Is call-bind safe to use?

call-bind has no known vulnerabilities on the latest version (1.0.9). DepScope rates its health at 79/100 (moderate risk).

What is the latest version of call-bind?

The latest version of call-bind is 1.0.9, released 2026-04-09.

Does call-bind have known vulnerabilities?

No known vulnerabilities on the latest version of call-bind.

Is call-bind deprecated?

No, call-bind is actively maintained. Latest release: 1.0.9 (2026-04-09).

What are alternatives to call-bind?

Popular alternatives to call-bind in npm include: ?, semver, minimatch, debug, brace-expansion.

What license does call-bind use?

call-bind is licensed under MIT.

call-bind

npmv1.0.9

Robustly `.call.bind()` a function

License MITpermissive10 versions1 maintainers4 deps81,884,470 weekly dl

ljharb/call-bind

/ 100

Health

safe to use

[email protected] is safe to use (health: 79/100)

Health breakdown0 – 100

20/25

maintenance

20/20

popularity

25/25

security

12/15

maturity

2/15

community

0/15

popularity_floor

Vulnerabilities

none known

Bundle & TypeScript

🌟

TypeScript

7/10typed

Types from @types/call-bind (DefinitelyTyped)

OSS Scorecard

OpenSSF security posture score

4.2/10

weak

Maintainer trust

Active maintainers (3m)

Contributors (12m)

GitHub stars

0

Quality signals

OSS Criticality

0.77critical

Download trend

stable(+1.9%)

Publish security

npm signed

Health History

Dependency Tree

License Audit

Dependencies (4)

call-bind-apply-helpers es-define-property get-intrinsic set-function-length

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/call-bind