BETAmodules.com is in beta — open to partnerships & joint ventures.Build with us
modules.com
⌘K

safe-eval

v0.4.1npm· JavaScript

Safer version of eval()

The verdict
Has 5 high-severity advisories. Verify a patched version exists before using. Check the OSV link for the fixed-in version.
Check the OSV link for the fixed-in version.
Live from the npm registry · derived rules, not AI
How it scores
MaintenanceAbandoned
PopularityUnknown
Security5 advisories
LicensePermissive
DepsZero deps
Maintenance
Last published 7 years ago.
Popularity
Download count unavailable.
Security
5 known advisories (worst: high severity).
License
MIT
Dependencies
No runtime dependencies
Security advisories
Live from OSV.dev · cached 24h
  • HIGH
    safe-eval vulnerable to Prototype Pollution
    GHSA-33vh-7x8q-mg35 Published 2022-12-20
  • HIGH
    safe-eval vulnerable to Sandbox Bypass due to improper input sanitization
    GHSA-79xf-67r4-q2jj Published 2023-04-11
  • HIGH
    Sandbox Breakout / Arbitrary Code Execution in safe-eval
    GHSA-9pcf-h8q9-63f6 Published 2020-09-03
  • HIGH
    safe-eval vulnerable to Prototype Pollution via the safeEval function
    GHSA-hcg3-56jf-x4vh Published 2023-04-11
  • HIGH
    Sandbox Breakout / Arbitrary Code Execution in safe-eval
    GHSA-hrpq-r399-whgw Published 2020-08-25
Recent releases
  • 0.4.17 years ago
  • 0.4.07 years ago
  • 0.3.010 years ago
  • 0.2.010 years ago
  • 0.1.010 years ago
  • 0.0.010 years ago