Generated on May 18, 2024 via pnpm

Npm

Home

telegram-mtproto 3.2.9

Telegram MTProto library

mtproto

mobile

protocol

library

Package summary

issues

licenses

Package created

6 Jan 2017

Version published

15 Sep 2017

Maintainers

Total deps

Direct deps

License

MIT

Issues

7 high severity issues

high

axios@0.16.2

Denial of Service in axios

Recommendation: Upgrade to version 0.18.1 or later

via: axios@0.16.2

axios@0.16.2

axios Inefficient Regular Expression Complexity vulnerability

Recommendation: Upgrade to version 0.21.2 or later

via: axios@0.16.2

axios@0.16.2

Deprecated package

via: axios@0.16.2

es5-ext@0.10.64

Package uses postinstall script: " node -e "try{require('./_postinstall')}catch(e){}" || exit 0"

via: mtproto-logger@0.1.9 & others

folktale@2.3.2

Deprecated package

via: folktale@2.3.2

inspect-f@1.2.2

Deprecated package

via: fluture@7.2.2

uuid@3.4.0

Deprecated package

via: uuid@3.4.0

Collapse

Expand

6 moderate severity issues

moderate

ajv@5.5.2

Prototype Pollution in Ajv

Recommendation: Upgrade to version 6.12.3 or later

via: ajv@5.5.2 & others

axios@0.16.2

Axios vulnerable to Server-Side Request Forgery

Recommendation: Upgrade to version 0.21.1 or later

via: axios@0.16.2

axios@0.16.2

Axios Cross-Site Request Forgery Vulnerability

Recommendation: Upgrade to version 0.28.0 or later

via: axios@0.16.2

mtproto-logger@0.1.9

Package has no specified source code repository

via: mtproto-logger@0.1.9 & others

mtproto-shared@0.1.8

Package has no specified source code repository

via: mtproto-logger@0.1.9 & others

mtproto-storage-fs@0.3.1

Package has no specified source code repository

via: mtproto-storage-fs@0.3.1

Collapse

Expand

Licenses

MIT License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

Cannot

hold-liable

Must

include-copyright

include-license

77 Packages, Including:

@goodmind/node-cryptojs-aes@0.5.0

@most/multicast@1.3.0

@most/prelude@1.8.0

@safareli/free@1.0.0

ajv-keywords@2.1.1

ajv@5.5.2

ansi-styles@3.2.1

apropos@0.6.2

array-flatten@2.1.2

axios@0.16.2

bluebird@3.7.2

chalk@2.4.2

co@4.6.0

color-convert@1.9.3

color-name@1.1.3

concurrify@1.1.1

daggy@0.0.1

debug@2.6.9

define-data-property@1.1.4

define-properties@1.2.1

detect-node@2.1.0

es-define-property@1.0.0

es-errors@1.3.0

es6-iterator@2.0.3

escape-string-regexp@1.0.5

event-emitter@0.3.5

eventemitter2@4.1.2

fantasy-land@1.0.1

fast-deep-equal@1.1.0

fast-json-stable-stringify@2.1.0

fluture@7.2.2

folktale@2.3.2

follow-redirects@1.15.6

fs-extra@4.0.3

function-bind@1.1.2

get-intrinsic@1.2.4

globalthis@1.0.4

gopd@1.0.1

has-flag@3.0.0

has-property-descriptors@1.0.2

has-proto@1.0.3

has-symbols@1.0.3

hasown@2.0.2

inspect-f@1.2.2

is-buffer@1.1.6

is-promise@2.2.2

js-tokens@4.0.0

json-schema-traverse@0.3.1

jsonfile@4.0.0

lodash-es@4.17.21

ISC License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

Cannot

hold-liable

Must

include-copyright

include-license

11 Packages, Including:

d@1.0.2

es5-ext@0.10.64

es6-symbol@3.1.4

es6-weak-map@2.0.3

esniff@2.0.1

ext@1.7.0

graceful-fs@4.2.11

memoizee@0.4.15

next-tick@1.1.0

timers-ext@0.1.7

type@2.7.2

Apache License 2.0

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

use-patent-claims

place-warranty

Cannot

hold-liable

use-trademark

Must

include-copyright

include-license

state-changes

include-notice

2 Packages, Including:

denque@1.5.1

redux-act@1.8.0

BSD 2-Clause "Simplified" License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

place-warranty

Cannot

hold-liable

Must

include-copyright

include-license

1 Packages, Including:

fantasy-combinators@0.0.1

(MIT AND Zlib)

Permissive

1 Packages, Including:

pako@1.0.11

Direct Dependencies

All Dependencies CSV

ⓘ This is a list of telegram-mtproto 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.

Name	Version	Size	License	Type	Vulnerabilities
@goodmind/node-cryptojs-aes	0.5.0	220.14 kB	MIT	prod
@safareli/free	1.0.0	58.34 kB	MIT	prod
ajv-keywords	2.1.1	15.33 kB	MIT	prod	1
ajv	5.5.2	493.95 kB	MIT	prod peer	1
apropos	0.6.2	51.52 kB	MIT	prod
axios	0.16.2	77.34 kB	MIT	prod	3 2
bluebird	3.7.2	136.03 kB	MIT	prod
detect-node	2.1.0	1.57 kB	MIT	prod
eventemitter2	4.1.2	9.63 kB	MIT	prod
fluture	7.2.2	43.77 kB	MIT	prod	1
folktale	2.3.2	79.01 kB	MIT	prod	1
most-subject	5.3.0	15.33 kB	MIT	prod
most	1.9.0	118.85 kB	MIT	prod peer
mtproto-logger	0.1.9	17.02 kB	MIT	prod	1 2
mtproto-shared	0.1.8	5.13 kB	MIT	prod	1 1
mtproto-storage-fs	0.3.1	3.66 kB	MIT	prod	1 3
pako	1.0.11	199.69 kB	(MIT AND Zlib)	prod
ramda	0.24.1	157.25 kB	MIT	prod
randombytes	2.1.0	2.6 kB	MIT	prod
redux-act	1.8.0	27.96 kB	Apache-2.0	prod
redux-most	0.6.3	18.47 kB	MIT	prod
redux	3.7.2	30.05 kB	MIT	prod peer
rusha	0.8.14	15.02 kB	MIT	prod
uuid	3.4.0	11.87 kB	MIT	prod	1