Home
Docs
GitHub
Pricing
Blog
Log In

Run Sandworm Audit for your App

Get started
Hold on, we're currently generating a fresh version of this report
Generated on May 10, 2024 via pnpm

generator-node 2.8.0

Create a Node.js module
Package summary
Share
28
issues
2
critical severity
vulnerability
1
license
1
15
high severity
vulnerability
2
license
6
meta
7
5
moderate severity
vulnerability
3
meta
2
6
low severity
license
6
15
licenses
503
MIT
96
ISC
18
Apache-2.0
36
other licenses
BSD-2-Clause
11
BSD-3-Clause
9
(MIT OR CC0-1.0)
4
(MIT OR Apache-2.0)
2
+ 8 more
Package created
21 Jun 2013
Version published
17 Nov 2019
Maintainers
10
Total deps
653
Direct deps
11
License
MIT

Issues

28

2 critical severity issues

critical
Recommendation: Upgrade to version 3.1.7 or later
via: generator-jest@1.8.0 & others
Recommendation: Check the package code and files for license information
via: generator-jest@1.8.0 & others
Collapse
Expand

15 high severity issues

high
Recommendation: Upgrade to version 4.1.1 or later
via: generator-travis@1.10.0 & others
Recommendation: Upgrade to version 5.1.2 or later
via: generator-jest@1.8.0 & others
Recommendation: Validate that the package complies with your license policy
via: git-remote-origin-url@3.1.0
Recommendation: Validate that the package complies with your license policy
via: generator-jest@1.8.0 & others
Recommendation: Read and validate the license terms
via: generator-license@5.6.0
Recommendation: Read and validate the license terms
via: generator-license@5.6.0
Recommendation: Validate that the license expression complies with your license policy
via: inquirer-npm-name@3.0.0
Recommendation: Read and validate the license terms
via: generator-jest@1.8.0 & others
via: generator-license@5.6.0
via: generator-jest@1.8.0 & others
via: generator-jest@1.8.0 & others
via: generator-jest@1.8.0
via: generator-jest@1.8.0 & others
via: generator-jest@1.8.0 & others
via: generator-jest@1.8.0 & others
Collapse
Expand

5 moderate severity issues

moderate
Recommendation: Upgrade to version 11.8.5 or later
via: generator-jest@1.8.0 & others
Recommendation: Upgrade to version 0.28.0 or later
via: generator-jest@1.8.0 & others
Recommendation: Upgrade to version 3.1.10 or later
via: generator-jest@1.8.0 & others
via: generator-license@5.6.0
via: generator-license@5.6.0
Collapse
Expand

6 low severity issues

low
Recommendation: Read and validate the license terms
via: git-remote-origin-url@3.1.0
Recommendation: Read and validate the license terms
via: generator-jest@1.8.0 & others
Recommendation: Read and validate the license terms
via: generator-license@5.6.0
Recommendation: Read and validate the license terms
via: generator-license@5.6.0
Recommendation: Read and validate the license terms
via: generator-jest@1.8.0 & others
Recommendation: Read and validate the license terms
via: generator-jest@1.8.0 & others
Collapse
Expand

Licenses

MIT License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
Cannot
hold-liable
Must
include-copyright
include-license
503 Packages, Including:
@babel/code-frame@7.24.2
@babel/helper-validator-identifier@7.24.5
@babel/highlight@7.24.5
@gar/promisify@1.1.3
@mrmlnc/readdir-enhanced@2.2.1
@nodelib/fs.scandir@2.1.5
@nodelib/fs.stat@1.1.3
@nodelib/fs.stat@2.0.5
@nodelib/fs.walk@1.2.8
@npmcli/move-file@2.0.1
@octokit/auth-token@2.5.0
@octokit/core@3.6.0
@octokit/endpoint@6.0.12
@octokit/graphql@4.8.0
@octokit/openapi-types@12.11.0
@octokit/plugin-paginate-rest@2.21.3
@octokit/plugin-request-log@1.0.4
@octokit/plugin-rest-endpoint-methods@5.16.2
@octokit/request-error@2.1.0
@octokit/request@5.6.3
@octokit/rest@18.12.0
@octokit/types@6.41.0
@pkgjs/parseargs@0.11.0
@sentry-internal/tracing@7.114.0
@sentry/core@7.114.0
@sentry/integrations@7.114.0
@sentry/node@7.114.0
@sentry/types@7.114.0
@sentry/utils@7.114.0
@sindresorhus/is@0.14.0
@sindresorhus/is@0.7.0
@szmarczak/http-timer@1.1.2
@tootallnate/once@2.0.0
@tufjs/canonical-json@1.0.0
@tufjs/models@1.0.4
@types/glob@7.2.0
@types/keyv@3.1.4
@types/minimatch@3.0.5
@types/minimatch@5.1.2
@types/node@20.12.11
@types/normalize-package-data@2.4.4
@types/responselike@1.0.3
agent-base@6.0.2
agentkeepalive@4.5.0
aggregate-error@3.1.0
ansi-escapes@4.3.2
ansi-regex@3.0.1
ansi-regex@5.0.1
ansi-regex@6.0.1
ansi-styles@3.2.1

