Home
Docs
GitHub
Pricing
Blog
Log In

Run Sandworm Audit for your App

Get started
Hold on, we're currently generating a fresh version of this report
Generated on Jun 9, 2024 via pnpm

gulp-server-livereload 1.9.2

Gulp plugin to run a local webserver with livereload enabled via socket.io. Also comes with standalone command-line interface.
Package summary
Share
63
issues
23
critical severity
vulnerability
4
license
19
23
high severity
vulnerability
13
license
4
meta
6
12
moderate severity
vulnerability
8
meta
4
5
low severity
vulnerability
2
license
3
5
licenses
142
MIT
19
N/A
11
ISC
4
other licenses
BSD
3
(MIT OR GPL)
1
Package created
16 Aug 2014
Version published
4 Nov 2016
Maintainers
1
Total deps
176
Direct deps
16
License
MIT

Issues

63

23 critical severity issues

critical
Recommendation: Upgrade to version 6.0.0 or later
via: open@0.0.5
Recommendation: Upgrade to version 1.1.7 or later
via: node.extend@1.0.10
Recommendation: Upgrade to version 3.3.3 or later
via: socket.io@1.7.4
Recommendation: Upgrade to version 4.17.12 or later
via: vinyl-fs@1.0.0
Recommendation: Check the package code and files for license information
via: socket.io@1.7.4
Recommendation: Check the package code and files for license information
via: serve-index@1.1.6
Recommendation: Check the package code and files for license information
via: socket.io@1.7.4
Recommendation: Check the package code and files for license information
via: socket.io@1.7.4
Recommendation: Check the package code and files for license information
via: socket.io@1.7.4
Recommendation: Check the package code and files for license information
via: socket.io@1.7.4
Recommendation: Check the package code and files for license information
via: socket.io@1.7.4
Recommendation: Check the package code and files for license information
via: socket.io@1.7.4
Recommendation: Check the package code and files for license information
via: connect-inject@0.3.2
Recommendation: Check the package code and files for license information
via: connect@3.1.1 & others
Recommendation: Check the package code and files for license information
via: connect@3.1.1 & others
Recommendation: Check the package code and files for license information
via: socket.io@1.7.4
Recommendation: Check the package code and files for license information
via: vinyl-fs@1.0.0
Recommendation: Check the package code and files for license information
via: node.extend@1.0.10
Recommendation: Check the package code and files for license information
via: serve-static@1.5.4
Recommendation: Check the package code and files for license information
via: connect@3.1.1 & others
Recommendation: Check the package code and files for license information
via: socket.io@1.7.4
Recommendation: Check the package code and files for license information
via: socket.io@1.7.4
Recommendation: Check the package code and files for license information
via: socket.io@1.7.4
Collapse
Expand

23 high severity issues

high
Recommendation: Upgrade to version 3.6.0 or later
via: socket.io@1.7.4
Recommendation: Upgrade to version 3.3.2 or later
via: socket.io@1.7.4
Recommendation: None
via: socket.io@1.7.4
Recommendation: Upgrade to version 0.6.1 or later
via: serve-index@1.1.6
Recommendation: Upgrade to version 0.5.2 or later
via: serve-static@1.5.4
Recommendation: Upgrade to version 3.0.2 or later
via: vinyl-fs@1.0.0
Recommendation: Upgrade to version 1.4.1 or later
via: serve-static@1.5.4
Recommendation: Upgrade to version 2.6.9 or later
via: connect@3.1.1 & others
Recommendation: Upgrade to version 4.17.11 or later
via: vinyl-fs@1.0.0
Recommendation: Upgrade to version 0.7.1 or later
via: connect@3.1.1 & others
Recommendation: Upgrade to version 3.0.5 or later
via: vinyl-fs@1.0.0
Recommendation: None
via: gulp-util@3.0.8
Recommendation: Upgrade to version 4.17.21 or later
via: vinyl-fs@1.0.0
Recommendation: Validate that the package complies with your license policy
via: gulp-util@3.0.8
Recommendation: Validate that the package complies with your license policy
via: vinyl-fs@1.0.0
Recommendation: Validate that the package complies with your license policy
via: vinyl-fs@1.0.0
Recommendation: Validate that the package complies with your license policy
via: node.extend@1.0.10
via: vinyl-fs@1.0.0
via: gulp-util@3.0.8
via: socket.io@1.7.4
via: vinyl-fs@1.0.0
via: vinyl-fs@1.0.0
via: vinyl-fs@1.0.0
Collapse
Expand

12 moderate severity issues

moderate
Recommendation: Upgrade to version 4.17.11 or later
via: vinyl-fs@1.0.0
Recommendation: Upgrade to version 3.6.1 or later
via: socket.io@1.7.4
Recommendation: Upgrade to version 2.4.0 or later
via: socket.io@1.7.4
Recommendation: Upgrade to version 2.0.0 or later
via: connect@3.1.1 & others
Recommendation: Upgrade to version 4.17.21 or later
via: vinyl-fs@1.0.0
Recommendation: Upgrade to version 1.6.3 or later
via: serve-index@1.1.6
Recommendation: Upgrade to version 0.11.1 or later
via: serve-static@1.5.4
Recommendation: Upgrade to version 4.17.5 or later
via: vinyl-fs@1.0.0
via: socket.io@1.7.4
via: socket.io@1.7.4
via: socket.io@1.7.4
via: socket.io@1.7.4
Collapse
Expand

