Home
Docs
GitHub
Pricing
Blog
Log In

Run Sandworm Audit for your App

Get started
Generated on Feb 24, 2024 via pnpm
Package summary
Share
50
issues
1
critical severity
vulnerability
1
28
high severity
vulnerability
11
license
2
meta
15
15
moderate severity
vulnerability
11
meta
4
6
low severity
vulnerability
4
license
2
10
licenses
185
MIT
21
Apache-2.0
15
ISC
20
other licenses
BSD-3-Clause
12
BSD
2
BSD-2-Clause
2
(MIT OR Apache-2.0)
1
+ 3 more
Package created
6 May 2014
Version published
10 Mar 2017
Maintainers
5
Total deps
241
Direct deps
34
License
Apache-2.0

Issues

50

1 critical severity issue

critical
Recommendation: Upgrade to version 4.17.12 or later
via: grpc@0.14.1
Collapse
Expand

28 high severity issues

high
Recommendation: Upgrade to version 1.24.4 or later
via: grpc@0.14.1
Recommendation: Upgrade to version 4.2.1 or later
via: gce-images@0.2.3 & others
Recommendation: Upgrade to version 4.17.11 or later
via: grpc@0.14.1
Recommendation: Upgrade to version 0.10.0 or later
via: gce-images@0.2.3 & others
Recommendation: Upgrade to version 1.3.0 or later
via: gce-images@0.2.3 & others
Recommendation: Upgrade to version 1.3.0 or later
via: gce-images@0.2.3 & others
Recommendation: Upgrade to version 4.2.1 or later
via: dot-prop@2.4.0
Recommendation: Upgrade to version 9.0.1 or later
via: gce-images@0.2.3 & others
Recommendation: Upgrade to version 4.17.19 or later
via: grpc@0.14.1
Recommendation: None
via: gce-images@0.2.3 & others
Recommendation: Upgrade to version 4.17.21 or later
via: grpc@0.14.1
Recommendation: Validate that the package complies with your license policy
via: grpc@0.14.1
Recommendation: Validate that the package complies with your license policy
via: gce-images@0.2.3 & others
via: gce-images@0.2.3 & others
via: gce-images@0.2.3 & others
via: gcs-resumable-upload@0.7.7
via: grpc@0.14.1
via: grpc@0.14.1
via: gce-images@0.2.3 & others
via: gce-images@0.2.3 & others
via: gce-images@0.2.3 & others
via: gce-images@0.2.3 & others
via: gce-images@0.2.3 & others
via: gce-images@0.2.3 & others
via: gcs-resumable-upload@0.7.7 & others
via: gce-images@0.2.3 & others
via: gce-images@0.2.3 & others
via: gce-images@0.2.3 & others
Collapse
Expand

15 moderate severity issues

moderate
Recommendation: Upgrade to version 4.17.11 or later
via: grpc@0.14.1
Recommendation: Upgrade to version 0.6.0 or later
via: gce-images@0.2.3 & others
Recommendation: Upgrade to version 1.3.0 or later
via: gce-images@0.2.3 & others
Recommendation: Upgrade to version 11.8.5 or later
via: gce-images@0.2.3
Recommendation: Upgrade to version 1.2.3 or later
via: gce-images@0.2.3 & others
Recommendation: Upgrade to version 5.0.3 or later
via: grpc@0.14.1
Recommendation: Upgrade to version 3.0.0 or later
via: gce-images@0.2.3 & others
Recommendation: None
via: gce-images@0.2.3 & others
Recommendation: Upgrade to version 1.0.0 or later
via: gce-images@0.2.3 & others
Recommendation: Upgrade to version 4.17.21 or later
via: grpc@0.14.1
Recommendation: Upgrade to version 4.1.3 or later
via: gce-images@0.2.3 & others
via: gcs-resumable-upload@0.7.7
via: gcs-resumable-upload@0.7.7
via: gce-images@0.2.3 & others
via: prop-assign@1.0.0
Collapse
Expand

6 low severity issues

low
Recommendation: Upgrade to version 4.17.5 or later
via: grpc@0.14.1
Recommendation: Upgrade to version 1.0.0 or later
via: gce-images@0.2.3 & others
Recommendation: Upgrade to version 0.10.0 or later
via: gce-images@0.2.3 & others
Recommendation: Upgrade to version 1.0.0 or later
via: gce-images@0.2.3 & others
Recommendation: Read and validate the license terms
via: grpc@0.14.1
Recommendation: Read and validate the license terms
via: gce-images@0.2.3 & others
Collapse
Expand

Licenses

MIT License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
Cannot
hold-liable
Must
include-copyright
include-license
185 Packages, Including:
@types/keyv@3.1.4
@types/node@20.11.20
@types/responselike@1.0.3
ajv@6.12.6
ansi-regex@2.1.1
ansi-styles@2.2.1
array-uniq@1.0.3
arrify@1.0.1
asn1@0.2.6
assert-plus@0.2.0
assert-plus@1.0.0
async@1.4.2
async@1.5.2
async@2.6.4
asynckit@0.4.0
aws4@1.12.0
balanced-match@1.0.2
base64url@0.0.6
base64url@1.0.6
bl@1.1.2
brace-expansion@1.1.11
buffer-equal@1.0.1
buffer-from@1.1.2
camelcase-keys@1.0.0
camelcase@1.2.1
camelcase@2.1.1
capture-stack-trace@1.0.2
chalk@1.1.3
code-point-at@1.1.0
colour@0.7.1
combined-stream@1.0.8
commander@2.20.3
concat-map@0.0.1
concat-stream@1.4.11
concat-stream@1.6.2
core-util-is@1.0.2
core-util-is@1.0.3
create-error-class@2.0.1
crypto-random-string@1.0.0
dashdash@1.14.1
decamelize@1.2.0
delayed-stream@1.0.0
dot-prop@2.4.0
dot-prop@4.2.1
duplexify@3.7.1
ecc-jsbn@0.1.2
end-of-stream@1.4.4
ent@2.2.0
error-ex@1.3.2
escape-string-regexp@1.0.5

