Home
Docs
GitHub
Pricing
Blog
Log In

Run Sandworm Audit for your App

Get started
Hold on, we're currently generating a fresh version of this report
Generated on Jun 8, 2024 via pnpm

@vue/cli-plugin-typescript 5.0.8

typescript plugin for vue-cli
Package summary
Share
10
issues
3
high severity
license
2
meta
1
3
moderate severity
vulnerability
1
license
1
meta
1
4
low severity
license
4
14
licenses
547
MIT
51
ISC
20
BSD-2-Clause
39
other licenses
BSD-3-Clause
15
Apache-2.0
11
Unlicense
3
CC0-1.0
2
+ 7 more
Package created
25 Jan 2018
Version published
7 Jul 2022
Maintainers
3
Total deps
657
Direct deps
12
License
MIT

Issues

10

3 high severity issues

high
Recommendation: Read and validate the license terms
via: @babel/core@7.24.7 & others
Recommendation: Read and validate the license terms
via: @vue/cli-service@5.0.8 & others
via: @vue/cli-service@5.0.8
Collapse
Expand

3 moderate severity issues

moderate
Recommendation: Upgrade to version 8.4.31 or later
via: @vue/cli-service@5.0.8
Recommendation: Validate that the package complies with your license policy
via: @vue/cli-service@5.0.8
via: @vue/cli-service@5.0.8
Collapse
Expand

4 low severity issues

low
Recommendation: Read and validate the license terms
via: @vue/cli-service@5.0.8
Recommendation: Read and validate the license terms
via: @vue/cli-service@5.0.8 & others
Recommendation: Read and validate the license terms
via: @babel/core@7.24.7 & others
Recommendation: Read and validate the license terms
via: @vue/cli-service@5.0.8 & others
Collapse
Expand

Licenses

MIT License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
Cannot
hold-liable
Must
include-copyright
include-license
547 Packages, Including:
@achrinza/node-ipc@9.2.9
@babel/code-frame@7.24.7
@babel/compat-data@7.24.7
@babel/core@7.24.7
@babel/generator@7.24.7
@babel/helper-compilation-targets@7.24.7
@babel/helper-environment-visitor@7.24.7
@babel/helper-function-name@7.24.7
@babel/helper-hoist-variables@7.24.7
@babel/helper-module-imports@7.24.7
@babel/helper-module-transforms@7.24.7
@babel/helper-simple-access@7.24.7
@babel/helper-split-export-declaration@7.24.7
@babel/helper-string-parser@7.24.7
@babel/helper-validator-identifier@7.24.7
@babel/helper-validator-option@7.24.7
@babel/helpers@7.24.7
@babel/highlight@7.24.7
@babel/parser@7.24.7
@babel/template@7.24.7
@babel/traverse@7.24.7
@babel/types@7.24.7
@discoveryjs/json-ext@0.5.7
@jridgewell/gen-mapping@0.3.5
@jridgewell/resolve-uri@3.1.2
@jridgewell/set-array@1.2.1
@jridgewell/source-map@0.3.6
@jridgewell/sourcemap-codec@1.4.15
@jridgewell/trace-mapping@0.3.25
@leichtgewicht/ip-codec@2.0.5
@node-ipc/js-queue@2.0.3
@nodelib/fs.scandir@2.1.5
@nodelib/fs.stat@2.0.5
@nodelib/fs.walk@1.2.8
@polka/url@1.0.0-next.25
@soda/friendly-errors-webpack-plugin@1.8.1
@soda/get-current-script@1.0.2
@types/body-parser@1.19.5
@types/bonjour@3.5.13
@types/connect-history-api-fallback@1.5.4
@types/connect@3.4.38
@types/eslint-scope@3.7.7
@types/eslint@8.56.10
@types/estree@1.0.5
@types/express-serve-static-core@4.19.3
@types/express@4.17.21
@types/html-minifier-terser@6.1.0
@types/http-errors@2.0.4
@types/http-proxy@1.17.14
@types/json-schema@7.0.15

ISC License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
Cannot
hold-liable
Must
include-copyright
include-license
51 Packages, Including:
@trysound/sax@0.2.0
anymatch@3.1.3
at-least-node@1.0.0
boolbase@1.0.0
cli-highlight@2.1.11
cliui@7.0.4
css-declaration-sorter@6.4.1
electron-to-chromium@1.4.796
fastq@1.17.1
fs.realpath@1.0.0
get-caller-file@2.0.5
glob-parent@5.1.2
glob-parent@6.0.2
glob@7.2.3
graceful-fs@4.2.11
hosted-git-info@2.8.9
icss-utils@5.1.0
inflight@1.0.6
inherits@2.0.3
inherits@2.0.4
isexe@2.0.0
lru-cache@4.1.5
lru-cache@5.1.1
lru-cache@6.0.0
minimalistic-assert@1.0.1
minimatch@3.1.2
minipass@3.3.6
once@1.4.0
picocolors@0.2.1
picocolors@1.0.1
postcss-modules-extract-imports@3.1.0
postcss-modules-scope@3.2.0
postcss-modules-values@4.0.0
pseudomap@1.0.2
rimraf@3.0.2
semver@5.7.2
semver@6.3.1
semver@7.6.2
setprototypeof@1.1.0
setprototypeof@1.2.0
signal-exit@3.0.7
ssri@8.0.1
which@1.3.1
which@2.0.2
wrappy@1.0.2
y18n@5.0.8
yallist@2.1.2
yallist@3.1.1
yallist@4.0.0
yaml@1.10.2

