Is signedsource safe to use?

signedsource has no known vulnerabilities on the latest version (2.0.0). DepScope rates its health at 56/100 (high risk).

What is the latest version of signedsource?

The latest version of signedsource is 2.0.0, released 2019-09-23.

Does signedsource have known vulnerabilities?

No known vulnerabilities on the latest version of signedsource.

Is signedsource deprecated?

No, signedsource is actively maintained. Latest release: 2.0.0 (2019-09-23).

What are alternatives to signedsource?

Popular alternatives to signedsource in npm include: ?, semver, minimatch, debug, brace-expansion.

What license does signedsource use?

signedsource is licensed under MIT.

signedsource

npmv2.0.0

This package exports utilities to sign and verify generated files.

License MITpermissive3 versions1 maintainers0 deps4,028,704 weekly dl

/ 100

Health

use with caution

[email protected] low health (56/100) — consider alternatives

Moderate health score (56/100) — verify manually

Health breakdown0 – 100

0/25

maintenance

17/20

popularity

25/25

security

12/15

maturity

2/15

community

0/15

popularity_floor

Vulnerabilities

none known

Bundle & TypeScript

📦

Bundle Size

1.3 KBminified

0.7 KB gzipped

0 direct dependencies

side effects

🌟

TypeScript

0/10untyped

No type definitions available

Health History

Dependency Tree

License Audit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/signedsource