ISC License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
Cannot
hold-liable
Must
include-copyright
include-license
96 Packages, Including:
@isaacs/cliui@8.0.2
@npmcli/fs@2.1.2
@npmcli/fs@3.1.1
@npmcli/git@4.1.0
@npmcli/installed-package-contents@2.1.0
@npmcli/node-gyp@3.0.0
@npmcli/promise-spawn@6.0.2
@npmcli/run-script@6.0.2
abbrev@1.1.1
aproba@2.0.0
are-we-there-yet@3.0.1
cacache@16.1.3
cacache@17.1.4
chownr@2.0.0
cli-width@3.0.0
color-support@1.1.3
console-control-strings@1.1.0
deprecation@2.3.1
fastq@1.17.1
foreground-child@3.1.1
fs-minipass@2.1.0
fs-minipass@3.0.3
fs.realpath@1.0.0
gauge@4.0.4
glob-parent@3.1.0
glob-parent@5.1.2
glob@10.3.14
glob@7.2.3
glob@8.1.0
graceful-fs@4.2.11
has-unicode@2.0.1
hosted-git-info@2.8.9
hosted-git-info@6.1.1
ignore-walk@6.0.5
infer-owner@1.0.4
inflight@1.0.6
inherits@2.0.4
ini@1.3.8
isexe@2.0.0
json-stringify-safe@5.0.1
lru-cache@10.2.2
lru-cache@7.18.3
make-fetch-happen@10.2.1
make-fetch-happen@11.1.1
minimatch@3.1.2
minimatch@5.1.6
minimatch@7.4.6
minimatch@9.0.4
minipass-collect@1.0.2
minipass-flush@1.0.5

Apache License 2.0

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
use-patent-claims
place-warranty
Cannot
hold-liable
use-trademark
Must
include-copyright
include-license
state-changes
include-notice
18 Packages, Including:
@sigstore/bundle@1.1.0
@sigstore/protobuf-specs@0.2.1
@sigstore/sign@1.0.0
@sigstore/tuf@1.0.3
before-after-hook@2.2.3
ejs@2.7.4
ejs@3.1.10
exponential-backoff@3.1.1
filelist@1.0.4
human-signals@1.1.1
human-signals@2.1.0
jake@10.9.1
localforage@1.10.0
rxjs@6.6.7
sigstore@1.9.0
snyk@1.1291.0
spdx-correct@3.2.0
validate-npm-package-license@3.0.4

BSD 2-Clause "Simplified" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
hold-liable
Must
include-copyright
include-license
11 Packages, Including:
esprima@4.0.1
http-cache-semantics@3.8.1
http-cache-semantics@4.1.1
normalize-package-data@2.5.0
normalize-package-data@5.0.0
npm-install-checks@6.3.0
webidl-conversions@3.0.1
yeoman-environment@2.10.3
yeoman-generator@2.0.5
yeoman-generator@4.13.0
yeoman-generator@5.10.0

BSD 3-Clause "New" or "Revised" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
use-trademark
hold-liable
Must
include-copyright
include-license
9 Packages, Including:
diff@3.5.0
diff@4.0.2
duplexer3@0.1.5
global-agent@3.0.0
roarr@2.15.4
shelljs@0.8.5
source-map@0.5.7
sprintf-js@1.0.3
sprintf-js@1.1.3

(MIT OR CC0-1.0)

Public Domain
4 Packages, Including:
type-fest@0.13.1
type-fest@0.21.3
type-fest@0.6.0
type-fest@0.8.1

(MIT OR Apache-2.0)

Permissive
2 Packages, Including:
JSONStream@1.3.5
atob@2.1.2

BSD

Invalid
Not OSI Approved
2 Packages, Including:
gitconfiglocal@2.1.0
glob-to-regexp@0.3.0

Blue Oak Model License 1.0.0

Uncategorized
Not OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
Cannot
Must
2 Packages, Including:
jackspeak@2.3.6
path-scurry@1.11.0

Artistic License 2.0

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
Cannot
use-trademark
hold-liable
Must
rename
state-changes
include-original
include-install-instructions
1 Packages, Including:
binaryextensions@4.19.0

N/A

N/A
1 Packages, Including:
cli-table@0.3.11

(BSD-2-Clause OR MIT OR Apache-2.0)

Expression
1 Packages, Including:
rc@1.2.8

Creative Commons Attribution 3.0 Unported

Uncategorized
Not OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
Cannot
Must
1 Packages, Including:
spdx-exceptions@2.5.0

Creative Commons Zero v1.0 Universal

Public Domain
Not OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
Cannot
Must
1 Packages, Including:
spdx-license-ids@3.0.17

BSD Zero Clause License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
include-copyright
include-license
include-original
Cannot
hold-liable
Must
1 Packages, Including:
tslib@1.14.1
Disclaimer

This deed highlights only some of the key features and terms of the actual license. It is not a license and has no legal value. You should carefully review all of the terms and conditions of the actual license before using the licensed material.

Sandworm is not a law firm and does not provide legal services. Distributing, displaying, or linking to this deed or the license that it summarizes does not create a lawyer-client or any other relationship.

Direct Dependencies

11
All Dependencies CSV
β“˜ This is a list of generator-node 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.
NameVersionSizeLicenseTypeVulnerabilities
chalk3.0.010.67 kBMIT
prod
generator-jest1.8.03.44 kBMIT
prod
2
9
3
3
generator-license5.6.045.13 kBMIT
prod
4
2
4
generator-travis1.10.03.22 kBMIT
prod
2
9
3
3
git-remote-origin-url3.1.01.93 kBMIT
prod
1
1
github-username5.0.11.98 kBMIT
prod
1
inquirer-npm-name3.0.02.96 kBMIT
prod
2
1
lodash4.17.21311.49 kBMIT
prod optional
parse-author2.0.03.03 kBMIT
prod
validate-npm-package-name3.0.05.25 kBISC
prod
yeoman-generator4.13.025.01 kBBSD-2-Clause
prod optional
2
8
3
3

Visualizations