Hold on, we're currently generating a fresh version of this report

Generated on Feb 29, 2024 via pnpm

passport-ldapauth 0.0.6

LDAP authentication strategy for Passport

Package summary

23

issues

5

licenses

Package created

13 Apr 2013

Version published

14 Jul 2013

Maintainers

1

Total deps

27

Direct deps

2

License

MIT

Issues

23

14 critical severity issues

json-schema@0.2.2

json-schema is vulnerable to Prototype Pollution

Recommendation: Upgrade to version 0.4.0 or later

via: ldapauth@2.3.1

asn1@0.2.1

Package has no specified license

Recommendation: Check the package code and files for license information

via: ldapauth@2.3.1

assert-plus@0.1.4

Package has no specified license

Recommendation: Check the package code and files for license information

via: ldapauth@2.3.1

assert-plus@0.1.5

Package has no specified license

Recommendation: Check the package code and files for license information

via: ldapauth@2.3.1

bunyan@0.22.1

Package has no specified license

Recommendation: Check the package code and files for license information

via: ldapauth@2.3.1

dtrace-provider@0.2.8

Package has no specified license

Recommendation: Check the package code and files for license information

via: ldapauth@2.3.1

extsprintf@1.0.0

Package has no specified license

Recommendation: Check the package code and files for license information

via: ldapauth@2.3.1

jsprim@0.3.0

Package has no specified license

Recommendation: Check the package code and files for license information

via: ldapauth@2.3.1

ldapjs@0.7.1

Package has no specified license

Recommendation: Check the package code and files for license information

via: ldapauth@2.3.1

pause@0.0.1

Package has no specified license

Recommendation: Check the package code and files for license information

via: passport@0.1.18

pkginfo@0.2.3

Package has no specified license

Recommendation: Check the package code and files for license information

via: passport@0.1.18

pooling@0.4.6

Package has no specified license

Recommendation: Check the package code and files for license information

via: ldapauth@2.3.1

verror@1.1.0

Package has no specified license

Recommendation: Check the package code and files for license information

via: ldapauth@2.3.1

verror@1.3.3

Package has no specified license

Recommendation: Check the package code and files for license information

via: ldapauth@2.3.1

4 high severity issues

mv@0.0.5

Package uses an invalid SPDX license ("BSD")

Recommendation: Validate that the package complies with your license policy

via: ldapauth@2.3.1

once@1.3.0

Package uses an invalid SPDX license ("BSD")

Recommendation: Validate that the package complies with your license policy

via: ldapauth@2.3.1

json-schema@0.2.2

Package uses an invalid SPDX license ("(AFLv2.1 OR BSD)")

Recommendation: Validate that the package complies with your license policy

via: ldapauth@2.3.1

bcrypt@0.8.7

Deprecated package

via: ldapauth@2.3.1

3 moderate severity issues

bcrypt@0.8.7

Integer Overflow or Wraparound and Use of a Broken or Risky Cryptographic Algorithm in bcrypt

Recommendation: Upgrade to version 5.0.0 or later

via: ldapauth@2.3.1

passport@0.1.18

Passport vulnerable to session regeneration when a users logs in or out

Recommendation: Upgrade to version 0.6.0 or later

via: passport@0.1.18

pause@0.0.1

Package has no specified source code repository

via: passport@0.1.18

2 low severity issues

mv@0.0.5

Package uses a license that is not OSI approved ("BSD")

Recommendation: Read and validate the license terms

via: ldapauth@2.3.1

once@1.3.0

Package uses a license that is not OSI approved ("BSD")

Recommendation: Read and validate the license terms

via: ldapauth@2.3.1

Licenses

N/A

N/A

13 Packages, Including:

asn1@0.2.1

assert-plus@0.1.4

assert-plus@0.1.5

bunyan@0.22.1

dtrace-provider@0.2.8

extsprintf@1.0.0

jsprim@0.3.0

ldapjs@0.7.1

pause@0.0.1

pkginfo@0.2.3

pooling@0.4.6

verror@1.1.0

verror@1.3.3

MIT License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

Cannot

hold-liable

Must

include-copyright

include-license

10 Packages, Including:

backoff@2.3.0

bcrypt@0.8.7

bindings@1.2.1

ldapauth@2.3.1

lru-cache@2.0.4

nan@2.3.5

nopt@2.1.1

passport-ldapauth@0.0.6

passport@0.1.18

vasync@1.4.0

BSD

Invalid

Not OSI Approved

2 Packages, Including:

mv@0.0.5

once@1.3.0

ISC License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

Cannot

hold-liable

Must

include-copyright

include-license

1 Packages, Including:

abbrev@1.1.1

(AFLv2.1 OR BSD)

Invalid

1 Packages, Including:

json-schema@0.2.2

Direct Dependencies

2

All Dependencies CSV

ⓘ This is a list of passport-ldapauth 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.

Name	Version	Size	License	Type	Vulnerabilities
ldapauth	2.3.1	15.47 kB	MIT	prod	12 4 1 2
passport	0.1.18	11.34 kB	MIT	prod	2 2

Recent Versions