Home
Docs
GitHub
Pricing
Blog
Log In

Run Sandworm Audit for your App

Get started
Hold on, we're currently generating a fresh version of this report
Generated on Feb 12, 2024 via pnpm

generator-angular-fullstack 5.0.0-rc.4

Yeoman generator for creating MEAN stack applications, using MongoDB, Express, AngularJS, and Node
Package summary
Share
97
issues
10
critical severity
vulnerability
4
license
6
51
high severity
vulnerability
10
license
18
meta
23
15
moderate severity
vulnerability
10
meta
5
21
low severity
vulnerability
4
license
17
26
licenses
1038
MIT
143
ISC
36
BSD-2-Clause
93
other licenses
Apache-2.0
29
BSD-3-Clause
22
BSD
8
N/A
6
+ 19 more
Package created
30 Oct 2013
Version published
11 Aug 2018
Maintainers
2
Total deps
1310
Direct deps
24
License
BSD-2-Clause

Issues

97

10 critical severity issues

critical
Recommendation: Upgrade to version 3.1.7 or later
via: generator-angular-fullstack-component@1.0.1 & others
Recommendation: Upgrade to version 4.17.12 or later
via: insight@0.8.4 & others
Recommendation: Upgrade to version 0.5.1 or later
via: yeoman-generator@2.0.4
Recommendation: Upgrade to version 1.12.1 or later
via: generator-angular-fullstack-component@1.0.1 & others
Recommendation: Check the package code and files for license information
via: generator-angular-fullstack-component@1.0.1 & others
Recommendation: Check the package code and files for license information
via: yo@5.0.0
Recommendation: Check the package code and files for license information
via: generator-angular-fullstack-component@1.0.1 & others
Recommendation: Check the package code and files for license information
via: yo@5.0.0
Recommendation: Check the package code and files for license information
via: gulp-eslint@3.0.1
Recommendation: Check the package code and files for license information
via: yo@5.0.0
Collapse
Expand

51 high severity issues

high
Recommendation: Upgrade to version 3.1.3 or later
via: yo@5.0.0
Recommendation: Upgrade to version 3.0.2 or later
via: jscodeshift@0.3.32
Recommendation: Upgrade to version 4.17.21 or later
via: insight@0.8.4 & others
Recommendation: Upgrade to version 4.17.11 or later
via: insight@0.8.4 & others
Recommendation: Upgrade to version 5.1.2 or later
via: generator-angular-fullstack-component@1.0.1 & others
Recommendation: Upgrade to version 3.0.1 or later
via: yo@5.0.0
Recommendation: Upgrade to version 0.8.5 or later
via: gulp-eslint@3.0.1
Recommendation: Upgrade to version 3.0.5 or later
via: jscodeshift@0.3.32
Recommendation: Upgrade to version 4.17.19 or later
via: insight@0.8.4 & others
Recommendation: Upgrade to version 1.0.2 or later
via: babel-core@6.26.3 & others
Recommendation: Validate that the package complies with your license policy
via: gulp-eslint@3.0.1 & others
Recommendation: Validate that the package complies with your license policy
via: jscodeshift@0.3.32
Recommendation: Validate that the package complies with your license policy
via: generator-angular-fullstack-component@1.0.1 & others
Recommendation: Validate that the package complies with your license policy
via: gulp-html2jade@1.1.2
Recommendation: Validate that the package complies with your license policy
via: babel-preset-env@1.7.0 & others
Recommendation: Validate that the package complies with your license policy
via: jscodeshift@0.3.32
Recommendation: Validate that the package complies with your license policy
via: babel-preset-env@1.7.0 & others
Recommendation: Validate that the package complies with your license policy
via: jscodeshift@0.3.32
Recommendation: Read and validate the license terms
via: yo@5.0.0
Recommendation: Read and validate the license terms
via: yo@5.0.0
Recommendation: Read and validate the license terms
via: babel-preset-env@1.7.0
Recommendation: Validate that the package complies with your license policy
via: yo@5.0.0
Recommendation: Validate that the package complies with your license policy
via: gulp-eslint@3.0.1
Recommendation: Validate that the package complies with your license policy
via: gulp-html2jade@1.1.2
Recommendation: Validate that the license expression complies with your license policy
via: yo@5.0.0
Recommendation: Validate that the package complies with your license policy
via: gulp-eslint@3.0.1 & others
Recommendation: Read and validate the license terms
via: generator-angular-fullstack-component@1.0.1 & others
Recommendation: Validate that the package complies with your license policy
via: jscodeshift@0.3.32
via: babel-eslint@7.2.3
via: generator-angular-fullstack-component@1.0.1 & others
via: gulp-eslint@3.0.1
via: jscodeshift@0.3.32
via: babel-core@6.26.3 & others
via: babel-core@6.26.3 & others
via: yo@5.0.0
via: generator-angular-fullstack-component@1.0.1 & others
via: gulp-eslint@3.0.1
via: gulp-eslint@3.0.1 & others
via: insight@0.8.4
via: jscodeshift@0.3.32
via: generator-angular-fullstack-component@1.0.1 & others
via: insight@0.8.4
via: generator-angular-fullstack-component@1.0.1 & others
via: generator-angular-fullstack-component@1.0.1 & others
via: generator-angular-fullstack-component@1.0.1 & others
via: yo@5.0.0
via: jscodeshift@0.3.32
via: generator-angular-fullstack-component@1.0.1 & others
via: insight@0.8.4
via: insight@0.8.4
via: yo@5.0.0
Collapse
Expand

