{"package":"@kong/spec-renderer","ecosystem":"npm","latest_version":"1.107.15","description":"Kong's open-source spec renderer","license":"Apache-2.0","license_risk":"permissive","commercial_use_notes":"Permissive: commercial closed-source use OK; preserve the copyright notice.","homepage":"https://github.com/Kong/spec-renderer","repository":"https://github.com/Kong/spec-renderer","downloads_weekly":null,"health":{"score":57,"risk":"high","breakdown":{"maintenance":25,"popularity":0,"security":15,"maturity":15,"community":2},"deprecated":false,"max_score":100},"vulnerabilities":{"count":1,"critical":1,"high":0,"medium":0,"low":0,"details":[{"vuln_id":"GHSA-3r2q-8jxp-mjmh","severity":"critical","summary":"Malicious code in @kong/spec-renderer (npm)","affected_versions":"=1.101.10-pr.747.ed2920a.0","fixed_version":null,"source":"osv","published_at":"2025-11-24T23:49:15Z"}],"actively_exploited_count":0,"likely_exploited_count":0},"versions":{"latest":"1.107.15","total_count":563,"recent":["1.107.11","1.107.12","1.107.12-pr.820.1e1f016.0","1.107.12-pr.812.7d845db.0","1.107.13-pr.850.1a864fc.0","1.107.13-pr.851.f942579.0","1.107.13-pr.851.c4411e1.0","1.107.13-pr.851.dc8150c.0","1.107.13-pr.850.892ba21.0","1.107.13","1.107.13-pr.821.81fdc26.0","1.107.13-pr.841.08a327b.0","1.107.14","1.107.14-pr.823.cc191dc.0","1.107.14-pr.840.0f3c57d.0","1.107.15-pr.859.1880cb0.0","1.107.15","1.107.15-pr.843.f6fbb3e.0","1.107.16-pr.860.efe60ee.0","1.107.16-pr.860.7dbd01d.0"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":1,"first_published":"2025-03-11T08:09:30.114Z","last_published":"2026-04-24T14:00:06.824Z","dependencies_count":19,"dependencies":["shiki","flatted","lodash-es","@kong/icons","allof-merge","httpsnippet","markdown-it","@vueuse/core","sanitize-html","@stoplight/json","@stoplight/yaml","form-urlencoded","@asyncapi/parser","@floating-ui/vue","@stoplight/types","@stoplight/http-spec","@asyncapi/avro-schema-parser","@asyncapi/openapi-schema-parser","@apidevtools/json-schema-ref-parser"]},"github_stats":null,"bundle":null,"typescript":{"score":10,"has_types":true,"types_source":"bundled","types_package":null},"known_issues":{"bugs_count":0,"bugs_severity":{},"status_breakdown":{},"link":null,"scope":"none"},"historical_compromise":null,"recommendation":{"action":"do_not_use","issues":["1 critical vulnerabilities"],"use_version":"1.107.15","version_hint":null,"summary":"@kong/spec-renderer has critical vulnerabilities — do not use"},"version_scoped":null,"requested_version":null,"_cache":"miss","_response_ms":784,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":false,"advisory_id":"MAL-2025-191455","summary":"Malicious code in @kong/spec-renderer (npm)","action":"use_with_caution","affected_versions":["1.101.10-pr.747.ed2920a.0"],"latest_version_safe":true,"note":"Advisory MAL-2025-191455: versions 1.101.10-pr.747.ed2920a.0 are compromised. Current latest (1.107.15) is safe."},"scorecard":{"available":false},"quality":{"available":false},"version_history_summary":{"total_versions":20,"first_release_age_days":416,"last_release_days_ago":7,"avg_days_between_releases":22,"release_velocity":"active"}}