Generated on May 6, 2024 via pnpm

Npm

Home

google-finance 0.1.12

Google Finance company news and historical quotes data downloader written in Node.js

google

finance

financial

Package summary

issues

licenses

Package created

13 Nov 2013

Version published

26 Jul 2018

Maintainers

Total deps

Direct deps

License

MIT

Issues

1 critical severity issue

critical

lodash@4.17.10

Prototype Pollution in lodash

Recommendation: Upgrade to version 4.17.12 or later

via: lodash@4.17.10 & others

Collapse

Expand

10 high severity issues

high

string@3.3.3

Regular Expression Denial of Service in string package

Recommendation: None

via: string@3.3.3

lodash@4.17.10

Prototype Pollution in lodash

Recommendation: Upgrade to version 4.17.11 or later

via: lodash@4.17.10 & others

moment@2.22.2

Moment.js vulnerable to Inefficient Regular Expression Complexity

Recommendation: Upgrade to version 2.29.4 or later

via: moment@2.22.2

moment@2.22.2

Path Traversal: 'dir/../../filename' in moment.locale

Recommendation: Upgrade to version 2.29.2 or later

via: moment@2.22.2

lodash@4.17.10

Prototype Pollution in lodash

Recommendation: Upgrade to version 4.17.19 or later

via: lodash@4.17.10 & others

lodash@4.17.10

Command Injection in lodash

Recommendation: Upgrade to version 4.17.21 or later

via: lodash@4.17.10 & others

har-validator@5.0.3

Deprecated package

via: request-promise@4.2.2 & others

request-promise@4.2.2

Deprecated package

via: request-promise@4.2.2

request@2.87.0

Deprecated package

via: request-promise@4.2.2 & others

uuid@3.4.0

Deprecated package

via: request-promise@4.2.2 & others

Collapse

Expand

5 moderate severity issues

moderate

lodash@4.17.10

Regular Expression Denial of Service (ReDoS) in lodash

Recommendation: Upgrade to version 4.17.11 or later

via: lodash@4.17.10 & others

ajv@5.5.2

Prototype Pollution in Ajv

Recommendation: Upgrade to version 6.12.3 or later

via: request-promise@4.2.2 & others

lodash@4.17.10

Regular Expression Denial of Service (ReDoS) in lodash

Recommendation: Upgrade to version 4.17.21 or later

via: lodash@4.17.10 & others

tough-cookie@2.3.4

tough-cookie Prototype Pollution vulnerability

Recommendation: Upgrade to version 4.1.3 or later

via: request-promise@4.2.2 & others

request@2.87.0

Server-Side Request Forgery in Request

Recommendation: None

via: request-promise@4.2.2 & others

Collapse

Expand

Licenses

MIT License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

Cannot

hold-liable

Must

include-copyright

include-license

60 Packages, Including:

addressparser@1.0.1

ajv@5.5.2

array-indexofobject@0.0.1

asn1@0.2.6

assert-plus@1.0.0

asynckit@0.4.0

aws4@1.12.0

bluebird@3.5.1

co@4.6.0

combined-stream@1.0.8

core-util-is@1.0.2

core-util-is@1.0.3

dashdash@1.14.1

debug@3.1.0

delayed-stream@1.0.0

ecc-jsbn@0.1.2

extend@3.0.2

extsprintf@1.3.0

fast-deep-equal@1.1.0

fast-json-stable-stringify@2.1.0

feedparser@2.2.9

form-data@2.3.3

getpass@0.1.7

google-finance@0.1.12

http-signature@1.2.0

is-typedarray@1.0.0

isarray@1.0.0

isstream@0.1.2

jsbn@0.1.1

json-schema-traverse@0.3.1

jsprim@1.4.2

lodash.assign@4.2.0

lodash.get@4.4.2

lodash.has@4.5.2

lodash.uniq@4.5.0

lodash@4.17.10

mime-db@1.52.0

mime-types@2.1.35

moment@2.22.2

mri@1.2.0

ms@2.0.0

performance-now@2.1.0

process-nextick-args@2.0.1

psl@1.9.0

punycode@1.4.1

punycode@2.3.1

querystringify@2.2.0

readable-stream@2.3.8

requires-port@1.0.0

safe-buffer@5.1.2

ISC License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

Cannot

hold-liable

Must

include-copyright

include-license

8 Packages, Including:

har-schema@2.0.0

har-validator@5.0.3

inherits@2.0.4

json-stringify-safe@5.0.1

request-promise-core@1.1.1

request-promise@4.2.2

sax@1.3.0

stealthy-require@1.1.1

Apache License 2.0

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

use-patent-claims

place-warranty

Cannot

hold-liable

use-trademark

Must

include-copyright

include-license

state-changes

include-notice

6 Packages, Including:

aws-sign2@0.7.0

caseless@0.12.0

forever-agent@0.6.1

oauth-sign@0.8.2

request@2.87.0

tunnel-agent@0.6.0

BSD 3-Clause "New" or "Revised" License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

place-warranty

Cannot

use-trademark

hold-liable

Must

include-copyright

include-license

4 Packages, Including:

bcrypt-pbkdf@1.0.2

qs@6.5.3

tough-cookie@2.3.4

tough-cookie@4.1.4

(AFL-2.1 OR BSD-3-Clause)

Permissive

1 Packages, Including:

json-schema@0.4.0

The Unlicense

Public Domain

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

private-use

modify

Cannot

include-copyright

hold-liable

Must

1 Packages, Including:

tweetnacl@0.14.5

Direct Dependencies

All Dependencies CSV

ⓘ This is a list of google-finance 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.

Name	Version	Size	License	Type	Vulnerabilities
bluebird	3.5.1	132.01 kB	MIT	prod
debug	3.1.0	16.78 kB	MIT	prod
feedparser	2.2.9	20.43 kB	MIT	prod
lodash	4.17.10	298.5 kB	MIT	prod	1 3 2
moment	2.22.2	505.91 kB	MIT	prod	2
request-promise	4.2.2	11.05 kB	ISC	prod	1 7 5
request	2.87.0	56.6 kB	Apache-2.0	prod peer	3 3
string	3.3.3	-	MIT	prod	1