15 moderate severity issues

moderate
Recommendation: Upgrade to version 4.17.11 or later
via: insight@0.8.4 & others
Recommendation: Upgrade to version 1.4.4 or later
via: gulp-html2jade@1.1.2
Recommendation: Upgrade to version 0.8.5 or later
via: gulp-eslint@3.0.1
Recommendation: Upgrade to version 13.1.2 or later
via: yo@5.0.0
Recommendation: Upgrade to version 11.8.5 or later
via: generator-angular-fullstack-component@1.0.1 & others
Recommendation: Upgrade to version 6.12.3 or later
via: gulp-eslint@3.0.1
Recommendation: None
via: insight@0.8.4
Recommendation: Upgrade to version 4.17.21 or later
via: insight@0.8.4 & others
Recommendation: Upgrade to version 1.6.0 or later
via: generator-angular-fullstack-component@1.0.1 & others
Recommendation: Upgrade to version 4.1.3 or later
via: insight@0.8.4
via: yo@5.0.0
via: yo@5.0.0
via: yo@5.0.0
via: yo@5.0.0
via: yo@5.0.0
Collapse
Expand

21 low severity issues

low
Recommendation: Upgrade to version 2.3.1 or later
via: generator-angular-fullstack-component@1.0.1 & others
Recommendation: Upgrade to version 4.17.5 or later
via: insight@0.8.4 & others
Recommendation: Upgrade to version 2.3.1 or later
via: generator-angular-fullstack-component@1.0.1 & others
Recommendation: Upgrade to version 3.1.4 or later
via: yo@5.0.0
Recommendation: Read and validate the license terms
via: gulp-eslint@3.0.1 & others
Recommendation: Read and validate the license terms
via: jscodeshift@0.3.32
Recommendation: Read and validate the license terms
via: generator-angular-fullstack-component@1.0.1 & others
Recommendation: Read and validate the license terms
via: gulp-html2jade@1.1.2
Recommendation: Read and validate the license terms
via: babel-preset-env@1.7.0 & others
Recommendation: Read and validate the license terms
via: jscodeshift@0.3.32
Recommendation: Read and validate the license terms
via: babel-preset-env@1.7.0 & others
Recommendation: Read and validate the license terms
via: jscodeshift@0.3.32
Recommendation: Read and validate the license terms
via: yo@5.0.0
Recommendation: Read and validate the license terms
via: yo@5.0.0
Recommendation: Read and validate the license terms
via: babel-preset-env@1.7.0
Recommendation: Read and validate the license terms
via: yo@5.0.0
Recommendation: Read and validate the license terms
via: gulp-eslint@3.0.1
Recommendation: Read and validate the license terms
via: gulp-eslint@3.0.1 & others
Recommendation: Read and validate the license terms
via: generator-angular-fullstack-component@1.0.1 & others
Recommendation: Read and validate the license terms
via: generator-angular-fullstack-component@1.0.1 & others
Recommendation: Read and validate the license terms
via: jscodeshift@0.3.32
Collapse
Expand

