Generated on Nov 23, 2023 via pnpm

Npm

Home

generator-node 2.8.0

Create a Node.js module

yeoman-generator

scaffold

node

module

cli

Package summary

issues

licenses

Package created

21 Jun 2013

Version published

17 Nov 2019

Maintainers

Total deps

647

Direct deps

License

MIT

Issues

2 critical severity issues

critical

ejs@2.7.4

ejs template injection vulnerability

Recommendation: Upgrade to version 3.1.7 or later

via: generator-jest@1.8.0 & others

cli-table@0.3.11

Package has no specified license

Recommendation: Check the package code and files for license information

via: generator-jest@1.8.0 & others

Collapse

Expand

15 high severity issues

high

glob-parent@3.1.0

glob-parent before 5.1.2 vulnerable to Regular Expression Denial of Service in enclosure regex

Recommendation: Upgrade to version 5.1.2 or later

via: generator-jest@1.8.0 & others

http-cache-semantics@3.8.1

http-cache-semantics vulnerable to Regular Expression Denial of Service

Recommendation: Upgrade to version 4.1.1 or later

via: generator-travis@1.10.0 & others

gitconfiglocal@2.1.0

Package uses an invalid SPDX license ("BSD")

Recommendation: Validate that the package complies with your license policy

via: git-remote-origin-url@3.1.0

glob-to-regexp@0.3.0

Package uses an invalid SPDX license ("BSD")

Recommendation: Validate that the package complies with your license policy

via: generator-jest@1.8.0 & others

jackspeak@2.3.6

Package uses an atypical license ("BlueOak-1.0.0")

Recommendation: Read and validate the license terms

via: generator-license@5.6.0

path-scurry@1.10.1

Package uses an atypical license ("BlueOak-1.0.0")

Recommendation: Read and validate the license terms

via: generator-license@5.6.0

rc@1.2.8

Package uses a custom license expression: `(BSD-2-Clause OR MIT OR Apache-2.0)`

Recommendation: Validate that the license expression complies with your license policy

via: inquirer-npm-name@3.0.0

spdx-exceptions@2.3.0

Package uses an atypical license ("CC-BY-3.0")

Recommendation: Read and validate the license terms

via: generator-jest@1.8.0 & others

@npmcli/move-file@2.0.1

Deprecated package

via: generator-license@5.6.0

ejs@2.7.4

Package uses postinstall script: "node ./postinstall.js"

via: generator-jest@1.8.0 & others

resolve-url@0.2.1

Deprecated package

via: generator-jest@1.8.0 & others

snyk@1.1252.0

Package uses postinstall script: "node wrapper_dist/bootstrap.js exec"

via: generator-jest@1.8.0

source-map-resolve@0.5.3

Deprecated package

via: generator-jest@1.8.0 & others

source-map-url@0.4.1

Deprecated package

via: generator-jest@1.8.0 & others

urix@0.1.0

Deprecated package

via: generator-jest@1.8.0 & others

Collapse

Expand

4 moderate severity issues

moderate

got@6.7.1

Got allows a redirect to a UNIX socket

Recommendation: Upgrade to version 11.8.5 or later

via: generator-jest@1.8.0 & others

axios@0.21.4

Axios Cross-Site Request Forgery Vulnerability

Recommendation: Upgrade to version 1.6.0 or later

via: generator-jest@1.8.0 & others

minipass-collect@1.0.2

Package has no specified source code repository

via: generator-license@5.6.0

minipass-pipeline@1.2.4

Package has no specified source code repository

via: generator-license@5.6.0

Collapse

Expand

6 low severity issues

low

gitconfiglocal@2.1.0

Package uses a license that is not OSI approved ("BSD")

Recommendation: Read and validate the license terms

via: git-remote-origin-url@3.1.0

glob-to-regexp@0.3.0

Package uses a license that is not OSI approved ("BSD")

Recommendation: Read and validate the license terms

via: generator-jest@1.8.0 & others

jackspeak@2.3.6

Package uses a license that is not OSI approved ("BlueOak-1.0.0")

Recommendation: Read and validate the license terms

via: generator-license@5.6.0

path-scurry@1.10.1

Package uses a license that is not OSI approved ("BlueOak-1.0.0")

