Home
Docs
GitHub
Pricing
Blog
Log In

Run Sandworm Audit for your App

Get started
Hold on, we're currently generating a fresh version of this report
Generated on Jun 9, 2024 via pnpm

gulp-express 0.3.5

gulp livereload plugin
Package summary
Share
14
issues
5
critical severity
license
5
7
high severity
vulnerability
5
license
1
meta
1
2
low severity
vulnerability
1
license
1
7
licenses
53
MIT
5
N/A
3
ISC
5
other licenses
Apache-2.0
2
WTFPL
1
(MIT OR Apache2)
1
BSD-3-Clause
1
Package created
17 Jul 2014
Version published
24 Mar 2015
Maintainers
1
Total deps
66
Direct deps
5
License
WTFPL

Issues

14

5 critical severity issues

critical
Recommendation: Check the package code and files for license information
via: tiny-lr@0.0.9
Recommendation: Check the package code and files for license information
via: event-stream@3.2.2
Recommendation: Check the package code and files for license information
via: event-stream@3.2.2
Recommendation: Check the package code and files for license information
via: tiny-lr@0.0.9
Recommendation: Check the package code and files for license information
via: tiny-lr@0.0.9
Collapse
Expand

7 high severity issues

high
Recommendation: Upgrade to version 6.0.4 or later
via: tiny-lr@0.0.9
Recommendation: Upgrade to version 1.0.0 or later
via: tiny-lr@0.0.9
Recommendation: Upgrade to version 1.0.0 or later
via: tiny-lr@0.0.9
Recommendation: Upgrade to version 2.6.9 or later
via: tiny-lr@0.0.9
Recommendation: Upgrade to version 6.2.4 or later
via: tiny-lr@0.0.9
Recommendation: Validate that the package complies with your license policy
via: event-stream@3.2.2
via: gulp-express@0.3.5
Collapse
Expand

2 low severity issues

low
Recommendation: Upgrade to version 2.6.9 or later
via: tiny-lr@0.0.9
Recommendation: Read and validate the license terms
via: gulp-express@0.3.5
Collapse
Expand

Licenses

MIT License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
Cannot
hold-liable
Must
include-copyright
include-license
53 Packages, Including:
ansi-regex@2.1.1
ansi-styles@2.2.1
body-parser@1.20.2
bytes@3.1.2
call-bind@1.0.7
chalk@1.1.3
content-type@1.0.5
debug@2.6.9
deepmerge@0.2.10
define-data-property@1.1.4
depd@2.0.0
destroy@1.2.0
duplexer@0.1.2
ee-first@1.1.1
es-define-property@1.0.0
es-errors@1.3.0
escape-string-regexp@1.0.5
faye-websocket@0.7.3
from@0.1.7
function-bind@1.1.2
get-intrinsic@1.2.4
gopd@1.0.1
has-ansi@2.0.0
has-property-descriptors@1.0.2
has-proto@1.0.3
has-symbols@1.0.3
hasown@2.0.2
http-errors@2.0.0
http-parser-js@0.5.8
iconv-lite@0.4.24
media-typer@0.3.0
mime-db@1.52.0
mime-types@2.1.35
ms@2.0.0
nopt@2.0.0
object-inspect@1.13.1
on-finished@2.4.1
parseurl@1.3.3
raw-body@2.5.2
safe-buffer@5.2.1
safer-buffer@2.1.2
set-function-length@1.2.2
side-channel@1.0.6
split@0.3.3
statuses@2.0.1
stream-combiner@0.0.4
strip-ansi@3.0.1
supports-color@2.0.0
through@2.3.8
tiny-lr@0.0.9

N/A

N/A
5 Packages, Including:
debug@0.8.1
event-stream@3.2.2
map-stream@0.1.0
noptify@0.0.3
qs@0.6.6

ISC License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
Cannot
hold-liable
Must
include-copyright
include-license
3 Packages, Including:
abbrev@1.1.1
inherits@2.0.4
setprototypeof@1.2.0

Apache License 2.0

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
use-patent-claims
place-warranty
Cannot
hold-liable
use-trademark
Must
include-copyright
include-license
state-changes
include-notice
2 Packages, Including:
websocket-driver@0.7.4
websocket-extensions@0.1.4

Do What The F*ck You Want To Public License

Permissive
Not OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
sublicense
distribute
modify
Cannot
Must
rename
1 Packages, Including:
gulp-express@0.3.5

(MIT OR Apache2)

Invalid
1 Packages, Including:
pause-stream@0.0.11

BSD 3-Clause "New" or "Revised" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
use-trademark
hold-liable
Must
include-copyright
include-license
1 Packages, Including:
qs@6.11.0
Disclaimer

This deed highlights only some of the key features and terms of the actual license. It is not a license and has no legal value. You should carefully review all of the terms and conditions of the actual license before using the licensed material.

Sandworm is not a law firm and does not provide legal services. Distributing, displaying, or linking to this deed or the license that it summarizes does not create a lawyer-client or any other relationship.

Direct Dependencies

5
All Dependencies CSV
β“˜ This is a list of gulp-express 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.
NameVersionSizeLicenseTypeVulnerabilities
chalk1.1.35.11 kBMIT
prod
debug2.6.916.13 kBMIT
prod
deepmerge0.2.103.03 kBMIT
prod
event-stream3.2.213.01 kBUNKNOWN
prod
2
1
tiny-lr0.0.920.6 kBMIT
prod
3
5
1

Visualizations