{"package":"lodash.pick","ecosystem":"npm","latest_version":"4.4.0","description":"The lodash method `_.pick` exported as a module.","license":"MIT","homepage":"https://lodash.com/","repository":"https://github.com/lodash/lodash","downloads_weekly":2099106,"health":{"score":32,"risk":"critical","breakdown":{"maintenance":0,"popularity":17,"security":23,"maturity":9,"community":13},"deprecated":true,"max_score":100},"vulnerabilities":{"count":1,"critical":0,"high":0,"medium":1,"low":0,"details":[{"vuln_id":"CVE-2020-8203","severity":"medium","summary":"Prototype Pollution in lodash","affected_versions":">=3.7.0","fixed_version":"4.17.19","source":"osv","published_at":"2020-07-15T19:15:48Z"}]},"versions":{"latest":"4.4.0","total_count":17,"recent":["2.0.0","2.1.0","2.2.0","2.2.1","2.3.0","2.4.0","2.4.1","3.0.0","3.1.0","4.0.0","4.0.1","4.1.0","4.1.1","4.2.0","4.2.1","4.3.0","4.4.0"]},"metadata":{"deprecated":true,"deprecated_message":"This package is deprecated. Use destructuring assignment syntax instead.","maintainers_count":2,"first_published":"2013-09-23T06:36:39.643Z","last_published":"2016-08-13T17:43:20.352Z","dependencies_count":0,"dependencies":[]},"recommendation":{"action":"find_alternative","issues":["Low health score (32/100)","Package is deprecated"],"use_version":"4.4.0","version_hint":"Update to >= 4.17.19 to fix known vulnerabilities","summary":"lodash.pick is deprecated — find an alternative"},"requested_version":null,"_cache":"miss","_response_ms":824,"_powered_by":"depscope.dev — free package intelligence for AI agents"}