Is bleach safe to use?

bleach has 1 known vulnerabilities on the latest version (0.3.0). DepScope rates its health at 37/100 (critical risk).

What is the latest version of bleach?

The latest version of bleach is 0.3.0, released 2014-06-11.

Does bleach have known vulnerabilities?

Yes. bleach has 1 known vulnerabilities. See depscope.dev/pkg/npm/bleach for details.

Is bleach deprecated?

No, bleach is actively maintained. Latest release: 0.3.0 (2014-06-11).

What are alternatives to bleach?

Popular alternatives to bleach in npm include: ?, semver, minimatch, debug, brace-expansion.

What license does bleach use?

License information for bleach is not declared in the registry metadata.

bleach

npmv0.3.0

A minimalistic HTML sanitizer

9 versions1 maintainers1 deps

ecto/bleach

/ 100

Health

update required

[email protected] has vulnerabilities — update to latest

Moderate health score (37/100) — verify manually
1 high severity vulnerabilities

Health breakdown0 – 100

0/25

maintenance

0/20

popularity

20/25

security

15/15

maturity

2/15

community

Vulnerabilities

1 high

Advisories (1)

Severity	ID	Summary	Fixed in
high	GHSA-5634-rv46-48jf	Cross-Site Scripting in bleach	—

Bundle & TypeScript

🌟

TypeScript

0/10untyped

No type definitions available

Health History

Dependency Tree

License Audit

Dependencies (1)

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/bleach