Generated on May 1, 2024 via pnpm

Npm

Home

ern-container-gen 0.51.1

Electrode Native Container Generator

android

container

electrode

Package summary

issues

licenses

Package created

25 Sep 2017

Version published

6 Oct 2023

Maintainers

Total deps

447

Direct deps

License

Apache-2.0

Issues

9 critical severity issues

critical

simple-git@2.48.0

Remote code execution in simple-git

Recommendation: Upgrade to version 3.16.0 or later

via: ern-composite-gen@0.51.1 & others

xmldom@0.1.31

xmldom allows multiple root nodes in a DOM

Recommendation: None

via: ern-composite-gen@0.51.1 & others

simple-plist@0.2.1

Prototype Pollution in simple-plist

Recommendation: Upgrade to version 1.3.1 or later

via: ern-composite-gen@0.51.1 & others

plist@2.0.1

Prototype pollution in Plist before 3.0.5 can cause denial of service

Recommendation: Upgrade to version 3.0.5 or later

via: ern-composite-gen@0.51.1 & others

cli-table@0.3.11

Package has no specified license

Recommendation: Check the package code and files for license information

via: ern-composite-gen@0.51.1 & others

colors@0.6.2

Package has no specified license

Recommendation: Check the package code and files for license information

via: ern-composite-gen@0.51.1 & others

cycle@1.0.3

Package has no specified license

Recommendation: Check the package code and files for license information

via: ern-composite-gen@0.51.1 & others

prompt@0.2.14

Package has no specified license

Recommendation: Check the package code and files for license information

via: ern-composite-gen@0.51.1 & others

utile@0.2.1

Package has no specified license

Recommendation: Check the package code and files for license information

via: ern-composite-gen@0.51.1 & others

Collapse

Expand

15 high severity issues

high

simple-git@2.48.0

Command injection in simple-git

Recommendation: Upgrade to version 3.3.0 or later

via: ern-composite-gen@0.51.1 & others

simple-git@2.48.0

Command injection in simple-git

Recommendation: Upgrade to version 3.5.0 or later

via: ern-composite-gen@0.51.1 & others

simple-git@2.48.0

simple-git vulnerable to Remote Code Execution when enabling the ext transport protocol

Recommendation: Upgrade to version 3.15.0 or later

via: ern-composite-gen@0.51.1 & others

trim-newlines@1.0.0

Uncontrolled Resource Consumption in trim-newlines

Recommendation: Upgrade to version 3.0.1 or later

via: ern-composite-gen@0.51.1 & others

jackspeak@2.3.6

Package uses an atypical license ("BlueOak-1.0.0")

Recommendation: Read and validate the license terms

via: ern-composite-gen@0.51.1

path-scurry@1.10.2

Package uses an atypical license ("BlueOak-1.0.0")

Recommendation: Read and validate the license terms

via: ern-composite-gen@0.51.1

rc@1.2.8

Package uses a custom license expression: `(BSD-2-Clause OR MIT OR Apache-2.0)`

Recommendation: Validate that the license expression complies with your license policy

via: ern-composite-gen@0.51.1 & others

revalidator@0.1.8

Package uses an invalid SPDX license ("Apache 2.0")

Recommendation: Validate that the package complies with your license policy

via: ern-composite-gen@0.51.1 & others

spdx-exceptions@2.5.0

Package uses an atypical license ("CC-BY-3.0")

Recommendation: Read and validate the license terms

via: ern-composite-gen@0.51.1 & others

bugsnag-sourcemaps@1.3.0

Deprecated package

via: ern-composite-gen@0.51.1 & others

formidable@1.2.6

Deprecated package

via: ern-composite-gen@0.51.1 & others

superagent@5.1.0

Deprecated package

via: ern-composite-gen@0.51.1 & others

uuid@3.0.1

Deprecated package

via: ern-composite-gen@0.51.1 & others

xmldom@0.1.31

Deprecated package

via: ern-composite-gen@0.51.1 & others

yarn@1.22.22

Package uses preinstall script: ":; (node ./preinstall.js > /dev/null 2>&1 || true)"

via: ern-composite-gen@0.51.1 & others

Collapse

Expand

3 moderate severity issues

moderate

xmldom@0.1.31

Misinterpretation of malicious XML input

Recommendation: Upgrade to version 0.5.0 or later

via: ern-composite-gen@0.51.1 & others

xmldom@0.1.31

Misinterpretation of malicious XML input

Recommendation: None

via: ern-composite-gen@0.51.1 & others

eyes@0.1.8

Package has no specified source code repository

via: ern-composite-gen@0.51.1 & others

Collapse

Expand

5 low severity issues

low

jackspeak@2.3.6

Package uses a license that is not OSI approved ("BlueOak-1.0.0")

