Home
Docs
GitHub
This report was generated on Mar 16 2023; hold on while we build a fresh version
Package Created
29 Apr 2015
Maintainers
2
Version Published
7 Mar 2023
Dependencies
4
Total Versions
18
License
Apache-2.0

Issues

3

high one high severity issue

Package uses an atypical license ("CC-BY-3.0")
Recommendation: Read and validate the license terms
spdx-exceptions@2.3.0 via: spdx-expression-parse@3.0.1

low 2 low severity issues

  • spdx-exceptions@2.3.0
    Package uses a license that is not OSI approved ("CC-BY-3.0") Recommendation: Read and validate the license terms
    via: spdx-expression-parse@3.0.1
  • spdx-license-ids@3.0.13
    Package uses a license that is not OSI approved ("CC0-1.0") Recommendation: Read and validate the license terms
    via: spdx-expression-parse@3.0.1 & others

Licenses

Apache License 2.0

Permissive OSI Approved

Can: commercial-use modify distribute sublicense private-use use-patent-claims place-warranty
Cannot: hold-liable use-trademark
Must: include-copyright include-license state-changes include-notice

spdx-correct@3.2.0

Creative Commons Attribution 3.0 Unported

Uncategorized Not OSI Approved

Can:
Cannot:
Must:

spdx-exceptions@2.3.0

MIT License

Permissive OSI Approved

Can: commercial-use modify distribute sublicense private-use
Cannot: hold-liable
Must: include-copyright include-license

spdx-expression-parse@3.0.1

Creative Commons Zero v1.0 Universal

Public Domain Not OSI Approved

Can:
Cannot:
Must:

spdx-license-ids@3.0.13

Dependencies

4
Name Version Size License Type Vulnerabilities
spdx-correct 3.2.0 7.07 kB Apache-2.0 prod
spdx-exceptions 2.3.0 1.34 kB CC-BY-3.0 prod 11
spdx-expression-parse 3.0.1 4.32 kB MIT prod 12
spdx-license-ids 3.0.13 3.75 kB CC0-1.0 prod 1