Socket
Socket
Sign inDemoInstall

license-drama-check

Package Overview
Dependencies
Maintainers
1
Versions
2
Alerts
File Explorer

Advanced tools

Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

license-drama-check

Check node_modules for "open source" licenses altered to deny license to certain entities


Version published
Maintainers
1
Created
Source

license-drama-check

A simple Node.js package to check your dependencies for any open source license shenanigans that deny license to certain entities.

Installation

yarn add license-drama-check

or

npm install license-drama-check

Usage

The package can be user either in CLI or programatically, as a function.

After installing the package, the CLI command is:

license-drama-check

If your package manager doesn't set the command up properly, you can always run it with

./node_modules/license-drama-check/run.js

To use programatically, import the module, which is a function and call it:

const check = require('license-drama-check');

const result = check();

The return value is true if a problem is found or false if no problems are found.

If you're using shelljs or a similar package to change cwd in your script, make sure to call the function while cwd is the root of your project.

Contributions

PRs to make the script smarter or simply cover any changes in wording in the affected projects are greatly appreciated.

Disclaimer

The purpose of this package is to detect any potentially harmful open source license tampering. Any similarities with a case of open source license drama, past, present or future, may or may not be intentional.

FAQs

Package last updated on 30 Aug 2018

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

Packages

npm

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc