Is lockfile-lint safe to use?

lockfile-lint has no known vulnerabilities on the latest version (5.0.0). DepScope rates its health at 72/100 (moderate risk).

What is the latest version of lockfile-lint?

The latest version of lockfile-lint is 5.0.0, released 2026-01-25.

Does lockfile-lint have known vulnerabilities?

No known vulnerabilities on the latest version of lockfile-lint.

Is lockfile-lint deprecated?

No, lockfile-lint is actively maintained. Latest release: 5.0.0 (2026-01-25).

What are alternatives to lockfile-lint?

Popular alternatives to lockfile-lint in npm include: ?, semver, minimatch, debug, brace-expansion.

What license does lockfile-lint use?

lockfile-lint is licensed under Apache-2.0.

lockfile-lint

npmv5.0.0

A CLI to lint a lockfile for security policies

License Apache-2.0permissive76 versions2 maintainers5 deps279,488 weekly dl

lirantal/lockfile-lint

/ 100

Health

safe to use

[email protected] is safe to use (health: 72/100)

Health breakdown0 – 100

15/25

maintenance

14/20

popularity

25/25

security

15/15

maturity

3/15

community

0/15

popularity_floor

Vulnerabilities

none known

Bundle & TypeScript

🌟

TypeScript

0/10untyped

No type definitions available

Health History

Dependency Tree

License Audit

Dependencies (5)

cosmiconfig debug fast-glob lockfile-lint-api yargs

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/lockfile-lint