Home
Docs
GitHub
Pricing
Blog
Log In

Run Sandworm Audit for your App

Get started
Hold on, we're currently generating a fresh version of this report
Generated on Jun 9, 2024 via pnpm

koa-webpack-dev-middleware 2.0.2

webpack dev middleware for koa
Package summary
Share
20
issues
15
high severity
vulnerability
3
license
2
meta
10
2
moderate severity
vulnerability
2
3
low severity
license
3
11
licenses
290
MIT
36
ISC
7
BSD-2-Clause
12
other licenses
BSD-3-Clause
4
Apache-2.0
2
(MIT OR Apache-2.0)
1
(MIT AND Zlib)
1
+ 4 more
Package created
30 Mar 2015
Version published
29 Sep 2017
Maintainers
1
Total deps
345
Direct deps
1
License
UNKNOWN

Issues

20

15 high severity issues

high
Recommendation: Upgrade to version 5.1.2 or later
via: webpack-dev-middleware@1.12.2
Recommendation: Upgrade to version 1.0.2 or later
via: webpack-dev-middleware@1.12.2
Recommendation: Upgrade to version 5.3.4 or later
via: webpack-dev-middleware@1.12.2
Recommendation: Read and validate the license terms
via: webpack-dev-middleware@1.12.2
Recommendation: Validate that the package complies with your license policy
via: webpack-dev-middleware@1.12.2
via: webpack-dev-middleware@1.12.2
via: webpack-dev-middleware@1.12.2
via: webpack-dev-middleware@1.12.2
via: webpack-dev-middleware@1.12.2
via: webpack-dev-middleware@1.12.2
via: webpack-dev-middleware@1.12.2
via: webpack-dev-middleware@1.12.2
via: webpack-dev-middleware@1.12.2
via: webpack-dev-middleware@1.12.2
via: webpack-dev-middleware@1.12.2
Collapse
Expand

2 moderate severity issues

moderate
Recommendation: Upgrade to version 4.0.0 or later
via: webpack-dev-middleware@1.12.2
Recommendation: Upgrade to version 13.1.2 or later
via: webpack-dev-middleware@1.12.2
Collapse
Expand

3 low severity issues

low
Recommendation: Read and validate the license terms
via: webpack-dev-middleware@1.12.2
Recommendation: Read and validate the license terms
via: webpack-dev-middleware@1.12.2
Recommendation: Read and validate the license terms
via: webpack-dev-middleware@1.12.2
Collapse
Expand

Licenses

MIT License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
Cannot
hold-liable
Must
include-copyright
include-license
290 Packages, Including:
acorn-dynamic-import@2.0.2
acorn@4.0.13
acorn@5.7.4
ajv-keywords@3.5.2
ajv@6.12.6
align-text@0.1.4
ansi-regex@2.1.1
ansi-regex@3.0.1
arr-diff@4.0.0
arr-flatten@1.1.0
arr-union@3.1.0
array-unique@0.3.2
asn1.js@4.10.1
assert@1.5.1
assign-symbols@1.0.0
async-each@1.0.6
async@2.6.4
base64-js@1.5.1
base@0.11.2
big.js@5.2.2
binary-extensions@1.13.1
binary-extensions@2.3.0
bindings@1.5.0
bn.js@4.12.0
bn.js@5.2.1
braces@2.3.2
braces@3.0.3
brorand@1.1.0
browserify-aes@1.2.0
browserify-cipher@1.0.1
browserify-des@1.0.2
browserify-rsa@4.1.0
browserify-zlib@0.2.0
buffer-xor@1.0.3
buffer@4.9.2
builtin-status-codes@3.0.0
cache-base@1.0.1
call-bind@1.0.7
camelcase@1.2.1
camelcase@4.1.0
center-align@0.1.3
chokidar@2.1.8
chokidar@3.6.0
cipher-base@1.0.4
class-utils@0.3.6
code-point-at@1.1.0
collection-visit@1.0.0
component-emitter@1.3.1
console-browserify@1.2.0
constants-browserify@1.0.0

ISC License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
Cannot
hold-liable
Must
include-copyright
include-license
36 Packages, Including:
anymatch@2.0.0
anymatch@3.1.3
browserify-sign@4.2.3
cliui@2.1.0
cliui@3.2.0
d@1.0.2
es5-ext@0.10.64
es6-set@0.1.6
es6-symbol@3.1.4
es6-weak-map@2.0.3
esniff@2.0.1
ext@1.7.0
get-caller-file@1.0.3
glob-parent@3.1.0
glob-parent@5.1.2
graceful-fs@4.2.11
hosted-git-info@2.8.9
inherits@2.0.3
inherits@2.0.4
isexe@2.0.0
lru-cache@4.1.5
minimalistic-assert@1.0.1
next-tick@1.1.0
parse-asn1@5.1.7
pseudomap@1.0.2
remove-trailing-separator@1.1.0
require-main-filename@1.0.1
semver@5.7.2
set-blocking@2.0.0
signal-exit@3.0.7
type@2.7.3
which-module@2.0.1
which@1.3.1
y18n@3.2.2
yallist@2.1.2
yargs-parser@7.0.0

BSD 2-Clause "Simplified" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
hold-liable
Must
include-copyright
include-license
7 Packages, Including:
escope@3.6.0
esrecurse@4.3.0
estraverse@4.3.0
estraverse@5.3.0
normalize-package-data@2.5.0
uglify-js@2.8.29
uri-js@4.4.1

BSD 3-Clause "New" or "Revised" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
use-trademark
hold-liable
Must
include-copyright
include-license
4 Packages, Including:
ieee754@1.2.1
qs@6.12.1
source-map@0.5.7
source-map@0.6.1

Apache License 2.0

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
use-patent-claims
place-warranty
Cannot
hold-liable
use-trademark
Must
include-copyright
include-license
state-changes
include-notice
2 Packages, Including:
spdx-correct@3.2.0
validate-npm-package-license@3.0.4

(MIT OR Apache-2.0)

Permissive
1 Packages, Including:
atob@2.1.2

(MIT AND Zlib)

Permissive
1 Packages, Including:
pako@1.0.11

(MIT AND BSD-3-Clause)

Permissive
1 Packages, Including:
sha.js@2.4.11

Creative Commons Attribution 3.0 Unported

Uncategorized
Not OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
Cannot
Must
1 Packages, Including:
spdx-exceptions@2.5.0

Creative Commons Zero v1.0 Universal

Public Domain
Not OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
Cannot
Must
1 Packages, Including:
spdx-license-ids@3.0.18

MIT/X11

Invalid
Not OSI Approved
1 Packages, Including:
wordwrap@0.0.2
Disclaimer

This deed highlights only some of the key features and terms of the actual license. It is not a license and has no legal value. You should carefully review all of the terms and conditions of the actual license before using the licensed material.

Sandworm is not a law firm and does not provide legal services. Distributing, displaying, or linking to this deed or the license that it summarizes does not create a lawyer-client or any other relationship.

Direct Dependencies

1
All Dependencies CSV
β“˜ This is a list of koa-webpack-dev-middleware 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.
NameVersionSizeLicenseTypeVulnerabilities
webpack-dev-middleware1.12.27.79 kBMIT
prod
15
2
3

Visualizations