Home
Docs
GitHub
Pricing
Blog
Log In

Run Sandworm Audit for your App

Get started
Hold on, we're currently generating a fresh version of this report
Generated on Feb 13, 2024 via pnpm

ascoltatori 4.3.0

The pub/sub library for node backed by Redis, MongoDB, AMQP (RabbitMQ), ZeroMQ, Kafka, MQTT (Mosquitto) or just plain node!
Package summary
Share
42
issues
8
critical severity
vulnerability
4
license
4
21
high severity
vulnerability
9
license
2
meta
10
10
moderate severity
vulnerability
10
3
low severity
vulnerability
1
license
2
9
licenses
183
MIT
45
ISC
13
Apache-2.0
15
other licenses
BSD-3-Clause
5
N/A
4
MIT/X11
2
BSD-2-Clause
2
+ 2 more
Package created
7 Nov 2012
Version published
6 Aug 2018
Maintainers
1
Total deps
256
Direct deps
16
License
MIT

Issues

42

8 critical severity issues

critical
Recommendation: Upgrade to version 4.17.12 or later
via: kafka-node@0.5.9
Recommendation: Upgrade to version 1.1.4 or later
via: mongodb@2.2.36
Recommendation: Upgrade to version 1.5.8 or later
via: amqplib@0.5.6
Recommendation: Upgrade to version 1.12.1 or later
via: kafka-node@0.5.9
Recommendation: Check the package code and files for license information
via: kafka-node@0.5.9
Recommendation: Check the package code and files for license information
via: ioredis@2.5.0
Recommendation: Check the package code and files for license information
via: kafka-node@0.5.9
Recommendation: Check the package code and files for license information
via: kafka-node@0.5.9
Collapse
Expand

21 high severity issues

high
Recommendation: Upgrade to version 3.1.13 or later
via: mongodb@2.2.36
Recommendation: Upgrade to version 3.2.2 or later
via: kafka-node@0.5.9
Recommendation: Upgrade to version 1.0.0 or later
via: kerberos@0.0.24
Recommendation: Upgrade to version 4.17.21 or later
via: kafka-node@0.5.9
Recommendation: Upgrade to version 4.17.11 or later
via: kafka-node@0.5.9
Recommendation: Upgrade to version 5.1.2 or later
via: mqtt@2.18.9
Recommendation: Upgrade to version 4.4.18 or later
via: kafka-node@0.5.9
Recommendation: Upgrade to version 4.17.19 or later
via: kafka-node@0.5.9
Recommendation: Upgrade to version 2.6.4 or later
via: qlobber-fsq@6.2.0
Recommendation: Validate that the package complies with your license policy
via: kafka-node@0.5.9
Recommendation: Validate that the package complies with your license policy
via: kafka-node@0.5.9
via: mongodb@2.2.36
via: kafka-node@0.5.9 & others
via: qlobber-fsq@6.2.0
via: kafka-node@0.5.9
via: kerberos@0.0.24
via: kafka-node@0.5.9
via: kafka-node@0.5.9
via: kafka-node@0.5.9
via: uuid@3.4.0 & others
via: zeromq@6.0.0-beta.19
Collapse
Expand

10 moderate severity issues

moderate
Recommendation: Upgrade to version 4.17.11 or later
via: kafka-node@0.5.9
Recommendation: Upgrade to version 1.5.6 or later
via: amqplib@0.5.6
Recommendation: Upgrade to version 1.5.2 or later
via: amqplib@0.5.6
Recommendation: Upgrade to version 1.5.0 or later
via: amqplib@0.5.6
Recommendation: Upgrade to version 1.1.4 or later
via: mongodb@2.2.36
Recommendation: None
via: kafka-node@0.5.9
Recommendation: Upgrade to version 1.5.9 or later
via: amqplib@0.5.6
Recommendation: Upgrade to version 1.5.7 or later
via: amqplib@0.5.6
Recommendation: Upgrade to version 4.17.21 or later
via: kafka-node@0.5.9
Recommendation: Upgrade to version 4.1.3 or later
via: kafka-node@0.5.9
Collapse
Expand

3 low severity issues

low
Recommendation: Upgrade to version 4.17.5 or later
via: kafka-node@0.5.9
Recommendation: Read and validate the license terms
via: kafka-node@0.5.9
Recommendation: Read and validate the license terms
via: kafka-node@0.5.9
Collapse
Expand

Licenses

MIT License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
Cannot
hold-liable
Must
include-copyright
include-license
183 Packages, Including:
@aminya/node-gyp-build@4.5.0-aminya.5
ajv@6.12.6
amqp@0.2.7
amqplib@0.5.6
ansi-regex@2.1.1
array-index@1.0.0
ascoltatori@4.3.0
asn1@0.2.6
assert-plus@1.0.0
async-limiter@1.0.1
async@0.2.10
async@1.5.2
async@2.1.5
asynckit@0.4.0
aws4@1.12.0
balanced-match@1.0.2
binary@0.3.0
bindings@1.2.1
bitsyntax@0.1.0
bl@1.2.3
bluebird@3.7.2
brace-expansion@1.1.11
buffer-crc32@0.2.13
buffer-from@1.1.2
buffer-more-ints@1.0.0
buffer-shims@1.0.0
buffermaker@1.2.1
callback-stream@1.1.0
code-point-at@1.1.0
combined-stream@1.0.8
commist@1.1.0
concat-map@0.0.1
concat-stream@1.6.2
core-util-is@1.0.2
core-util-is@1.0.3
cross-env@7.0.3
cross-spawn@7.0.3
dashdash@1.14.1
debug@2.6.9
define-data-property@1.1.4
define-properties@1.2.1
delayed-stream@1.0.0
delegates@1.0.0
double-ended-queue@2.1.0-0
duplexify@3.7.1
duplexify@4.1.2
ecc-jsbn@0.1.2
end-of-stream@1.4.4
es-define-property@1.0.0
es-errors@1.3.0