Licenses

MIT License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
Cannot
hold-liable
Must
include-copyright
include-license
1038 Packages, Including:
@babel/code-frame@7.23.5
@babel/helper-validator-identifier@7.22.20
@babel/highlight@7.23.4
@babel/runtime@7.23.9
@ljharb/through@2.3.12
@mrmlnc/readdir-enhanced@2.2.1
@nodelib/fs.scandir@2.1.5
@nodelib/fs.stat@1.1.3
@nodelib/fs.stat@2.0.5
@nodelib/fs.walk@1.2.8
@pkgjs/parseargs@0.11.0
@pnpm/config.env-replace@1.1.0
@pnpm/network.ca-file@1.0.2
@pnpm/npm-conf@2.2.2
@sindresorhus/is@0.14.0
@sindresorhus/is@4.6.0
@sindresorhus/merge-streams@2.1.0
@szmarczak/http-timer@1.1.2
@szmarczak/http-timer@4.0.6
@tufjs/canonical-json@2.0.0
@tufjs/models@2.0.0
@types/cacheable-request@6.0.3
@types/ejs@3.1.5
@types/expect@1.20.4
@types/glob@7.2.0
@types/http-cache-semantics@4.0.4
@types/inquirer@9.0.7
@types/keyv@3.1.4
@types/minimatch@3.0.5
@types/minimatch@5.1.2
@types/node@16.18.80
@types/node@18.19.15
@types/node@20.11.17
@types/normalize-package-data@2.4.4
@types/responselike@1.0.3
@types/through@0.0.33
@types/vinyl@2.0.11
@yeoman/adapter@1.4.0
@yeoman/conflicter@2.0.0
@yeoman/namespace@1.0.0
@yeoman/transform@1.2.0
@yeoman/types@1.1.2
abort-controller@3.0.0
acorn-jsx@3.0.1
acorn@3.3.0
acorn@5.7.4
agent-base@7.1.0
aggregate-error@3.1.0
ajv-keywords@1.5.1
ajv@4.11.8

ISC License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
Cannot
hold-liable
Must
include-copyright
include-license
143 Packages, Including:
@isaacs/cliui@8.0.2
@isaacs/string-locale-compare@1.1.0
@npmcli/agent@2.2.1
@npmcli/arborist@7.3.1
@npmcli/fs@3.1.0
@npmcli/git@5.0.4
@npmcli/installed-package-contents@2.0.2
@npmcli/map-workspaces@3.0.4
@npmcli/metavuln-calculator@7.0.0
@npmcli/name-from-folder@2.0.0
@npmcli/node-gyp@3.0.0
@npmcli/package-json@5.0.0
@npmcli/promise-spawn@7.0.1
@npmcli/query@3.0.1
@npmcli/run-script@7.0.4
abbrev@2.0.0
ansi-align@3.0.1
aproba@2.0.0
are-we-there-yet@1.1.7
are-we-there-yet@4.0.2
bin-links@4.0.3
cacache@18.0.2
chownr@2.0.0
cli-width@1.1.1
cli-width@2.2.1
cli-width@3.0.0
cli-width@4.1.0
cliui@2.1.0
cmd-shim@6.0.2
color-support@1.1.3
common-ancestor-path@1.0.1
console-control-strings@1.1.0
d@1.0.1
electron-to-chromium@1.4.665
es5-ext@0.10.62
es6-set@0.1.6
es6-symbol@3.1.3
es6-weak-map@2.0.3
ext@1.7.0
fastq@1.17.1
foreground-child@3.1.1
fs-minipass@2.1.0
fs-minipass@3.0.3
fs.realpath@1.0.0
gauge@1.2.7
gauge@5.0.1
glob-parent@2.0.0
glob-parent@3.1.0
glob-parent@5.1.2
glob@10.3.10

