xopen

v1.0.0npm· JavaScript

Open a file in its default application, across platforms

The verdict

Has 1 high-severity advisory. Verify a patched version exists before using. Check the OSV link for the fixed-in version.

Check the OSV link for the fixed-in version.

Live from the npm registry · derived rules, not AI

How it scores

MaintenanceAbandoned

PopularityUnknown

Security1 advisory

LicenseUnknown

DepsZero deps

Maintenance

Last published 9 years ago.

Popularity

Download count unavailable.

Security

1 known advisory (worst: high severity).

License

No license declared.

Dependencies

No runtime dependencies

Security advisories

Live from OSV.dev · cached 24h

HIGH
xopen is vulnerable to OS Command Injection in Exported Function xopen(filepath)
GHSA-74wf-cwjg-9cf2 Published 2022-07-26

Recent releases