ISC License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
Cannot
hold-liable
Must
include-copyright
include-license
45 Packages, Including:
abbrev@1.1.1
aproba@1.2.0
are-we-there-yet@1.1.7
block-stream@0.0.9
console-control-strings@1.1.0
d@1.0.1
es5-ext@0.10.62
es6-set@0.1.6
es6-symbol@3.1.3
ext@1.7.0
fastparallel@2.4.1
fastq@1.17.1
fastseries@1.7.2
fs.realpath@1.0.0
fstream@1.0.12
gauge@2.6.0
glob-parent@3.1.0
glob@7.2.3
graceful-fs@4.1.15
graceful-fs@4.2.11
har-schema@2.0.0
has-unicode@2.0.1
inflight@1.0.6
inherits@2.0.4
isexe@2.0.0
json-stringify-safe@5.0.1
minimatch@3.1.2
next-tick@1.1.0
nopt@3.0.6
npmlog@3.1.2
once@1.4.0
osenv@0.1.5
remove-trailing-separator@1.1.0
rimraf@2.7.1
semver@5.7.2
set-blocking@2.0.0
signal-exit@3.0.7
split2@2.2.0
tar@2.2.2
type@1.2.0
type@2.7.2
which@1.3.1
which@2.0.2
wide-align@1.1.5
wrappy@1.0.2

Apache License 2.0

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
use-patent-claims
place-warranty
Cannot
hold-liable
use-trademark
Must
include-copyright
include-license
state-changes
include-notice
13 Packages, Including:
aws-sign2@0.7.0
bson@1.0.9
caseless@0.12.0
cluster-key-slot@1.1.2
forever-agent@0.6.1
kerberos@0.0.24
long@1.1.2
mongodb-core@2.1.20
mongodb@2.2.36
oauth-sign@0.9.0
request@2.88.2
require_optional@1.0.1
tunnel-agent@0.6.0

BSD 3-Clause "New" or "Revised" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
use-trademark
hold-liable
Must
include-copyright
include-license
5 Packages, Including:
bcrypt-pbkdf@1.0.2
ieee754@1.2.1
qs@6.5.3
shelljs@0.8.5
tough-cookie@2.5.0

N/A

N/A
4 Packages, Including:
buffers@0.1.1
flexbuffer@0.0.6
retry@0.6.1
underscore@1.4.4

MIT/X11

Invalid
Not OSI Approved
2 Packages, Including:
chainsaw@0.1.0
traverse@0.3.9

BSD 2-Clause "Simplified" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
hold-liable
Must
include-copyright
include-license
2 Packages, Including:
uri-js@4.4.1
websocket-stream@5.2.0

(AFL-2.1 OR BSD-3-Clause)

Permissive
1 Packages, Including:
json-schema@0.4.0

The Unlicense

Public Domain
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
private-use
modify
Cannot
include-copyright
hold-liable
Must
1 Packages, Including:
tweetnacl@0.14.5
Disclaimer

This deed highlights only some of the key features and terms of the actual license. It is not a license and has no legal value. You should carefully review all of the terms and conditions of the actual license before using the licensed material.

Sandworm is not a law firm and does not provide legal services. Distributing, displaying, or linking to this deed or the license that it summarizes does not create a lawyer-client or any other relationship.

Direct Dependencies

16
All Dependencies CSV
β“˜ This is a list of ascoltatori 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.
NameVersionSizeLicenseTypeVulnerabilities
amqp0.2.7103.28 kBMIT
prod optional
amqplib0.5.682.32 kBMIT
prod optional
1
5
debug2.6.916.13 kBMIT
prod optional
eventemitter22.2.29.09 kBMIT
prod optional
ioredis2.5.044.03 kBMIT
prod optional
1
kafka-node0.5.962.16 kBMIT
prod optional
5
13
4
3
kerberos0.0.2440.36 kBApache-2.0
prod optional
2
mongodb2.2.36143.36 kBApache-2.0
prod optional
1
2
1
mqtt2.18.9235.66 kBMIT
prod optional
2
msgpack-lite0.1.2647.8 kBMIT
prod optional
qlobber-fsq6.2.01.11 MBMIT
prod optional
2
qlobber0.7.029.4 kBMIT
prod optional
steed1.1.394.3 kBMIT
prod
uuid3.4.011.87 kBMIT
prod optional
1
zeromq6.0.0-beta.192.22 MBMIT
prod optional
1
zmq2.15.3574.1 kBMIT
prod optional

Visualizations