BSD 2-Clause "Simplified" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
hold-liable
Must
include-copyright
include-license
36 Packages, Including:
configstore@1.4.0
configstore@5.0.1
domelementtype@1.3.1
domelementtype@2.3.0
domhandler@2.4.2
domutils@1.7.0
entities@1.1.2
entities@2.2.0
escope@3.6.0
espree@3.5.4
esprima@2.7.3
esprima@3.1.3
esprima@4.0.1
esrecurse@4.3.0
estraverse@4.3.0
estraverse@5.3.0
esutils@2.0.3
generator-angular-fullstack@5.0.0-rc.4
gulp-html2jade@1.1.2
http-cache-semantics@4.1.1
insight@0.8.4
normalize-package-data@2.5.0
normalize-package-data@6.0.0
npm-install-checks@6.3.0
twig@1.17.1
update-notifier@5.1.0
uri-js@4.4.1
webidl-conversions@3.0.1
yeoman-doctor@5.0.0
yeoman-environment@2.10.3
yeoman-environment@4.3.0
yeoman-generator@2.0.4
yeoman-generator@2.0.5
yeoman-generator@4.13.0
yo@5.0.0
yosay@2.0.2

Apache License 2.0

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
use-patent-claims
place-warranty
Cannot
hold-liable
use-trademark
Must
include-copyright
include-license
state-changes
include-notice
29 Packages, Including:
@sigstore/bundle@2.1.1
@sigstore/core@1.0.0
@sigstore/protobuf-specs@0.2.1
@sigstore/sign@2.2.2
@sigstore/tuf@2.3.0
@sigstore/verify@1.0.0
aws-sign2@0.7.0
bare-events@2.2.0
caseless@0.12.0
doctrine@2.1.0
ejs@2.7.4
ejs@3.1.9
exponential-backoff@3.1.1
filelist@1.0.4
forever-agent@0.6.1
human-signals@1.1.1
human-signals@4.3.1
human-signals@5.0.0
jake@10.8.7
oauth-sign@0.9.0
p-transform@4.1.5
request@2.88.2
rx@4.1.0
rxjs@6.6.7
rxjs@7.8.1
sigstore@2.2.1
spdx-correct@3.2.0
tunnel-agent@0.6.0
validate-npm-package-license@3.0.4

BSD 3-Clause "New" or "Revised" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
use-trademark
hold-liable
Must
include-copyright
include-license
22 Packages, Including:
bcrypt-pbkdf@1.0.2
diff@3.5.0
diff@4.0.2
diff@5.1.0
duplexer3@0.1.5
esquery@1.5.0
global-agent@2.2.0
global-agent@3.0.0
global-tunnel-ng@2.7.1
ieee754@1.2.1
jscodeshift@0.3.32
jscodeshift@0.5.1
qs@6.5.3
roarr@2.15.4
shelljs@0.7.8
shelljs@0.8.5
source-map@0.5.7
source-map@0.6.1
sprintf-js@1.0.3
sprintf-js@1.1.3
table@3.8.3
tough-cookie@2.5.0

BSD

Invalid
Not OSI Approved
8 Packages, Including:
duplexer2@0.0.2
esprima-fb@15001.1001.0-dev-harmony-fb
glob-to-regexp@0.3.0
html2jade@0.8.6
regenerator-transform@0.10.1
regenerator@0.8.40
regjsparser@0.1.5
source-map@0.1.32

N/A

N/A
6 Packages, Including:
cli-table@0.3.11
fly-import@0.4.0
nomnom@1.8.1
pad-component@0.0.1
progress@1.1.8
which-package-manager@0.0.1

(MIT OR CC0-1.0)

Public Domain
6 Packages, Including:
type-fest@0.13.1
type-fest@0.20.2
type-fest@0.21.3
type-fest@0.3.1
type-fest@0.6.0
type-fest@0.8.1

(MIT OR Apache-2.0)

Permissive
3 Packages, Including:
JSONStream@1.3.5
atob@2.1.2
walk@2.3.15

Blue Oak Model License 1.0.0

Uncategorized
Not OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
Cannot
Must
2 Packages, Including:
jackspeak@2.3.6
path-scurry@1.10.1

BSD Zero Clause License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
include-copyright
include-license
include-original
Cannot
hold-liable
Must
2 Packages, Including:
tslib@1.14.1
tslib@2.6.2

