{"package":"csrf-sync","ecosystem":"npm","latest_version":"4.2.1","description":"A utility package to help implement stateful CSRF protection using the Synchroniser Token Pattern in express.","license":"ISC","homepage":"https://github.com/Psifi-Solutions/csrf-sync","repository":"https://github.com/Psifi-Solutions/csrf-sync","downloads_weekly":82614,"health":{"score":56,"risk":"high","breakdown":{"maintenance":10,"popularity":10,"security":25,"maturity":9,"community":2},"deprecated":false,"max_score":100},"vulnerabilities":{"count":0,"critical":0,"high":0,"medium":0,"low":0,"details":[]},"versions":{"latest":"4.2.1","total_count":14,"recent":["1.0.0","1.0.1","1.0.2","1.0.3","2.0.0","2.0.1","3.0.0","3.1.0","4.0.0","4.0.1","4.0.3","4.1.0","4.2.0","4.2.1"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":1,"first_published":"2022-09-24T04:57:24.667Z","last_published":"2025-05-10T05:30:40.297Z","dependencies_count":1,"dependencies":["http-errors"]},"bundle":{"size_kb":7.6,"gzip_kb":3.0,"dependency_count":1,"has_js_module":false,"has_side_effects":true,"scoped":false,"source":"bundlephobia"},"typescript":{"score":10,"has_types":true,"types_source":"bundled","types_package":null},"known_issues":{"bugs_count":0,"bugs_severity":{},"status_breakdown":{},"link":null,"scope":"none"},"recommendation":{"action":"safe_to_use","issues":[],"use_version":"4.2.1","version_hint":null,"summary":"csrf-sync@4.2.1 is safe to use (health: 56/100)"},"requested_version":null,"_cache":"miss","_response_ms":877,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":false},"scorecard":{"available":false},"quality":{"available":false}}