Recommendation: Read and validate the license terms

via: ern-composite-gen@0.51.1

path-scurry@1.10.2

Package uses a license that is not OSI approved ("BlueOak-1.0.0")

Recommendation: Read and validate the license terms

via: ern-composite-gen@0.51.1

revalidator@0.1.8

Package uses a license that is not OSI approved ("Apache 2.0")

Recommendation: Read and validate the license terms

via: ern-composite-gen@0.51.1 & others

spdx-exceptions@2.5.0

Package uses a license that is not OSI approved ("CC-BY-3.0")

Recommendation: Read and validate the license terms

via: ern-composite-gen@0.51.1 & others

spdx-license-ids@3.0.17

Package uses a license that is not OSI approved ("CC0-1.0")

Recommendation: Read and validate the license terms

via: ern-composite-gen@0.51.1 & others

Collapse

Expand

Licenses

MIT License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

Cannot

hold-liable

Must

include-copyright

include-license

352 Packages, Including:

@babel/runtime@7.24.5

@kwsites/file-exists@1.1.1

@kwsites/promise-deferred@1.1.1

@octokit/auth-token@2.5.0

@octokit/core@3.6.0

@octokit/endpoint@6.0.12

@octokit/graphql@4.8.0

@octokit/openapi-types@12.11.0

@octokit/plugin-paginate-rest@2.21.3

@octokit/plugin-request-log@1.0.4

@octokit/plugin-rest-endpoint-methods@5.0.1

@octokit/request-error@2.1.0

@octokit/request@5.6.3

@octokit/rest@18.5.3

@octokit/types@6.41.0

@one-ini/wasm@0.1.1

@pkgjs/parseargs@0.11.0

@sindresorhus/is@4.6.0

@szmarczak/http-timer@4.0.6

@tootallnate/quickjs-emscripten@0.23.0

@types/bluebird@3.5.42

@types/cacheable-request@6.0.3

@types/http-cache-semantics@4.0.4

@types/keyv@3.1.4

@types/node@20.12.7

@types/responselike@1.0.3

adm-zip@0.5.12

agent-base@7.1.1

ansi-escapes@4.3.2

ansi-regex@2.1.1

ansi-regex@5.0.1

ansi-regex@6.0.1

ansi-styles@2.2.1

ansi-styles@4.3.0

ansi-styles@6.2.1

appcenter-file-upload-client@0.1.0

archiver-utils@2.1.0

archiver-utils@3.0.4

archiver@5.3.2

array-buffer-byte-length@1.0.1

array-find-index@1.0.2

asap@2.0.6

ast-types@0.13.4

astral-regex@2.0.0

async@0.2.10

async@3.2.5

asynckit@0.4.0

available-typed-arrays@1.0.7

balanced-match@1.0.2

base64-js@1.1.2

ISC License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

Cannot

hold-liable

Must

include-copyright

include-license

48 Packages, Including:

@isaacs/cliui@8.0.2

abbrev@2.0.0

aproba@2.0.0

are-we-there-yet@2.0.0

cli-width@3.0.0

color-support@1.1.3

console-control-strings@1.1.0

deprecation@2.3.1

dezalgo@1.0.4

foreground-child@3.1.1

fs.realpath@1.0.0

gauge@3.0.2

glob@10.3.12

glob@7.2.3

graceful-fs@4.2.11

has-unicode@2.0.1

hosted-git-info@2.8.9

inflight@1.0.6

inherits@2.0.4

ini@1.3.8

isexe@2.0.0

lru-cache@10.2.2

lru-cache@6.0.0

lru-cache@7.18.3

minimatch@3.1.2

minimatch@5.1.6

minimatch@9.0.1

minimatch@9.0.4

minipass@7.0.4

mute-stream@0.0.8

nopt@7.2.0

npmlog@5.0.1

once@1.4.0

proto-list@1.2.4

read@1.0.7

rimraf@2.7.1

rimraf@3.0.2

semver@5.7.2

semver@6.3.1

semver@7.6.0

set-blocking@2.0.0

signal-exit@3.0.7

signal-exit@4.1.0

universal-user-agent@6.0.1

which@2.0.2

wide-align@1.1.5

