Is env-string safe to use?

env-string has no known vulnerabilities on the latest version (1.0.1). DepScope rates its health at 53/100 (high risk).

What is the latest version of env-string?

The latest version of env-string is 1.0.1, released 2019-03-09.

Does env-string have known vulnerabilities?

No known vulnerabilities on the latest version of env-string.

Is env-string deprecated?

No, env-string is actively maintained. Latest release: 1.0.1 (2019-03-09).

What are alternatives to env-string?

Popular alternatives to env-string in npm include: ?, semver, minimatch, debug, brace-expansion.

What license does env-string use?

env-string is licensed under MIT.

env-string

npmv1.0.1

Inlines env vars in a string that contains $NAME expressions

License MITpermissive2 versions1 maintainers0 deps737,195 weekly dl

mafintosh/env-string

/ 100

Health

use with caution

[email protected] low health (53/100) — consider alternatives

Moderate health score (53/100) — verify manually

Health breakdown0 – 100

0/25

maintenance

14/20

popularity

25/25

security

12/15

maturity

2/15

community

0/15

popularity_floor

Vulnerabilities

none known

Bundle & TypeScript

🌟

TypeScript

0/10untyped

No type definitions available

Health History

Dependency Tree

License Audit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/env-string