Is @vess-id/jarm safe to use?

@vess-id/jarm has no known vulnerabilities on the latest version (1.0.1). DepScope rates its health at 45/100 (high risk).

What is the latest version of @vess-id/jarm?

The latest version of @vess-id/jarm is 1.0.1, released 2025-11-23.

Does @vess-id/jarm have known vulnerabilities?

No known vulnerabilities on the latest version of @vess-id/jarm.

Is @vess-id/jarm deprecated?

No, @vess-id/jarm is actively maintained. Latest release: 1.0.1 (2025-11-23).

What are alternatives to @vess-id/jarm?

Popular alternatives to @vess-id/jarm in npm include: semver, debug, ansi-styles, minimatch, brace-expansion.

What license does @vess-id/jarm use?

@vess-id/jarm is licensed under Apache-2.0.

@vess-id/jarm

npmv1.0.1

JWT Secured Authorization Response Mode (JARM) - @vess-id implementation

License Apache-2.0permissive2 versions1 maintainers2 deps6 weekly dl

/ 100

Health

use with caution

@vess-id/[email protected] low health (45/100) — consider alternatives

Moderate health score (45/100) — verify manually

Health breakdown0 – 100

15/25

maintenance

0/20

popularity

25/25

security

3/15

maturity

2/15

community

Vulnerabilities

none known

Bundle & TypeScript

🌟

TypeScript

10/10typed

bundled

Health History

Dependency Tree

License Audit

Dependencies (2)

@vess-id/oid4vc-common valibot

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/@vess-id/jarm