Recommendation: Read and validate the license terms

via: generator-license@5.6.0

spdx-exceptions@2.3.0

Package uses a license that is not OSI approved ("CC-BY-3.0")

Recommendation: Read and validate the license terms

via: generator-jest@1.8.0 & others

spdx-license-ids@3.0.16

Package uses a license that is not OSI approved ("CC0-1.0")

Recommendation: Read and validate the license terms

via: generator-jest@1.8.0 & others

Collapse

Expand

Licenses

MIT License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

Cannot

hold-liable

Must

include-copyright

include-license

498 Packages, Including:

@babel/code-frame@7.23.4

@babel/helper-validator-identifier@7.22.20

@babel/highlight@7.23.4

@gar/promisify@1.1.3

@mrmlnc/readdir-enhanced@2.2.1

@nodelib/fs.scandir@2.1.5

@nodelib/fs.stat@1.1.3

@nodelib/fs.stat@2.0.5

@nodelib/fs.walk@1.2.8

@npmcli/move-file@2.0.1

@octokit/auth-token@2.5.0

@octokit/core@3.6.0

@octokit/endpoint@6.0.12

@octokit/graphql@4.8.0

@octokit/openapi-types@12.11.0

@octokit/plugin-paginate-rest@2.21.3

@octokit/plugin-request-log@1.0.4

@octokit/plugin-rest-endpoint-methods@5.16.2

@octokit/request-error@2.1.0

@octokit/request@5.6.3

@octokit/rest@18.12.0

@octokit/types@6.41.0

@pkgjs/parseargs@0.11.0

@sentry-internal/tracing@7.81.1

@sentry/core@7.81.1

@sentry/node@7.81.1

@sentry/types@7.81.1

@sentry/utils@7.81.1

@sindresorhus/is@0.14.0

@sindresorhus/is@0.7.0

@szmarczak/http-timer@1.1.2

@tootallnate/once@2.0.0

@tufjs/canonical-json@1.0.0

@tufjs/models@1.0.4

@types/glob@7.2.0

@types/keyv@3.1.4

@types/minimatch@3.0.5

@types/minimatch@5.1.2

@types/node@20.9.4

@types/normalize-package-data@2.4.4

@types/responselike@1.0.3

agent-base@6.0.2

agentkeepalive@4.5.0

aggregate-error@3.1.0

ansi-escapes@4.3.2

ansi-regex@3.0.1

ansi-regex@5.0.1

ansi-regex@6.0.1

ansi-styles@3.2.1

ansi-styles@4.3.0

ISC License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

Cannot

hold-liable

Must

include-copyright

include-license

96 Packages, Including:

@isaacs/cliui@8.0.2

@npmcli/fs@2.1.2

@npmcli/fs@3.1.0

@npmcli/git@4.1.0

@npmcli/installed-package-contents@2.0.2

@npmcli/node-gyp@3.0.0

@npmcli/promise-spawn@6.0.2

@npmcli/run-script@6.0.2

abbrev@1.1.1

aproba@2.0.0

are-we-there-yet@3.0.1

cacache@16.1.3

cacache@17.1.4

chownr@2.0.0

cli-width@3.0.0

color-support@1.1.3

console-control-strings@1.1.0

deprecation@2.3.1

fastq@1.15.0

foreground-child@3.1.1

fs-minipass@2.1.0

fs-minipass@3.0.3

fs.realpath@1.0.0

gauge@4.0.4

glob-parent@3.1.0

glob-parent@5.1.2

glob@10.3.10

glob@7.2.3

glob@8.1.0

graceful-fs@4.2.11

has-unicode@2.0.1

hosted-git-info@2.8.9

hosted-git-info@6.1.1

ignore-walk@6.0.3

infer-owner@1.0.4

inflight@1.0.6

inherits@2.0.4

ini@1.3.8

isexe@2.0.0

json-stringify-safe@5.0.1

lru-cache@10.1.0

lru-cache@6.0.0

lru-cache@7.18.3

make-fetch-happen@10.2.1

make-fetch-happen@11.1.1

minimatch@3.1.2

minimatch@5.1.6

minimatch@7.4.6

minimatch@9.0.3

minipass-collect@1.0.2

Apache License 2.0

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

use-patent-claims

place-warranty

Cannot

hold-liable

use-trademark

Must

include-copyright

include-license

state-changes

include-notice

17 Packages, Including:

@sigstore/bundle@1.1.0

