Is loose-envify safe to use?

loose-envify has no known vulnerabilities on the latest version (1.4.0). DepScope rates its health at 64/100 (moderate risk).

What is the latest version of loose-envify?

The latest version of loose-envify is 1.4.0, released 2018-07-10.

Does loose-envify have known vulnerabilities?

No known vulnerabilities on the latest version of loose-envify.

Is loose-envify deprecated?

No, loose-envify is actively maintained. Latest release: 1.4.0 (2018-07-10).

What are alternatives to loose-envify?

Popular alternatives to loose-envify in npm include: ?, semver, minimatch, debug, brace-expansion.

What license does loose-envify use?

loose-envify is licensed under MIT.

loose-envify

npmv1.4.0

Fast (and loose) selective `process.env` replacer using js-tokens instead of an AST

License MITpermissive6 versions1 maintainers1 deps88,162,863 weekly dl

zertosh/loose-envify

/ 100

Health

use with caution

[email protected] low health (64/100) — consider alternatives

Moderate health score (64/100) — verify manually

Health breakdown0 – 100

0/25

maintenance

20/20

popularity

25/25

security

15/15

maturity

4/15

community

0/15

popularity_floor

Vulnerabilities

none known

Bundle & TypeScript

📦

Bundle Size

2.3 KBminified

1.2 KB gzipped

1 direct dependencies

side effects

🌟

TypeScript

0/10untyped

No type definitions available

Maintainer trust

Active maintainers (3m)

Contributors (12m)

GitHub stars

0

Quality signals

OSS Criticality

0.77critical

Download trend

declining(-12.5%)

Publish security

npm signed

Health History

Dependency Tree

License Audit

Dependencies (1)

js-tokens

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/loose-envify