Is escape-string-regexp safe to use?

escape-string-regexp has no known vulnerabilities on the latest version (5.0.0). DepScope rates its health at 64/100 (moderate risk).

What is the latest version of escape-string-regexp?

The latest version of escape-string-regexp is 5.0.0, released 2021-04-17.

Does escape-string-regexp have known vulnerabilities?

No known vulnerabilities on the latest version of escape-string-regexp.

Is escape-string-regexp deprecated?

No, escape-string-regexp is actively maintained. Latest release: 5.0.0 (2021-04-17).

What are alternatives to escape-string-regexp?

Popular alternatives to escape-string-regexp in npm include: ?, semver, minimatch, debug, brace-expansion.

What license does escape-string-regexp use?

escape-string-regexp is licensed under MIT.

escape-string-regexp

npmv5.0.0

Escape RegExp special characters

License MITpermissive10 versions1 maintainers0 deps308,146,223 weekly dl

sindresorhus/escape-string-regexp

/ 100

Health

use with caution

[email protected] low health (64/100) — consider alternatives

Moderate health score (64/100) — verify manually

Health breakdown0 – 100

0/25

maintenance

20/20

popularity

25/25

security

15/15

maturity

4/15

community

0/15

popularity_floor

Vulnerabilities

none known

Bundle & TypeScript

📦

Bundle Size

0.3 KBminified

0.2 KB gzipped

0 direct dependencies

side effects

🌟

TypeScript

7/10typed

Types from @types/escape-string-regexp (DefinitelyTyped)

OSS Scorecard

OpenSSF security posture score

3.7/10

weak

Maintainer trust

Active maintainers (3m)

1

Contributors (12m)

1

Primary author dominance

100%

GitHub stars

598

single active maintainer 3msingle author dominance

Quality signals

OSS Criticality

0.78critical

Download trend

stable(+1%)

Publish security

npm signed

Health History

Dependency Tree

License Audit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/escape-string-regexp