5 low severity issues

low
Recommendation: Upgrade to version 1.7.2 or later
via: serve-static@1.5.4
Recommendation: Upgrade to version 2.6.9 or later
via: connect@3.1.1 & others
Recommendation: Read and validate the license terms
via: gulp-util@3.0.8
Recommendation: Read and validate the license terms
via: vinyl-fs@1.0.0
Recommendation: Read and validate the license terms
via: vinyl-fs@1.0.0
Collapse
Expand

Licenses

MIT License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
Cannot
hold-liable
Must
include-copyright
include-license
142 Packages, Including:
accepts@1.0.7
accepts@1.3.3
after@0.8.2
ansi-gray@0.1.1
ansi-regex@2.1.1
ansi-styles@2.2.1
ansi-wrap@0.1.0
array-differ@1.0.0
array-uniq@1.0.3
backo2@1.0.2
balanced-match@1.0.2
base64-arraybuffer@0.1.5
base64id@1.0.0
beeper@1.1.1
brace-expansion@1.1.11
chalk@1.1.3
clone-stats@0.0.1
clone@0.2.0
clone@1.0.4
commander@2.20.3
component-emitter@1.2.1
concat-map@0.0.1
connect@3.1.1
cookie@0.3.1
core-util-is@1.0.3
dateformat@2.2.0
debug@2.2.0
debug@2.3.3
depd@0.4.4
destroy@1.0.3
duplexify@3.7.1
ee-first@1.0.5
end-of-stream@1.4.4
engine.io-client@1.8.6
engine.io-parser@1.3.2
engine.io@1.8.5
escape-string-regexp@1.0.5
fancy-log@1.3.3
finalhandler@0.1.0
find-index@0.1.1
first-chunk-stream@1.0.0
fresh@0.2.2
gaze@0.5.2
glob-stream@4.1.1
glob-watcher@0.0.8
glob2base@0.0.12
globule@0.1.0
glogg@1.0.2
gulp-server-livereload@1.9.2
gulp-util@3.0.8

N/A

N/A
19 Packages, Including:
arraybuffer.slice@0.0.6
batch@0.5.1
better-assert@1.0.2
blob@0.0.4
callsite@1.0.0
component-bind@1.0.0
component-emitter@1.1.2
component-inherit@0.0.3
connect-inject@0.3.2
debug@1.0.4
escape-html@1.0.1
indexof@0.0.1
inherits@1.0.2
is@0.3.0
mime@1.2.11
ms@0.6.2
ms@0.7.1
object-component@0.0.3
options@0.0.6

ISC License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
Cannot
hold-liable
Must
include-copyright
include-license
11 Packages, Including:
color-support@1.1.3
glob@4.5.3
graceful-fs@3.0.12
inflight@1.0.6
inherits@2.0.4
lru-cache@2.7.3
minimatch@2.0.10
natives@1.1.6
once@1.4.0
sigmund@1.0.1
wrappy@1.0.2

BSD

Invalid
Not OSI Approved
3 Packages, Including:
duplexer2@0.0.2
glob@3.1.21
graceful-fs@1.2.3

(MIT OR GPL)

Invalid
1 Packages, Including:
node.extend@1.0.10
Disclaimer

This deed highlights only some of the key features and terms of the actual license. It is not a license and has no legal value. You should carefully review all of the terms and conditions of the actual license before using the licensed material.

Sandworm is not a law firm and does not provide legal services. Distributing, displaying, or linking to this deed or the license that it summarizes does not create a lawyer-client or any other relationship.

Direct Dependencies

16
All Dependencies CSV
β“˜ This is a list of gulp-server-livereload 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.
NameVersionSizeLicenseTypeVulnerabilities
commander2.20.318.26 kBMIT
prod
connect-inject0.3.23.29 kBUNKNOWN
prod
1
connect3.1.119.62 kBMIT
prod
3
2
1
1
glogg1.0.22.76 kBMIT
prod
gulp-util3.0.85.36 kBMIT
prod
3
1
gulplog1.0.02.1 kBMIT
prod
lodash4.17.21311.49 kBMIT
prod
node-watch0.3.53.74 kBMIT
prod
node.extend1.0.102.55 kB(MIT OR GPL)
prod
2
1
open0.0.57.31 kBMIT
prod
1
proxy-middleware0.15.03.38 kBMIT
prod
serve-index1.1.658.79 kBMIT
prod
1
1
1
serve-static1.5.44.58 kBMIT
prod
4
4
2
2
socket.io1.7.419.67 kBMIT
prod
12
5
7
1
through20.5.14.11 kBMIT
prod
vinyl-fs1.0.05.69 kBMIT
prod
2
10
3
2

Visualizations