markdown @0.5.0
rejected
This version was rejected.
It did not pass GreenFlagged's security review and is not served by the registry.
The findings and risk dispositions below explain why.
43
Risk Score
—
License
No
Install Scripts
1
Dependencies
1
Dev Dependencies
25.7 KB
Package Size
Published
A sensible Markdown parser for javascript
Maintainers
ashbdom
Keywords
markdowntext processingast
Dependencies (1)
| Package | Constraint | Registry Status |
|---|---|---|
| nopt | ~2.1.1 | auto_approved |
Dev Dependencies (1)
| Package | Constraint | Registry Status |
|---|---|---|
| tap | ~0.3.3 | auto_approved |
Transitive Dependency Tree
2 transitive deps
max depth 2
├─
nopt
~2.1.1
→ 2.1.2
├─
abbrev
1
Risk Dispositions (0 applicable to this version, 1 other)
Accepted rules are downgraded to INFO on future analyses; rejected rules escalate to CRITICAL.
Show 1 disposition(s) that do not match any finding on this version
| Rule | Source | Disposition | Author | Reason | |
|---|---|---|---|---|---|
osv:GHSA-wx77-rp39-c6vg |
osv | reject | AI | AI (osv): ReDoS affects all versions of this package with no fix available; verdict generalizes to every published version. |
Review Summary
Risk score: 43. Findings: 1 critical (+40), 1 low (+3).
Published to npm: