Home
Docs
GitHub
Pricing
Blog
Log In

Run Sandworm Audit for your App

Get started
Hold on, we're currently generating a fresh version of this report
Generated on May 17, 2024 via pnpm
Package summary
Share
16
issues
12
high severity
vulnerability
1
license
4
meta
7
4
low severity
license
4
6
licenses
20
MIT
5
BSD-3-Clause
4
SEE LICENSE IN LICENSE.md
8
other licenses
ISC
4
Apache-2.0
3
Unlicense
1
Package created
23 Nov 2016
Version published
6 Oct 2018
Maintainers
1
Total deps
37
Direct deps
10
License
MIT

Issues

16

12 high severity issues

high
Recommendation: None
via: heavy@4.0.4 & others
Recommendation: Validate that the package complies with your license policy
via: heavy@4.0.4
Recommendation: Validate that the package complies with your license policy
via: heavy@4.0.4 & others
Recommendation: Validate that the package complies with your license policy
via: heavy@4.0.4
Recommendation: Validate that the package complies with your license policy
via: heavy@4.0.4 & others
via: heavy@4.0.4
via: heavy@4.0.4
via: heavy@4.0.4 & others
via: heavy@4.0.4
via: heavy@4.0.4
via: joi@11.1.1
via: heavy@4.0.4 & others
Collapse
Expand

4 low severity issues

low
Recommendation: Read and validate the license terms
via: heavy@4.0.4
Recommendation: Read and validate the license terms
via: heavy@4.0.4 & others
Recommendation: Read and validate the license terms
via: heavy@4.0.4
Recommendation: Read and validate the license terms
via: heavy@4.0.4 & others
Collapse
Expand

Licenses

MIT License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
Cannot
hold-liable
Must
include-copyright
include-license
20 Packages, Including:
avvio@6.0.1
bloomrun@4.1.1
debug@4.3.4
end-of-stream@1.4.4
fast-json-parse@1.0.3
fast-redact@1.5.0
fast-safe-stringify@2.0.8
flatstr@1.0.12
ms@2.1.2
nats-hemera@6.1.0
pino-std-serializers@2.5.0
pino@5.6.4
pump@3.0.0
punycode@2.3.1
quick-format-unescaped@3.0.3
reusify@1.0.4
sonic-boom@0.6.3
sorted-array-functions@1.3.0
super-error@2.2.1
tinysonic@1.3.0

BSD 3-Clause "New" or "Revised" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
use-trademark
hold-liable
Must
include-copyright
include-license
5 Packages, Including:
heavy@4.0.4
isemail@2.2.1
isemail@3.2.0
joi@10.6.0
joi@11.1.1

SEE LICENSE IN LICENSE.md

Invalid
Not OSI Approved
4 Packages, Including:
boom@5.3.3
hoek@4.3.1
items@2.2.1
topo@2.1.1

ISC License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
Cannot
hold-liable
Must
include-copyright
include-license
4 Packages, Including:
errio@1.2.2
fastq@1.17.1
once@1.4.0
wrappy@1.0.2

Apache License 2.0

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
use-patent-claims
place-warranty
Cannot
hold-liable
use-trademark
Must
include-copyright
include-license
state-changes
include-notice
3 Packages, Including:
nats@1.4.12
nuid@1.1.6
ts-nkeys@1.0.16

The Unlicense

Public Domain
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
private-use
modify
Cannot
include-copyright
hold-liable
Must
1 Packages, Including:
tweetnacl@1.0.3
Disclaimer

This deed highlights only some of the key features and terms of the actual license. It is not a license and has no legal value. You should carefully review all of the terms and conditions of the actual license before using the licensed material.

Sandworm is not a law firm and does not provide legal services. Distributing, displaying, or linking to this deed or the license that it summarizes does not create a lawyer-client or any other relationship.

Direct Dependencies

10
All Dependencies CSV
β“˜ This is a list of nats-hemera 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.
NameVersionSizeLicenseTypeVulnerabilities
avvio6.0.116.03 kBMIT
prod
bloomrun4.1.19.13 kBMIT
prod
errio1.2.27.02 kBISC
prod
fast-safe-stringify2.0.87.19 kBMIT
prod
heavy4.0.42.47 kBBSD-3-Clause
prod
11
4
joi11.1.133.2 kBBSD-3-Clause
prod
6
2
nats1.4.1230.65 kBApache-2.0
prod peer
pino5.6.452.67 kBMIT
prod
super-error2.2.14 kBMIT
prod
tinysonic1.3.02.79 kBMIT
prod

Visualizations