{"package":"vm2","ecosystem":"npm","latest_version":"3.10.5","description":"vm2 is a sandbox that can run untrusted code with whitelisted Node's built-in modules.","license":"MIT","homepage":"https://github.com/patriksimek/vm2#readme","repository":"https://github.com/patriksimek/vm2","downloads_weekly":1458744,"health":{"score":77,"risk":"moderate","breakdown":{"maintenance":20,"popularity":17,"security":23,"maturity":15,"community":2},"deprecated":false,"max_score":100},"vulnerabilities":{"count":1,"critical":0,"high":0,"medium":1,"low":0,"details":[{"vuln_id":"CVE-2023-37903","severity":"medium","summary":"vm2 Sandbox Escape vulnerability","affected_versions":">=0","fixed_version":null,"source":"osv","published_at":"2023-07-13T17:01:58Z"}]},"versions":{"latest":"3.10.5","total_count":71,"recent":["3.9.6","3.9.7","3.9.8","3.9.9","3.9.10","3.9.11","3.9.12","3.9.13","3.9.14","3.9.15","3.9.16","3.9.17","3.9.18","3.9.19","3.10.0","3.10.1","3.10.2","3.10.3","3.10.4","3.10.5"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":1,"first_published":"2014-01-14T12:17:34.402Z","last_published":"2026-02-17T01:15:06.398Z","dependencies_count":2,"dependencies":["acorn","acorn-walk"]},"recommendation":{"action":"safe_to_use","issues":[],"use_version":"3.10.5","version_hint":null,"summary":"vm2@3.10.5 is safe to use (health: 77/100)"},"requested_version":null,"_cache":"miss","_response_ms":699,"_powered_by":"depscope.dev — free package intelligence for AI agents"}