Hold on, we're currently generating a fresh version of this report

Generated on Jul 18, 2024 via pnpm

grunt-contrib-jade 1.0.0

Compile Jade templates

Package summary

22

issues

8

licenses

Package created

10 Sep 2012

Version published

4 Mar 2016

Maintainers

5

Total deps

55

Direct deps

2

License

MIT

Issues

22

6 critical severity issues

constantinople@3.0.2

Sandbox Bypass Leading to Arbitrary Code Execution in constantinople

Recommendation: Upgrade to version 3.1.1 or later

via: jade@1.11.0

uglify-js@2.2.5

Incorrect Handling of Non-Boolean Comparisons During Minification in uglify-js

Recommendation: Upgrade to version 2.4.24 or later

via: jade@1.11.0

css-parse@1.0.4

Package has no specified license

Recommendation: Check the package code and files for license information

via: jade@1.11.0

css-stringify@1.0.5

Package has no specified license

Recommendation: Check the package code and files for license information

via: jade@1.11.0

css@1.0.8

Package has no specified license

Recommendation: Check the package code and files for license information

via: jade@1.11.0

uglify-js@2.2.5

Package has no specified license

Recommendation: Check the package code and files for license information

via: jade@1.11.0

7 high severity issues

uglify-js@2.2.5

Regular Expression Denial of Service in uglify-js

Recommendation: Upgrade to version 2.6.0 or later

via: jade@1.11.0

optimist@0.3.7

Package uses an invalid SPDX license ("MIT/X11")

Recommendation: Validate that the package complies with your license policy

via: jade@1.11.0

wordwrap@0.0.2

Package uses an invalid SPDX license ("MIT/X11")

Recommendation: Validate that the package complies with your license policy

via: jade@1.11.0

source-map@0.1.43

Package uses an invalid SPDX license ("BSD")

Recommendation: Validate that the package complies with your license policy

via: jade@1.11.0

constantinople@3.0.2

Deprecated package

via: jade@1.11.0

jade@1.11.0

Deprecated package

via: jade@1.11.0

transformers@2.1.0

Deprecated package

via: jade@1.11.0

5 moderate severity issues

asap@1.0.0

Package has no specified source code repository

via: jade@1.11.0

css-parse@1.0.4

Package has no specified source code repository

via: jade@1.11.0

css-stringify@1.0.5

Package has no specified source code repository

via: jade@1.11.0

css@1.0.8

Package has no specified source code repository

via: jade@1.11.0

uglify-js@2.2.5

Package has no specified source code repository

via: jade@1.11.0

4 low severity issues

clean-css@3.4.28

Regular Expression Denial of Service in clean-css

Recommendation: Upgrade to version 4.1.11 or later

via: jade@1.11.0

optimist@0.3.7

Package uses a license that is not OSI approved ("MIT/X11")

Recommendation: Read and validate the license terms

via: jade@1.11.0

wordwrap@0.0.2

Package uses a license that is not OSI approved ("MIT/X11")

Recommendation: Read and validate the license terms

via: jade@1.11.0

source-map@0.1.43

Package uses a license that is not OSI approved ("BSD")

Recommendation: Read and validate the license terms

via: jade@1.11.0

Licenses

MIT License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

Cannot

hold-liable

Must

include-copyright

include-license

43 Packages, Including:

acorn-globals@1.0.9

acorn@1.2.2

acorn@2.7.0

align-text@0.1.4

ansi-regex@2.1.1

ansi-styles@2.2.1

asap@1.0.0

camelcase@1.2.1

center-align@0.1.3

chalk@1.1.3

character-parser@1.2.1

clean-css@3.4.28

commander@2.6.0

commander@2.8.1

constantinople@3.0.2

decamelize@1.2.0

escape-string-regexp@1.0.5

graceful-readlink@1.0.1

grunt-contrib-jade@1.0.0

has-ansi@2.0.0

is-buffer@1.1.6

is-promise@1.0.1

is-promise@2.2.2

jade@1.11.0

jstransformer@0.0.2

kind-of@3.2.2

lazy-cache@1.0.4

longest@1.0.1

minimist@1.2.8

mkdirp@0.5.6

promise@2.0.0

promise@6.1.0

repeat-string@1.6.1

right-align@0.1.3

strip-ansi@3.0.1

supports-color@2.0.0

transformers@2.1.0

uglify-to-browserify@1.0.2

void-elements@2.0.1

window-size@0.1.0

with@4.0.3

wordwrap@0.0.3

yargs@3.10.0

N/A

N/A

4 Packages, Including:

css-parse@1.0.4

css-stringify@1.0.5

css@1.0.8

uglify-js@2.2.5

MIT/X11

Invalid

Not OSI Approved

2 Packages, Including:

optimist@0.3.7

wordwrap@0.0.2

BSD 3-Clause "New" or "Revised" License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

place-warranty

Cannot

use-trademark

hold-liable

Must

include-copyright

include-license

2 Packages, Including:

source-map@0.4.4

source-map@0.5.7

BSD-3-Clause OR MIT

Permissive

1 Packages, Including:

amdefine@1.0.1

ISC License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

Cannot

hold-liable

Must

include-copyright

include-license

1 Packages, Including:

cliui@2.1.0

BSD

Invalid

Not OSI Approved

1 Packages, Including:

source-map@0.1.43

BSD 2-Clause "Simplified" License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

place-warranty

Cannot

hold-liable

Must

include-copyright

include-license

1 Packages, Including:

uglify-js@2.8.29

Direct Dependencies

2

All Dependencies CSV

ⓘ This is a list of grunt-contrib-jade 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.

Name	Version	Size	License	Type	Vulnerabilities
chalk	1.1.3	5.11 kB	MIT	prod
jade	1.11.0	120.09 kB	MIT	prod	6 7 5 4

All Versions