Home
Docs
GitHub
Pricing
Blog
Log In

Run Sandworm Audit for your App

Get started
Hold on, we're currently generating a fresh version of this report
Generated on Feb 18, 2024 via pnpm

bookshelf 1.2.0

A lightweight ORM for PostgreSQL, MySQL, and SQLite3
Package summary
Share
5
issues
5
high severity
vulnerability
1
meta
4
4
licenses
128
MIT
3
ISC
1
(MIT OR Apache-2.0)
1
BSD-3-Clause
Package created
26 Apr 2013
Version published
7 Jun 2020
Maintainers
7
Total deps
133
Direct deps
5
License
MIT

Issues

5

5 high severity issues

high
Recommendation: Upgrade to version 2.4.0 or later
via: knex@0.21.21
via: knex@0.21.21
via: knex@0.21.21
via: knex@0.21.21
via: knex@0.21.21
Collapse
Expand

Licenses

MIT License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
Cannot
hold-liable
Must
include-copyright
include-license
128 Packages, Including:
arr-diff@4.0.0
arr-flatten@1.1.0
arr-union@3.1.0
array-each@1.0.1
array-slice@1.1.0
array-unique@0.3.2
assign-symbols@1.0.0
base@0.11.2
bluebird@3.7.2
bookshelf@1.2.0
braces@2.3.2
cache-base@1.0.1
class-utils@0.3.6
collection-visit@1.0.0
colorette@1.2.1
commander@6.2.1
component-emitter@1.3.1
copy-descriptor@0.1.1
create-error@0.3.1
debug@2.6.9
debug@4.3.1
decode-uri-component@0.2.2
define-property@0.2.5
define-property@1.0.0
define-property@2.0.2
detect-file@1.0.0
esm@3.2.25
expand-brackets@2.1.4
expand-tilde@2.0.2
extend-shallow@2.0.1
extend-shallow@3.0.2
extend@3.0.2
extglob@2.0.4
fill-range@4.0.0
findup-sync@3.0.0
fined@1.2.0
flagged-respawn@1.0.1
for-in@1.0.2
for-own@1.0.0
fragment-cache@0.2.1
function-bind@1.1.2
get-value@2.0.6
getopts@2.2.5
global-modules@1.0.0
global-prefix@1.0.2
has-value@0.3.1
has-value@1.0.0
has-values@0.1.4
has-values@1.0.0
hasown@2.0.1

ISC License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
Cannot
hold-liable
Must
include-copyright
include-license
3 Packages, Including:
ini@1.3.8
isexe@2.0.0
which@1.3.1

(MIT OR Apache-2.0)

Permissive
1 Packages, Including:
atob@2.1.2

BSD 3-Clause "New" or "Revised" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
use-trademark
hold-liable
Must
include-copyright
include-license
1 Packages, Including:
source-map@0.5.7
Disclaimer

This deed highlights only some of the key features and terms of the actual license. It is not a license and has no legal value. You should carefully review all of the terms and conditions of the actual license before using the licensed material.

Sandworm is not a law firm and does not provide legal services. Distributing, displaying, or linking to this deed or the license that it summarizes does not create a lawyer-client or any other relationship.

Direct Dependencies

5
All Dependencies CSV
β“˜ This is a list of bookshelf 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.
NameVersionSizeLicenseTypeVulnerabilities
bluebird3.7.2136.03 kBMIT
prod
create-error0.3.13.81 kBMIT
prod
inflection1.13.411.51 kBMIT
prod
knex0.21.21149.5 kBMIT
prod peer
5
lodash4.17.21311.49 kBMIT
prod

Visualizations