Generated on Mar 20, 2024 via pnpm

Npm

Home

node-ninja 1.0.2

Node.js native addon build tool

native

addon

module

c++

bindings

gyp

Package summary

issues

licenses

Package created

15 Feb 2016

Version published

21 Jul 2016

Maintainers

Total deps

103

Direct deps

License

MPL-2.0

Issues

7 high severity issues

high

tar@2.2.2

Arbitrary File Creation/Overwrite due to insufficient absolute path sanitization

Recommendation: Upgrade to version 3.2.2 or later

via: tar@2.2.2

tar@2.2.2

Arbitrary File Creation/Overwrite on Windows via insufficient relative path sanitization

Recommendation: Upgrade to version 4.4.18 or later

via: tar@2.2.2

es5-ext@0.10.64

Package uses postinstall script: " node -e "try{require('./_postinstall')}catch(e){}" || exit 0"

via: path-array@1.0.1

har-validator@5.1.5

Deprecated package

via: request@2.88.2

request@2.88.2

Deprecated package

via: request@2.88.2

tar@2.2.2

Deprecated package

via: tar@2.2.2

uuid@3.4.0

Deprecated package

via: request@2.88.2

Collapse

Expand

3 moderate severity issues

moderate

request@2.88.2

Server-Side Request Forgery in Request

Recommendation: None

via: request@2.88.2

tough-cookie@2.5.0

tough-cookie Prototype Pollution vulnerability

Recommendation: Upgrade to version 4.1.3 or later

via: request@2.88.2

node-ninja@1.0.2

Package uses a problematic Weakly Protective license ("MPL-2.0")

Recommendation: Validate that the package complies with your license policy

via: node-ninja@1.0.2

Collapse

Expand

Licenses

MIT License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

Cannot

hold-liable

Must

include-copyright

include-license

59 Packages, Including:

ajv@6.12.6

ansi@0.3.1

array-index@1.0.0

asn1@0.2.6

assert-plus@1.0.0

asynckit@0.4.0

aws4@1.12.0

balanced-match@1.0.2

brace-expansion@1.1.11

combined-stream@1.0.8

concat-map@0.0.1

core-util-is@1.0.2

core-util-is@1.0.3

dashdash@1.14.1

debug@2.6.9

delayed-stream@1.0.0

delegates@1.0.0

ecc-jsbn@0.1.2

es6-iterator@2.0.3

event-emitter@0.3.5

extend@3.0.2

extsprintf@1.3.0

fast-deep-equal@3.1.3

fast-json-stable-stringify@2.1.0

form-data@2.3.3

getpass@0.1.7

har-validator@5.1.5

http-signature@1.2.0

is-typedarray@1.0.0

isarray@1.0.0

isstream@0.1.2

jsbn@0.1.1

json-schema-traverse@0.4.1

jsprim@1.4.2

lodash.pad@4.5.1

lodash.padend@4.6.1

lodash.padstart@4.6.1

mime-db@1.52.0

mime-types@2.1.35

minimist@1.2.8

mkdirp@0.5.6

ms@2.0.0

os-homedir@1.0.2

os-tmpdir@1.0.2

path-array@1.0.1

path-is-absolute@1.0.1

performance-now@2.1.0

process-nextick-args@2.0.1

psl@1.9.0

punycode@2.3.1

ISC License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

Cannot

hold-liable

Must

include-copyright

include-license

31 Packages, Including:

abbrev@1.1.1

are-we-there-yet@1.1.7

block-stream@0.0.9

d@1.0.2

es5-ext@0.10.64

es6-symbol@3.1.4

esniff@2.0.1

ext@1.7.0

fs.realpath@1.0.0

fstream@1.0.12

gauge@1.2.7

glob@7.2.3

graceful-fs@4.2.11

har-schema@2.0.0

has-unicode@2.0.1

inflight@1.0.6

inherits@2.0.4

isexe@2.0.0

json-stringify-safe@5.0.1

minimatch@3.1.2

next-tick@1.1.0

nopt@3.0.6

npmlog@2.0.4

once@1.4.0

osenv@0.1.5

rimraf@2.7.1

semver@5.7.2

tar@2.2.2

type@2.7.2

which@1.3.1

wrappy@1.0.2

Apache License 2.0

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

use-patent-claims

place-warranty

Cannot

hold-liable

use-trademark

Must

include-copyright

include-license

state-changes

include-notice

6 Packages, Including:

aws-sign2@0.7.0

caseless@0.12.0

forever-agent@0.6.1

oauth-sign@0.9.0

request@2.88.2

tunnel-agent@0.6.0

BSD 3-Clause "New" or "Revised" License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

place-warranty

Cannot

use-trademark

hold-liable

Must

include-copyright

include-license

3 Packages, Including:

bcrypt-pbkdf@1.0.2

qs@6.5.3

tough-cookie@2.5.0

(AFL-2.1 OR BSD-3-Clause)

Permissive

1 Packages, Including:

json-schema@0.4.0

Mozilla Public License 2.0

Weakly Protective

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

place-warranty

use-patent-claims

Cannot

use-trademark

hold-liable

Must

include-copyright

include-license

disclose-source

include-original

1 Packages, Including:

node-ninja@1.0.2

The Unlicense

Public Domain

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

private-use

modify

Cannot

include-copyright

hold-liable

Must

1 Packages, Including:

tweetnacl@0.14.5

BSD 2-Clause "Simplified" License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

place-warranty

Cannot

hold-liable

Must

include-copyright

include-license

1 Packages, Including:

uri-js@4.4.1

Direct Dependencies

All Dependencies CSV

ⓘ This is a list of node-ninja 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.

Name	Version	Size	License	Type	Vulnerabilities
fstream	1.0.12	16.61 kB	ISC	prod
glob	7.2.3	15.08 kB	ISC	prod
graceful-fs	4.2.11	9.57 kB	ISC	prod
minimatch	3.1.2	11.66 kB	ISC	prod
mkdirp	0.5.6	2.95 kB	MIT	prod
nopt	3.0.6	10.07 kB	ISC	prod
npmlog	2.0.4	4.82 kB	ISC	prod
osenv	0.1.5	2.25 kB	ISC	prod
path-array	1.0.1	3.9 kB	MIT	prod	1
request	2.88.2	57.83 kB	Apache-2.0	prod	3 2
rimraf	2.7.1	5.53 kB	ISC	prod
semver	5.7.2	17.45 kB	ISC	prod
tar	2.2.2	211.58 kB	ISC	prod	3
which	1.3.1	4.08 kB	ISC	prod