Security News
Meet Socket at Black Hat Europe and BSides London 2025
Socket is heading to London! Stop by our booth or schedule a meeting to see what we've been working on.
By Anders Søndergaard - Nov 11, 2025
at-least-node
Advanced tools
at-least-node
Sometimes you need to check if you're on at least a given Node.js version, but you don't want to pull in the whole semver kitchen sink. That's what at-least-node is for.
| Package | Size |
|---|---|
at-least-node | 2.6 kB |
semver | 75.5 kB |
const atLeastNode = require('at-least-node')
atLeastNode('10.12.0')
// -> true on Node 10.12.0+, false on anything below that
When passing in a version string:
- You cannot include a leading
v(i.e.v10.12.0) - You cannot omit sections (i.e.
10.12) - You cannot use pre-releases (i.e.
1.0.0-beta) - There is no input validation, if you make a mistake, the resulting behavior is undefined
Other packages similar to at-least-node
semver
The 'semver' package is a module for semantic versioning comparison. While it does not directly enforce Node.js version requirements, it can be used to perform complex version checks and comparisons, including checking if the current Node.js version satisfies a given version range. This provides more flexibility compared to 'at-least-node' but requires additional code to enforce version requirements.
please-upgrade-node
Similar to 'at-least-node', 'please-upgrade-node' is a package designed to enforce a minimum Node.js version requirement for applications. It goes a step further by providing a friendly error message advising users to upgrade their Node.js version if the requirement is not met. This makes it a more user-friendly option compared to 'at-least-node', which simply throws an error without additional guidance.
engine-check
The 'engine-check' package automatically checks if the current Node.js version satisfies the version specified in the 'engines' field of 'package.json'. It is similar to 'at-least-node' in enforcing version requirements but does so based on the project's package.json configuration, offering a more integrated approach to version enforcement.
FAQs
Lightweight Node.js version sniffing/comparison
The npm package at-least-node receives a total of 18,636,253 weekly downloads. As such, at-least-node popularity was classified as popular.
We found that at-least-node demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 01 Feb 2020
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
OWASP 2025 Top 10 Adds Software Supply Chain Failures, Ranked Top Community Concern
OWASP’s 2025 Top 10 introduces Software Supply Chain Failures as a new category, reflecting rising concern over dependency and build system risks.
By Sarah Gooding - Nov 08, 2025
Research
/Security News
9 Malicious NuGet Packages Deliver Time-Delayed Destructive Payloads
Socket researchers discovered nine malicious NuGet packages that use time-delayed payloads to crash applications and corrupt industrial control systems.
By Kush Pandya - Nov 06, 2025