@sigstore/protobuf-specs@0.2.1

@sigstore/sign@1.0.0

@sigstore/tuf@1.0.3

before-after-hook@2.2.3

ejs@2.7.4

ejs@3.1.9

exponential-backoff@3.1.1

filelist@1.0.4

human-signals@1.1.1

human-signals@2.1.0

jake@10.8.7

rxjs@6.6.7

sigstore@1.9.0

snyk@1.1252.0

spdx-correct@3.2.0

validate-npm-package-license@3.0.4

BSD 2-Clause "Simplified" License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

place-warranty

Cannot

hold-liable

Must

include-copyright

include-license

11 Packages, Including:

esprima@4.0.1

http-cache-semantics@3.8.1

http-cache-semantics@4.1.1

normalize-package-data@2.5.0

normalize-package-data@5.0.0

npm-install-checks@6.3.0

webidl-conversions@3.0.1

yeoman-environment@2.10.3

yeoman-generator@2.0.5

yeoman-generator@4.13.0

yeoman-generator@5.10.0

BSD 3-Clause "New" or "Revised" License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

place-warranty

Cannot

use-trademark

hold-liable

Must

include-copyright

include-license

9 Packages, Including:

diff@3.5.0

diff@4.0.2

duplexer3@0.1.5

global-agent@3.0.0

roarr@2.15.4

shelljs@0.8.5

source-map@0.5.7

sprintf-js@1.0.3

sprintf-js@1.1.3

(MIT OR CC0-1.0)

Public Domain

4 Packages, Including:

type-fest@0.13.1

type-fest@0.21.3

type-fest@0.6.0

type-fest@0.8.1

(MIT OR Apache-2.0)

Permissive

2 Packages, Including:

JSONStream@1.3.5

atob@2.1.2

BSD

Invalid

Not OSI Approved

2 Packages, Including:

gitconfiglocal@2.1.0

glob-to-regexp@0.3.0

Blue Oak Model License 1.0.0

Uncategorized

Not OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

Cannot

Must

2 Packages, Including:

jackspeak@2.3.6

path-scurry@1.10.1

Artistic License 2.0

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

Cannot

use-trademark

hold-liable

Must

rename

state-changes

include-original

include-install-instructions

1 Packages, Including:

binaryextensions@4.19.0

N/A

1 Packages, Including:

cli-table@0.3.11

(BSD-2-Clause OR MIT OR Apache-2.0)

Expression

1 Packages, Including:

rc@1.2.8

Creative Commons Attribution 3.0 Unported

Uncategorized

Not OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

Cannot

Must

1 Packages, Including:

spdx-exceptions@2.3.0

Creative Commons Zero v1.0 Universal

Public Domain

Not OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

Cannot

Must

1 Packages, Including:

spdx-license-ids@3.0.16

BSD Zero Clause License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

include-copyright

include-license

include-original

Cannot

hold-liable

Must

1 Packages, Including:

tslib@1.14.1

Direct Dependencies

All Dependencies CSV

ⓘ This is a list of generator-node 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.

Name	Version	Size	License	Type	Vulnerabilities
chalk	3.0.0	10.67 kB	MIT	prod
generator-jest	1.8.0	3.44 kB	MIT	prod	2 9 2 3
generator-license	5.6.0	45.13 kB	MIT	prod	4 2 4
generator-travis	1.10.0	3.22 kB	MIT	prod	2 9 2 3
git-remote-origin-url	3.1.0	1.93 kB	MIT	prod	1 1
github-username	5.0.1	1.98 kB	MIT	prod	1
inquirer-npm-name	3.0.0	2.96 kB	MIT	prod	2 1
lodash	4.17.21	311.49 kB	MIT	prod optional
parse-author	2.0.0	3.03 kB	MIT	prod
validate-npm-package-name	3.0.0	5.25 kB	ISC	prod
yeoman-generator	4.13.0	25.01 kB	BSD-2-Clause	prod optional	2 8 2 3