vm2

npmv3.10.5

vm2 is a sandbox that can run untrusted code with whitelisted Node's built-in modules.

License: MIT71 versions1 maintainers2 deps1,427,583 weekly downloads
patriksimek/vm2
77
/100
Health Score

Recommendation

[email protected] is safe to use (health: 77/100)

Health Breakdown

20/25
maintenance
17/20
popularity
23/25
security
15/15
maturity
2/15
community

Vulnerabilities (1)

1 medium
medium
CVE-2023-37903

vm2 Sandbox Escape vulnerability

Dependencies (2)

acornacorn-walk

API Access

Get this data programmatically — free, no authentication required:

curl https://depscope.dev/api/check/npm/vm2

First published: 2014-01-14T12:17:34.402Z

Last updated: 2026-02-17T01:15:06.398Z

Data from DepScope — Package Intelligence for AI Agents