This package calculates meta-vulnerabilities from npm package security advisories, determining which package versions are vulnerable based on their dependencies' vulnerabilities. It's designed for npm CLI developers and security tools that need to audit package trees for both direct and transitive vulnerabilities. The calculator uses a binary search algorithm to efficiently identify vulnerable versions and handles both bundled and non-bundled dependencies.
Total donated
Undistributed
Share with your subscribers:
Recipients
How the donated funds are distributed
Support the dependencies of npm/metavuln-calculator
Fast, fault-tolerant, cross-platform, disk-based, data-agnostic, content-addressable cache.
JSON.parse with context information on error
JavaScript package downloader
just emit 'log' events on the process object
The semantic version parser used by npm.
eslint config used by the npm cli team
templated files used in npm CLI team oss projects
A simple mock injector compatible needing no instrumentation in the libraries being tested
Support the repos that depend on this repository
Top contributors
![dependabot[bot]'s profile](https://avatars.githubusercontent.com/dependabot[bot])
dependabot[bot]
64 contributions
isaacs
30 contributions
lukekarrys
29 contributions
![github-actions[bot]'s profile](https://avatars.githubusercontent.com/github-actions[bot])
github-actions[bot]
20 contributions
wraithgar
11 contributions
reggi
7 contributions
hashtagchris
2 contributions
Isolumi
1 contributions
owlstronaut
1 contributions
nlepage
1 contributions
Recent events
Kivach works on the Obyte network, and therefore you can track all donations.
No events yet