BSD 2-Clause "Simplified" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
hold-liable
Must
include-copyright
include-license
20 Packages, Including:
css-select@4.3.0
css-what@6.1.0
default-gateway@6.0.3
domelementtype@2.3.0
domhandler@4.3.1
domutils@2.8.0
dotenv-expand@5.1.0
dotenv@10.0.0
entities@2.2.0
entities@4.5.0
eslint-scope@5.1.1
esrecurse@4.3.0
estraverse@4.3.0
estraverse@5.3.0
glob-to-regexp@0.4.1
normalize-package-data@2.5.0
nth-check@2.1.1
terser@5.31.1
uri-js@4.4.1
webidl-conversions@3.0.1

BSD 3-Clause "New" or "Revised" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
use-trademark
hold-liable
Must
include-copyright
include-license
15 Packages, Including:
@hapi/hoek@9.3.0
@hapi/topo@5.1.0
@sideway/address@4.1.5
@sideway/formula@3.0.1
@sideway/pinpoint@2.0.0
@xtuc/ieee754@1.2.0
flat@5.0.2
highlight.js@10.7.3
ieee754@1.2.1
joi@17.13.1
qs@6.11.0
serialize-javascript@6.0.2
source-map-js@1.2.0
source-map@0.6.1
source-map@0.7.4

Apache License 2.0

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
use-patent-claims
place-warranty
Cannot
hold-liable
use-trademark
Must
include-copyright
include-license
state-changes
include-notice
11 Packages, Including:
@ampproject/remapping@2.3.0
@webassemblyjs/leb128@1.11.6
@xtuc/long@4.2.2
ansi-html-community@0.0.8
faye-websocket@0.11.4
human-signals@2.1.0
spdx-correct@3.2.0
typescript@5.4.5
validate-npm-package-license@3.0.4
websocket-driver@0.7.4
websocket-extensions@0.1.4

The Unlicense

Public Domain
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
private-use
modify
Cannot
include-copyright
hold-liable
Must
3 Packages, Including:
event-pubsub@4.3.0
fs-monkey@1.0.6
memfs@3.5.3

Creative Commons Zero v1.0 Universal

Public Domain
Not OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
Cannot
Must
2 Packages, Including:
mdn-data@2.0.14
spdx-license-ids@3.0.18

(MIT OR CC0-1.0)

Public Domain
2 Packages, Including:
type-fest@0.6.0
type-fest@0.8.1

Creative Commons Attribution 4.0 International

Uncategorized
Not OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
Cannot
Must
1 Packages, Including:
caniuse-lite@1.0.30001629

(BSD-3-Clause OR GPL-2.0)

Permissive
1 Packages, Including:
node-forge@1.3.1

(WTFPL OR MIT)

Permissive
1 Packages, Including:
opener@1.5.2

Creative Commons Attribution 3.0 Unported

Uncategorized
Not OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
Cannot
Must
1 Packages, Including:
spdx-exceptions@2.5.0

BSD Zero Clause License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
include-copyright
include-license
include-original
Cannot
hold-liable
Must
1 Packages, Including:
tslib@2.6.3

Mozilla Public License 2.0

Weakly Protective
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
place-warranty
use-patent-claims
Cannot
use-trademark
hold-liable
Must
include-copyright
include-license
disclose-source
include-original
1 Packages, Including:
webpack-chain@6.5.1
Disclaimer

This deed highlights only some of the key features and terms of the actual license. It is not a license and has no legal value. You should carefully review all of the terms and conditions of the actual license before using the licensed material.

Sandworm is not a law firm and does not provide legal services. Distributing, displaying, or linking to this deed or the license that it summarizes does not create a lawyer-client or any other relationship.

Direct Dependencies

12
All Dependencies CSV
β“˜ This is a list of @vue/cli-plugin-typescript 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.
NameVersionSizeLicenseTypeVulnerabilities
@babel/core7.24.7766.74 kBMIT
prod peer
1
1
@types/webpack-env1.18.516.27 kBMIT
prod
@vue/cli-service5.0.857.86 kBMIT
prod peer
3
3
4
@vue/cli-shared-utils5.0.810.43 kBMIT
prod
1
2
babel-loader8.3.013.58 kBMIT
prod
1
1
fork-ts-checker-webpack-plugin6.5.357.78 kBMIT
prod
1
1
globby11.1.06.23 kBMIT
prod
thread-loader3.0.411.78 kBMIT
prod
1
1
ts-loader9.5.162.73 kBMIT
prod
1
1
typescript5.4.530.87 MBApache-2.0
prod peer
vue3.4.272.09 MBMIT
prod peer
webpack5.91.04.71 MBMIT
prod peer
1
1

Visualizations