wrappy@1.0.2

yallist@4.0.0

Apache License 2.0

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

use-patent-claims

place-warranty

Cannot

hold-liable

use-trademark

Must

include-copyright

include-license

state-changes

include-notice

15 Packages, Including:

asyncbox@2.9.4

before-after-hook@2.2.3

crc-32@1.2.2

ern-composite-gen@0.51.1

ern-container-gen@0.51.1

ern-core@0.51.1

gradle-to-js@2.0.1

kax@3.1.1

node-simctl@6.6.0

readdir-glob@1.1.3

rxjs@7.8.1

spdx-correct@3.2.0

teen_process@1.16.0

validate-npm-package-license@3.0.4

xcode-ern@1.0.13

BSD 2-Clause "Simplified" License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

place-warranty

Cannot

hold-liable

Must

include-copyright

include-license

9 Packages, Including:

@yarnpkg/lockfile@1.1.0

escodegen@2.1.0

esprima@4.0.1

estraverse@5.3.0

esutils@2.0.3

http-cache-semantics@4.1.1

normalize-package-data@2.5.0

webidl-conversions@3.0.1

yarn@1.22.22

BSD 3-Clause "New" or "Revised" License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

place-warranty

Cannot

use-trademark

hold-liable

Must

include-copyright

include-license

6 Packages, Including:

ieee754@1.2.1

qs@6.12.1

react-native-cli@2.0.1

shelljs@0.8.5

source-map@0.6.1

sprintf-js@1.1.3

N/A

5 Packages, Including:

cli-table@0.3.11

colors@0.6.2

cycle@1.0.3

prompt@0.2.14

utile@0.2.1

The Unlicense

Public Domain

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

private-use

modify

Cannot

include-copyright

hold-liable

Must

3 Packages, Including:

big-integer@1.6.52

event-pubsub@4.3.0

stream-buffers@2.2.0

Blue Oak Model License 1.0.0

Uncategorized

Not OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

Cannot

Must

2 Packages, Including:

jackspeak@2.3.6

path-scurry@1.10.2

(BSD-2-Clause OR MIT OR Apache-2.0)

Expression

1 Packages, Including:

rc@1.2.8

Apache 2.0

Invalid

Not OSI Approved

1 Packages, Including:

revalidator@0.1.8

Creative Commons Attribution 3.0 Unported

Uncategorized

Not OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

Cannot

Must

1 Packages, Including:

spdx-exceptions@2.5.0

Creative Commons Zero v1.0 Universal

Public Domain

Not OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

Cannot

Must

1 Packages, Including:

spdx-license-ids@3.0.17

BSD Zero Clause License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

include-copyright

include-license

include-original

Cannot

hold-liable

Must

1 Packages, Including:

tslib@2.6.2

(MIT OR CC0-1.0)

Public Domain

1 Packages, Including:

type-fest@0.21.3

(LGPL-2.0 or MIT)

Permissive

1 Packages, Including:

xmldom@0.1.31

Direct Dependencies

All Dependencies CSV

ⓘ This is a list of ern-container-gen 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.

Name	Version	Size	License	Type	Vulnerabilities
ern-composite-gen	0.51.1	28.07 kB	Apache-2.0	prod	9 15 3 5
ern-core	0.51.1	113.37 kB	Apache-2.0	prod	9 13 3 3
fs-extra	10.1.0	16.52 kB	MIT	prod
fs-readdir-recursive	1.1.0	1.98 kB	MIT	prod
mustache	4.2.0	33.77 kB	MIT	prod
semver	7.6.0	26.57 kB	ISC	prod
xcode-ern	1.0.13	27.33 kB	Apache-2.0	prod	3 2 2