Is events_pkg safe to use?

events_pkg has 1 known vulnerabilities on the latest version (0.0.1-security). DepScope rates its health at 26/100 (critical risk).

What is the latest version of events_pkg?

The latest version of events_pkg is 0.0.1-security, released 2024-09-19.

Does events_pkg have known vulnerabilities?

Yes. events_pkg has 1 known vulnerabilities. See depscope.dev/pkg/npm/events_pkg for details.

Is events_pkg deprecated?

No, events_pkg is actively maintained. Latest release: 0.0.1-security (2024-09-19).

What are alternatives to events_pkg?

Popular alternatives to events_pkg in npm include: ?., ansi-styles, debug, brace-expansion, strip-ansi.

What license does events_pkg use?

License information for events_pkg is not declared in the registry metadata.

events_pkg

npmv0.0.1-security

security holding package

1 versions0 deps6 weekly dl

npm/security-holder

/ 100

Health

do not use

Do not install. Package is flagged as malicious (advisory MAL-2024-8874).

Health breakdown0 – 100

5/25

maintenance

0/20

popularity

15/25

security

6/15

maturity

0/15

community

Vulnerabilities

1 critical

Advisories (1)

Severity	ID	Summary	Fixed in
critical	GHSA-97xh-vh68-4v4h	Malicious code in events_pkg (npm)	—

Bundle & TypeScript

🌟

TypeScript

0/10untyped

No type definitions available

⚠ Malicious package

This package is flagged as malicious by the OpenSSF/OSV community feed. Do not install.

Advisory: MAL-2024-8874 — Malicious code in events_pkg (npm)

Health History

Dependency Tree

License Audit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/events_pkg