BSD-3-Clause OR MIT

Permissive
1 Packages, Including:
amdefine@1.0.1

Artistic License 2.0

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
Cannot
use-trademark
hold-liable
Must
rename
state-changes
include-original
include-install-instructions
1 Packages, Including:
binaryextensions@4.19.0

Creative Commons Attribution 4.0 International

Uncategorized
Not OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
Cannot
Must
1 Packages, Including:
caniuse-lite@1.0.30001585

Apache2

Invalid
Not OSI Approved
1 Packages, Including:
foreachasync@3.0.0

WTFPL OR ISC

Permissive
1 Packages, Including:
is-integer@1.0.7

(AFL-2.1 OR BSD-3-Clause)

Permissive
1 Packages, Including:
json-schema@0.4.0

Public Domain

Invalid
Not OSI Approved
1 Packages, Including:
jsonify@0.0.1

(WTFPL OR MIT)

Permissive
1 Packages, Including:
path-is-inside@1.0.2

(MIT OR Apache2)

Invalid
1 Packages, Including:
pause-stream@0.0.11

(BSD-2-Clause OR MIT OR Apache-2.0)

Expression
1 Packages, Including:
rc@1.2.8

Apache License, Version 2.0

Invalid
Not OSI Approved
1 Packages, Including:
rx-lite@3.1.2

Creative Commons Attribution 3.0 Unported

Uncategorized
Not OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
Cannot
Must
1 Packages, Including:
spdx-exceptions@2.4.0

Creative Commons Zero v1.0 Universal

Public Domain
Not OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
Cannot
Must
1 Packages, Including:
spdx-license-ids@3.0.17

The Unlicense

Public Domain
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
private-use
modify
Cannot
include-copyright
hold-liable
Must
1 Packages, Including:
tweetnacl@0.14.5

MIT/X11

Invalid
Not OSI Approved
1 Packages, Including:
wordwrap@0.0.2
Disclaimer

This deed highlights only some of the key features and terms of the actual license. It is not a license and has no legal value. You should carefully review all of the terms and conditions of the actual license before using the licensed material.

Sandworm is not a law firm and does not provide legal services. Distributing, displaying, or linking to this deed or the license that it summarizes does not create a lawyer-client or any other relationship.

Direct Dependencies

24
All Dependencies CSV
β“˜ This is a list of generator-angular-fullstack 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.
NameVersionSizeLicenseTypeVulnerabilities
babel-core6.26.323.21 kBMIT
prod
3
babel-eslint7.2.311.32 kBMIT
prod
3
babel-plugin-syntax-class-properties6.13.0744 BMIT
prod
babel-plugin-syntax-flow6.18.0726 BMIT
prod
babel-plugin-transform-flow-strip-types6.22.01.68 kBMIT
prod
2
babel-preset-env1.7.022.59 kBMIT
prod
5
3
babel-register6.26.04.24 kBMIT
prod
3
bluebird3.7.2136.03 kBMIT
prod
chalk2.4.29.63 kBMIT
prod
generator-angular-fullstack-component1.0.16.77 kBMIT
prod
4
15
2
7
glob7.2.315.08 kBISC
prod
gulp-eslint3.0.19.27 kBMIT
prod
1
7
2
3
gulp-filter5.1.02.92 kBMIT
prod
gulp-html2jade1.1.22.17 kBBSD-2-Clause
prod
4
1
2
gulp-rename1.4.02.7 kBMIT
prod
gulp-tap1.0.15.19 kBMIT
prod
insight0.8.45.42 kBBSD-2-Clause
prod
1
8
4
2
jscodeshift0.3.32480.39 kBBSD-3-Clause
prod
3
20
2
9
lodash4.17.21311.49 kBMIT
prod
semver5.7.217.45 kBISC
prod
underscore.string3.3.637.81 kBMIT
prod
yeoman-generator2.0.416.37 kBBSD-2-Clause
prod
3
8
2
3
yeoman-welcome1.0.11.47 kBMIT
prod
yo5.0.011.25 kBBSD-2-Clause
prod peer
5
14
9
8

Visualizations