Home
Docs
GitHub
Pricing
Blog
Log In

Run Sandworm Audit for your App

Get started
Generated on Feb 19, 2024 via pnpm
Package summary
Share
41
issues
3
critical severity
vulnerability
3
26
high severity
vulnerability
11
license
2
meta
13
9
moderate severity
vulnerability
9
3
low severity
vulnerability
1
license
2
10
licenses
159
MIT
15
ISC
11
BSD-3-Clause
17
other licenses
Apache-2.0
7
BSD-2-Clause
5
(AFL-2.1 OR BSD-3-Clause)
1
Public Domain
1
+ 3 more
Package created
26 Jul 2016
Version published
9 Dec 2017
Maintainers
3
Total deps
202
Direct deps
11
License
MIT

Issues

41

3 critical severity issues

critical
Recommendation: Upgrade to version 2.2.0 or later
via: mailgun-js@0.13.1
Recommendation: Upgrade to version 1.1.0 or later
via: mailgun-js@0.13.1
Recommendation: Upgrade to version 4.17.12 or later
via: machinepack-http@5.0.0
Collapse
Expand

26 high severity issues

high
Recommendation: Upgrade to version 5.0.0 or later
via: mailgun-js@0.13.1
Recommendation: Upgrade to version 3.0.1 or later
via: mailgun-js@0.13.1
Recommendation: Upgrade to version 2.1.0 or later
via: mailgun-js@0.13.1
Recommendation: Upgrade to version 4.2.1 or later
via: machinepack-http@5.0.0
Recommendation: Upgrade to version 4.17.11 or later
via: machinepack-http@5.0.0
Recommendation: Upgrade to version 9.0.1 or later
via: machinepack-http@5.0.0
Recommendation: Upgrade to version 4.17.19 or later
via: machinepack-http@5.0.0
Recommendation: None
via: machinepack-http@5.0.0
Recommendation: None
via: mailgun-js@0.13.1
Recommendation: Upgrade to version 2.6.4 or later
via: async@2.0.1 & others
Recommendation: Upgrade to version 4.17.21 or later
via: machinepack-http@5.0.0
Recommendation: Validate that the package complies with your license policy
via: machinepack-http@5.0.0
Recommendation: Validate that the package complies with your license policy
via: machinepack-http@5.0.0
via: machinepack-http@5.0.0
via: mailcomposer@2.1.0
via: machinepack-http@5.0.0
via: machinepack-http@5.0.0
via: machinepack-http@5.0.0
via: machinepack-http@5.0.0
via: mailcomposer@2.1.0
via: mailgun-js@0.13.1
via: machinepack-http@5.0.0
via: machinepack-http@5.0.0
via: mailgun-js@0.13.1
via: machinepack-strings@6.1.1
via: machinepack-http@5.0.0
Collapse
Expand

9 moderate severity issues

moderate
Recommendation: Upgrade to version 4.17.11 or later
via: machinepack-http@5.0.0
Recommendation: Upgrade to version 6.12.3 or later
via: machinepack-http@5.0.0
Recommendation: Upgrade to version 2.1.0 or later
via: mailgun-js@0.13.1
Recommendation: None
via: machinepack-http@5.0.0
Recommendation: Upgrade to version 2.0.1 or later
via: mailgun-js@0.13.1
Recommendation: Upgrade to version 2.2.3 or later
via: mailgun-js@0.13.1
Recommendation: Upgrade to version 4.17.21 or later
via: machinepack-http@5.0.0
Recommendation: Upgrade to version 4.1.3 or later
via: machinepack-http@5.0.0
Recommendation: Upgrade to version 5.7.2 or later
via: mailgun-js@0.13.1
Collapse
Expand

3 low severity issues

low
Recommendation: Upgrade to version 4.17.5 or later
via: machinepack-http@5.0.0
Recommendation: Read and validate the license terms
via: machinepack-http@5.0.0
Recommendation: Read and validate the license terms
via: machinepack-http@5.0.0
Collapse
Expand

