{"package":"hbs","ecosystem":"npm","latest_version":"4.2.1","description":"Express.js template engine plugin for Handlebars","license":"MIT","homepage":"https://github.com/pillarjs/hbs#readme","repository":"https://github.com/pillarjs/hbs","downloads_weekly":291346,"health":{"score":80,"risk":"low","breakdown":{"maintenance":25,"popularity":14,"security":23,"maturity":15,"community":3},"deprecated":false,"max_score":100},"vulnerabilities":{"count":1,"critical":0,"high":0,"medium":1,"low":0,"details":[{"vuln_id":"CVE-2021-32822","severity":"medium","summary":"Insertion of Sensitive Information into Externally-Accessible File or Directory and Exposure of Sensitive Information to an Unauthorized Actor in hbs","affected_versions":">=0","fixed_version":null,"source":"osv","published_at":"2021-09-02T17:16:46Z","in_kev":false,"epss_prob":0.00299,"epss_percentile":0.53288,"threat_tier":"theoretical"}],"actively_exploited_count":0,"likely_exploited_count":0},"versions":{"latest":"4.2.1","total_count":50,"recent":["2.6.0","2.7.0","2.8.0","2.9.0","3.0.0","3.0.1","3.1.0","3.1.1","4.0.0","4.0.1","4.0.2","4.0.3","4.0.4","4.0.5","4.0.6","4.1.0","4.1.1","4.1.2","4.2.0","4.2.1"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":2,"first_published":"2011-01-20T00:16:20.795Z","last_published":"2026-04-01T17:53:32.458Z","dependencies_count":2,"dependencies":["handlebars","walk"]},"bundle":{"size_kb":108.4,"gzip_kb":32.3,"dependency_count":2,"has_js_module":false,"has_side_effects":true,"scoped":false,"source":"bundlephobia"},"typescript":{"score":7,"has_types":true,"types_source":"definitely-typed","types_package":"@types/hbs"},"known_issues":{"bugs_count":0,"bugs_severity":{},"status_breakdown":{},"link":null,"scope":"none"},"recommendation":{"action":"safe_to_use","issues":[],"use_version":"4.2.1","version_hint":null,"summary":"hbs@4.2.1 is safe to use (health: 80/100)"},"requested_version":null,"_cache":"miss","_response_ms":746,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":false},"scorecard":{"available":false},"quality":{"available":false}}