string
v3.3.3npm· JavaScriptstring contains methods that aren't included in the vanilla JavaScript string such as escaping html, decoding html entities, stripping tags, etc.
The verdict
Has 1 high-severity advisory. Verify a patched version exists before using. Check the OSV link for the fixed-in version.
Check the OSV link for the fixed-in version.
Live from the npm registry · derived rules, not AI
How it scores
MaintenanceAbandoned
PopularityUnknown
Security1 advisory
LicensePermissive
DepsZero deps
Maintenance
Last published 9 years ago.
Popularity
Download count unavailable.
Security
1 known advisory (worst: high severity).
License
MIT
Dependencies
No runtime dependencies
Security advisories
Live from OSV.dev · cached 24h- HIGHRegular Expression Denial of Service in string packageGHSA-g36h-6r4f-3mqp Published 2018-07-24
Recent releases
- 3.3.39 years ago
- 3.3.29 years ago
- 3.3.110 years ago
- 3.3.010 years ago
- 3.2.110 years ago
- 3.2.011 years ago
- 3.1.311 years ago
- 3.1.211 years ago