Apache License 2.0

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
use-patent-claims
place-warranty
Cannot
hold-liable
use-trademark
Must
include-copyright
include-license
state-changes
include-notice
21 Packages, Including:
ascli@1.0.1
aws-sign2@0.6.0
aws-sign2@0.7.0
bufferview@1.0.1
bytebuffer@4.1.0
caseless@0.11.0
caseless@0.12.0
ecdsa-sig-formatter@1.0.11
forever-agent@0.6.1
gcloud@0.37.2
google-auth-library@0.10.0
google-auth-library@0.9.10
long@2.4.0
oauth-sign@0.8.2
oauth-sign@0.9.0
protobufjs@4.1.3
request@2.74.0
request@2.76.0
request@2.88.2
tunnel-agent@0.4.3
tunnel-agent@0.6.0

ISC License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
Cannot
hold-liable
Must
include-copyright
include-license
15 Packages, Including:
cliui@3.2.0
dns-zonefile@0.1.18
glob@5.0.15
graceful-fs@4.2.11
har-schema@2.0.0
har-validator@2.0.6
inflight@1.0.6
inherits@2.0.4
json-stringify-safe@5.0.1
minimatch@3.1.2
once@1.4.0
signal-exit@3.0.7
wrappy@1.0.2
write-file-atomic@2.4.3
y18n@3.2.2

BSD 3-Clause "New" or "Revised" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
use-trademark
hold-liable
Must
include-copyright
include-license
12 Packages, Including:
bcrypt-pbkdf@1.0.2
boom@2.10.1
buffer-equal-constant-time@1.0.1
cryptiles@2.0.5
grpc@0.14.1
hawk@3.1.3
hoek@2.16.3
qs@6.2.4
qs@6.3.3
qs@6.5.3
tough-cookie@2.3.4
tough-cookie@2.5.0

BSD

Invalid
Not OSI Approved
2 Packages, Including:
arguejs@0.2.3
sntp@1.0.9

BSD 2-Clause "Simplified" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
hold-liable
Must
include-copyright
include-license
2 Packages, Including:
configstore@3.1.5
uri-js@4.4.1

(MIT OR Apache-2.0)

Permissive
1 Packages, Including:
JSONStream@1.3.5

(AFL-2.1 OR BSD-3-Clause)

Permissive
1 Packages, Including:
json-schema@0.4.0

(BSD-3-Clause OR GPL-2.0)

Permissive
1 Packages, Including:
node-forge@0.7.6

The Unlicense

Public Domain
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
private-use
modify
Cannot
include-copyright
hold-liable
Must
1 Packages, Including:
tweetnacl@0.14.5
Disclaimer

This deed highlights only some of the key features and terms of the actual license. It is not a license and has no legal value. You should carefully review all of the terms and conditions of the actual license before using the licensed material.

Sandworm is not a law firm and does not provide legal services. Distributing, displaying, or linking to this deed or the license that it summarizes does not create a lawyer-client or any other relationship.

Direct Dependencies

34
All Dependencies CSV
β“˜ This is a list of gcloud 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.
NameVersionSizeLicenseTypeVulnerabilities
JSONStream1.3.5136.16 kB(MIT OR Apache-2.0)
prod
array-uniq1.0.31.92 kBMIT
prod
arrify1.0.11.42 kBMIT
prod
async1.5.238.01 kBMIT
prod
concat-stream1.6.23.72 kBMIT
prod
create-error-class2.0.11.16 kBMIT
prod
dns-zonefile0.1.187.72 kBISC
prod
dot-prop2.4.02.03 kBMIT
prod
1
duplexify3.7.14.92 kBMIT
prod
ent2.2.023.73 kBMIT
prod
extend3.0.27.09 kBMIT
prod
gce-images0.2.34.78 kBMIT
prod
18
9
4
gcs-resumable-upload0.7.75.45 kBMIT
prod
19
9
4
google-auto-auth0.2.43.24 kBMIT
prod
18
8
4
google-proto-files0.2.4101.87 kBMIT
prod
grpc0.14.15.84 MBBSD-3-Clause
prod
1
7
3
2
hash-stream-validation0.2.44.13 kBMIT
prod
is3.3.011.7 kBMIT
prod
lodash.flatten4.4.04.05 kBMIT
prod
methmeth1.1.01.71 kBMIT
prod
mime-types2.1.355.46 kBMIT
prod
modelo4.2.34.96 kBMIT
prod
node-int640.4.05.92 kBMIT
prod
once1.4.01.93 kBISC
prod
prop-assign1.0.01.3 kBMIT
prod
1
propprop0.3.11.94 kBMIT
prod
pumpify1.5.13.4 kBMIT
prod
request2.88.257.83 kBApache-2.0
prod
3
2
retry-request1.3.22.96 kBMIT
prod
12
3
1
rgb-hex1.0.0866 BMIT
prod
split-array-stream1.0.32.56 kBMIT
prod
stream-events1.0.51.35 kBMIT
prod
string-format-obj1.1.11.42 kBMIT
prod
through22.0.53.96 kBMIT
prod

Visualizations