Home
Docs
GitHub
Pricing
Blog
Log In

Run Sandworm Audit for your App

Get started
Hold on, we're currently generating a fresh version of this report
Generated on Jun 8, 2024 via pnpm

string-replace-webpack-plugin 0.1.3

Replace string tokens in the contents of a file.
Package summary
Share
6
issues
1
critical severity
vulnerability
1
3
high severity
vulnerability
1
license
2
2
low severity
license
2
8
licenses
73
MIT
7
BSD-2-Clause
3
BSD-3-Clause
8
other licenses
ISC
3
Apache-2.0
2
BSD-3-Clause OR MIT
1
CC-BY-4.0
1
+ 1 more
Package created
24 Mar 2015
Version published
7 Mar 2017
Maintainers
1
Total deps
91
Direct deps
6
License
MIT

Issues

6

1 critical severity issue

critical
Recommendation: Upgrade to version 1.4.1 or later
via: loader-utils@0.2.17 & others
Collapse
Expand

3 high severity issues

high
Recommendation: Upgrade to version 1.0.2 or later
via: loader-utils@0.2.17 & others
Recommendation: Read and validate the license terms
via: webpack@5.91.0
Recommendation: Validate that the package complies with your license policy
via: css-loader@0.9.1
Collapse
Expand

2 low severity issues

low
Recommendation: Read and validate the license terms
via: webpack@5.91.0
Recommendation: Read and validate the license terms
via: css-loader@0.9.1
Collapse
Expand

Licenses

MIT License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
Cannot
hold-liable
Must
include-copyright
include-license
73 Packages, Including:
@jridgewell/gen-mapping@0.3.5
@jridgewell/resolve-uri@3.1.2
@jridgewell/set-array@1.2.1
@jridgewell/source-map@0.3.6
@jridgewell/sourcemap-codec@1.4.15
@jridgewell/trace-mapping@0.3.25
@types/eslint-scope@3.7.7
@types/eslint@8.56.10
@types/estree@1.0.5
@types/json-schema@7.0.15
@types/node@20.14.2
@webassemblyjs/ast@1.12.1
@webassemblyjs/floating-point-hex-parser@1.11.6
@webassemblyjs/helper-api-error@1.11.6
@webassemblyjs/helper-buffer@1.12.1
@webassemblyjs/helper-numbers@1.11.6
@webassemblyjs/helper-wasm-bytecode@1.11.6
@webassemblyjs/helper-wasm-section@1.12.1
@webassemblyjs/ieee754@1.11.6
@webassemblyjs/utf8@1.11.6
@webassemblyjs/wasm-edit@1.12.1
@webassemblyjs/wasm-gen@1.12.1
@webassemblyjs/wasm-opt@1.12.1
@webassemblyjs/wasm-parser@1.12.1
@webassemblyjs/wast-printer@1.12.1
acorn-import-assertions@1.9.0
acorn@8.11.3
ajv-keywords@3.5.2
ajv@6.12.6
async@0.2.10
big.js@3.2.0
browserslist@4.23.0
buffer-from@1.1.2
chrome-trace-event@1.0.4
commander@2.20.3
css-loader@0.9.1
csso@1.3.12
emojis-list@2.1.0
enhanced-resolve@5.17.0
es-module-lexer@1.5.3
escalade@3.1.2
events@3.3.0
fast-deep-equal@3.1.3
fast-json-stable-stringify@2.1.0
file-loader@0.8.5
has-flag@4.0.0
jest-worker@27.5.1
json-parse-even-better-errors@2.3.1
json-schema-traverse@0.4.1
json5@0.5.1

BSD 2-Clause "Simplified" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
hold-liable
Must
include-copyright
include-license
7 Packages, Including:
eslint-scope@5.1.1
esrecurse@4.3.0
estraverse@4.3.0
estraverse@5.3.0
glob-to-regexp@0.4.1
terser@5.31.1
uri-js@4.4.1

BSD 3-Clause "New" or "Revised" License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
place-warranty
Cannot
use-trademark
hold-liable
Must
include-copyright
include-license
3 Packages, Including:
@xtuc/ieee754@1.2.0
serialize-javascript@6.0.2
source-map@0.6.1

ISC License

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
Cannot
hold-liable
Must
include-copyright
include-license
3 Packages, Including:
electron-to-chromium@1.4.796
graceful-fs@4.2.11
picocolors@1.0.1

Apache License 2.0

Permissive
OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
commercial-use
modify
distribute
sublicense
private-use
use-patent-claims
place-warranty
Cannot
hold-liable
use-trademark
Must
include-copyright
include-license
state-changes
include-notice
2 Packages, Including:
@webassemblyjs/leb128@1.11.6
@xtuc/long@4.2.2

BSD-3-Clause OR MIT

Permissive
1 Packages, Including:
amdefine@1.0.1

Creative Commons Attribution 4.0 International

Uncategorized
Not OSI Approved
This is a human-readable summary of (and not a substitute for) the license. Disclaimer.
Can
Cannot
Must
1 Packages, Including:
caniuse-lite@1.0.30001629

BSD

Invalid
Not OSI Approved
1 Packages, Including:
source-map@0.1.43
Disclaimer

This deed highlights only some of the key features and terms of the actual license. It is not a license and has no legal value. You should carefully review all of the terms and conditions of the actual license before using the licensed material.

Sandworm is not a law firm and does not provide legal services. Distributing, displaying, or linking to this deed or the license that it summarizes does not create a lawyer-client or any other relationship.

Direct Dependencies

6
All Dependencies CSV
β“˜ This is a list of string-replace-webpack-plugin 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.
NameVersionSizeLicenseTypeVulnerabilities
async0.2.1015.4 kBMIT
prod
css-loader0.9.13.47 kBMIT
prod optional
1
2
1
file-loader0.8.51.7 kBMIT
prod optional
1
1
loader-utils0.2.177.04 kBMIT
prod optional
1
1
style-loader0.8.33.73 kBMIT
prod optional
1
1
webpack5.91.04.71 MBMIT
prod peer
1
1

Visualizations