Licenses

MIT License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
Cannot
hold-liable
Must
include-copyright
include-license
159 Packages, Including:
@sailshq/lodash@3.10.4
acorn@7.4.1
addressparser@0.3.2
agent-base@2.1.1
agent-base@4.3.0
ajv@4.11.8
anchor@1.4.1
asn1@0.2.6
assert-plus@0.2.0
assert-plus@1.0.0
ast-types@0.14.2
async@2.0.1
async@2.5.0
asynckit@0.4.0
aws4@1.12.0
balanced-match@1.0.2
bcryptjs@2.3.0
bluebird@3.2.1
bluebird@3.7.2
brace-expansion@1.1.11
browserify-transform-machinepack@1.0.4
browserify-transform-tools@1.7.0
buildmail@2.0.0
bytes@3.1.2
call-bind@1.0.7
co@4.6.0
combined-stream@1.0.8
concat-map@0.0.1
convert-to-ecmascript-compatible-varname@0.1.4
core-util-is@1.0.2
core-util-is@1.0.3
dashdash@1.14.1
data-uri-to-buffer@1.2.0
debug@2.6.9
debug@3.1.0
debug@3.2.7
deep-is@0.1.4
define-data-property@1.1.4
degenerator@1.0.4
delayed-stream@1.0.0
depd@2.0.0
ecc-jsbn@0.1.2
es-define-property@1.0.0
es-errors@1.3.0
es6-promise@4.2.8
es6-promisify@5.0.0
extend@3.0.2
extsprintf@1.3.0
falafel@2.2.5
fast-levenshtein@2.0.6

ISC License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
Cannot
hold-liable
Must
include-copyright
include-license
15 Packages, Including:
fs.realpath@1.0.0
glob@7.2.3
graceful-fs@4.2.11
har-schema@1.0.5
har-validator@4.2.1
inflight@1.0.6
inherits@2.0.4
json-stringify-safe@5.0.1
lru-cache@2.6.5
minimatch@3.1.2
once@1.4.0
rimraf@2.7.1
semver@5.0.3
setprototypeof@1.2.0
wrappy@1.0.2

BSD 3-Clause "New" or "Revised" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
use-trademark
hold-liable
Must
include-copyright
include-license
11 Packages, Including:
bcrypt-pbkdf@1.0.2
boom@2.10.1
cryptiles@2.0.5
hawk@3.1.3
hoek@2.16.3
makeerror@1.0.12
qs@6.4.1
qs@6.5.3
source-map@0.6.1
tmpl@1.0.5
tough-cookie@2.3.4

Apache License 2.0

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
use-patent-claims
place-warranty
Cannot
hold-liable
use-trademark
Must
include-copyright
include-license
state-changes
include-notice
7 Packages, Including:
aws-sign2@0.6.0
caseless@0.12.0
forever-agent@0.6.1
oauth-sign@0.8.2
request@2.81.0
tunnel-agent@0.6.0
walker@1.0.7

BSD 2-Clause "Simplified" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
hold-liable
Must
include-copyright
include-license
5 Packages, Including:
escodegen@1.14.3
esprima@3.1.3
esprima@4.0.1
estraverse@4.3.0
esutils@2.0.3

(AFL-2.1 OR BSD-3-Clause)

Permissive
1 Packages, Including:
json-schema@0.4.0

Public Domain

Invalid
Not OSI Approved
1 Packages, Including:
jsonify@0.0.1

BSD

Invalid
Not OSI Approved
1 Packages, Including:
sntp@1.0.9

BSD Zero Clause License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
include-copyright
include-license
include-original
Cannot
hold-liable
Must
1 Packages, Including:
tslib@2.6.2

The Unlicense

Public Domain
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
private-use
modify
Cannot
include-copyright
hold-liable
Must
1 Packages, Including:
tweetnacl@0.14.5
Disclaimer

This deed highlights only some of the key features and terms of the actual license. It is not a license and has no legal value. You should carefully review all of the terms and conditions of the actual license before using the licensed material.

Sandworm is not a law firm and does not provide legal services. Distributing, displaying, or linking to this deed or the license that it summarizes does not create a lawyer-client or any other relationship.

Direct Dependencies

11
All Dependencies CSV
β“˜ This is a list of sails-stdlib 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.
NameVersionSizeLicenseTypeVulnerabilities
@sailshq/lodash3.10.477.79 kBMIT
prod
async2.0.189.04 kBMIT
prod
1
bcryptjs2.3.074.33 kBMIT
prod
machine15.2.31 BMIT
prod
machinepack-fs12.0.12.15 MBMIT
prod
machinepack-http5.0.0133.95 kBMIT
prod
1
16
5
3
machinepack-process4.0.115.71 kBMIT
prod
machinepack-strings6.1.122.1 kBMIT
prod
1
mailcomposer2.1.07.4 kBMIT
prod
2
mailgun-js0.13.113.13 kBMIT
prod
2
7
4
stripe5.4.043.31 kBMIT
prod

Visualizations