough-cookie@4.1.3

BSD 2-Clause "Simplified" License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

place-warranty

Cannot

hold-liable

Must

include-copyright

include-license

3 Packages, Including:

extract-zip@1.6.7

extract-zip@2.0.1

uri-js@4.4.1

(AFL-2.1 OR BSD-3-Clause)

Permissive

1 Packages, Including:

json-schema@0.4.0

(WTFPL OR MIT)

Permissive

1 Packages, Including:

path-is-inside@1.0.2

BSD Zero Clause License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

include-copyright

include-license

include-original

Cannot

hold-liable

Must

1 Packages, Including:

tslib@2.6.2

The Unlicense

Public Domain

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

private-use

modify

Cannot

include-copyright

hold-liable

Must

1 Packages, Including:

tweetnacl@0.14.5

(MIT OR CC0-1.0)

Public Domain

1 Packages, Including:

type-fest@0.21.3

Direct Dependencies

4

All Dependencies CSV

ⓘ This is a list of @testing-library/cypress 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.

Name	Version	Size	License	Type	Vulnerabilities
@babel/runtime	7.24.4	256.05 kB	MIT	prod
@testing-library/dom	6.16.0	440.55 kB	MIT	prod	1
@types/testing-library__cypress	5.0.13	2.56 kB	MIT	prod	2
cypress	3.8.3	442.49 kB	MIT	prod peer	2 12 5 1

Recent Versions