Home
Docs
GitHub
Pricing
Blog
Log In

Run Sandworm Audit for your App

Get started
Hold on, we're currently generating a fresh version of this report
Generated on Apr 20, 2024 via pnpm

jpegtran-bin 3.0.2

jpegtran (part of libjpeg-turbo) bin-wrapper that makes it seamlessly available as a local dependency
Package summary
Share
21
issues
1
critical severity
vulnerability
1
11
high severity
vulnerability
5
license
3
meta
3
3
moderate severity
vulnerability
3
6
low severity
vulnerability
3
license
3
9
licenses
264
MIT
20
ISC
3
Apache-2.0
6
other licenses
BSD
1
BSD-3-Clause
1
BSD-2-Clause
1
(BSD-2-Clause OR MIT OR Apache-2.0)
1
+ 2 more
Package created
6 Dec 2012
Version published
16 Jun 2015
Maintainers
6
Total deps
293
Direct deps
3
License
MIT

Issues

21

1 critical severity issue

critical
Recommendation: Upgrade to version 4.2.1 or later
via: bin-build@2.2.0 & others
Collapse
Expand

11 high severity issues

high
Recommendation: None
via: bin-build@2.2.0
Recommendation: Upgrade to version 3.1.3 or later
via: bin-wrapper@3.0.2
Recommendation: Upgrade to version 5.1.2 or later
via: bin-build@2.2.0 & others
Recommendation: Upgrade to version 3.0.1 or later
via: bin-wrapper@3.0.2 & others
Recommendation: None
via: bin-build@2.2.0 & others
Recommendation: Validate that the package complies with your license policy
via: bin-build@2.2.0 & others
Recommendation: Validate that the license expression complies with your license policy
via: bin-build@2.2.0 & others
Recommendation: Read and validate the license terms
via: bin-wrapper@3.0.2 & others
via: bin-build@2.2.0 & others
via: jpegtran-bin@3.0.2
via: bin-build@2.2.0 & others
Collapse
Expand

3 moderate severity issues

moderate
Recommendation: Upgrade to version 0.6.0 or later
via: bin-build@2.2.0 & others
Recommendation: Upgrade to version 11.8.5 or later
via: bin-build@2.2.0 & others
Recommendation: Upgrade to version 5.7.2 or later
via: bin-wrapper@3.0.2
Collapse
Expand

6 low severity issues

low
Recommendation: Upgrade to version 2.3.1 or later
via: bin-build@2.2.0 & others
Recommendation: Upgrade to version 2.3.1 or later
via: bin-build@2.2.0 & others
Recommendation: Upgrade to version 3.1.4 or later
via: bin-wrapper@3.0.2
Recommendation: Read and validate the license terms
via: bin-build@2.2.0 & others
Recommendation: Read and validate the license terms
via: bin-wrapper@3.0.2 & others
Recommendation: Read and validate the license terms
via: bin-wrapper@3.0.2 & others
Collapse
Expand

Licenses

MIT License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
Cannot
hold-liable
Must
include-copyright
include-license
264 Packages, Including:
@types/keyv@3.1.4
@types/node@20.12.7
@types/responselike@1.0.3
ansi-gray@0.1.1
ansi-regex@2.1.1
ansi-styles@2.2.1
ansi-wrap@0.1.0
archive-type@3.2.0
arr-diff@2.0.0
arr-flatten@1.1.0
array-differ@1.0.0
array-find-index@1.0.2
array-uniq@1.0.3
array-unique@0.2.1
async-each-series@1.1.0
balanced-match@1.0.2
beeper@1.1.1
bin-build@2.2.0
bin-check@2.0.0
bin-version-check@2.1.0
bin-version@1.0.4
bin-wrapper@3.0.2
bl@1.2.3
brace-expansion@1.1.11
braces@1.8.5
buffer-alloc-unsafe@1.1.0
buffer-alloc@1.2.0
buffer-crc32@0.2.13
buffer-fill@1.0.0
buffer-from@1.1.2
buffer-to-vinyl@1.1.0
camelcase-keys@2.1.0
camelcase@2.1.1
capture-stack-trace@1.0.2
caw@1.2.0
chalk@1.1.3
clone-stats@0.0.1
clone@0.2.0
clone@1.0.4
co@3.1.0
commander@2.20.3
concat-map@0.0.1
concat-stream@1.6.2
console-stream@0.1.1
convert-source-map@1.9.0
core-util-is@1.0.3
create-error-class@3.0.2
currently-unhandled@0.4.1
dateformat@2.2.0
decamelize@1.2.0

ISC License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
Cannot
hold-liable
Must
include-copyright
include-license
20 Packages, Including:
color-support@1.1.3
fs.realpath@1.0.0
glob-parent@2.0.0
glob-parent@3.1.0
glob@5.0.15
glob@7.2.3
graceful-fs@4.2.11
gulp-sourcemaps@1.6.0
hosted-git-info@2.8.9
inflight@1.0.6
inherits@2.0.4
ini@1.3.8
minimatch@3.1.2
once@1.4.0
remove-trailing-separator@1.1.0
rimraf@2.7.1
semver@4.3.6
semver@5.7.2
signal-exit@3.0.7
wrappy@1.0.2

Apache License 2.0

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
use-patent-claims
place-warranty
Cannot
hold-liable
use-trademark
Must
include-copyright
include-license
state-changes
include-notice
3 Packages, Including:
spdx-correct@3.2.0
tunnel-agent@0.4.3
validate-npm-package-license@3.0.4

BSD

Invalid
Not OSI Approved
1 Packages, Including:
duplexer2@0.0.2

BSD 3-Clause "New" or "Revised" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
use-trademark
hold-liable
Must
include-copyright
include-license
1 Packages, Including:
duplexer2@0.1.4

BSD 2-Clause "Simplified" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
hold-liable
Must
include-copyright
include-license
1 Packages, Including:
normalize-package-data@2.5.0

(BSD-2-Clause OR MIT OR Apache-2.0)

Expression
1 Packages, Including:
rc@1.2.8

Creative Commons Attribution 3.0 Unported

Uncategorized
Not OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
Cannot
Must
1 Packages, Including:
spdx-exceptions@2.5.0

Creative Commons Zero v1.0 Universal

Public Domain
Not OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
Cannot
Must
1 Packages, Including:
spdx-license-ids@3.0.17
Disclaimer

This deed highlights only some of the key features and terms of the actual license. It is not a license and has no legal value. You should carefully review all of the terms and conditions of the actual license before using the licensed material.

Sandworm is not a law firm and does not provide legal services. Distributing, displaying, or linking to this deed or the license that it summarizes does not create a lawyer-client or any other relationship.

Direct Dependencies

3
All Dependencies CSV
β“˜ This is a list of jpegtran-bin 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.
NameVersionSizeLicenseTypeVulnerabilities
bin-build2.2.02.49 kBMIT
prod
1
7
2
3
bin-wrapper3.0.23.13 kBMIT
prod
1
9
3
6
logalot2.1.01.62 kBMIT
prod
2
2

Visualizations