Licenses.. This is the most painful part about Open Source. There are so many different licenses and they all have different restrictions. In order to know the license footprint of your project you need to know how your modules are licensed. You might be interested in your license footprint because:
But the biggest problem is figuring out which license a module is actually
using. There are a lot of ways of saying that your code is licensed under MIT.
There are people who rather say licensed under MIT than just stating MIT. So the
way we write which license we use differ but also the location of our licenses.
It can be in the package.json hiding in various of properties or specified in
the README.md of the project or even a dedicated LICENSE file in the
repository.
Now that you've taken the time to read about some of these issues above, you know why this module exists. It tries to fulfill one simple task. Get a human readable license from a given node module.
However, this module isn't flawless as it tries to automate a task that usually requires the interference and intelligence of a human. If you have module that is incorrectly detected or not detected at all but does have licensing information publicly available please create an issue about and we'll see if it can get resolved.
The module is released through npm and can therefor be installed using:
npm install --save licenses
The module exposes one single interface for retrieving the packages, which is a simple exported function:
'use strict';
var licenses = require('licenses');
The licenses function accepts the following arguments:
package.json. The module name
is preferred here as the registry contains more information about your package
than is available in the package.json that you write.registry A valid npm registry endpoint, defaults to
http://registry.nodejitsu.comorder The order of which we should attempt to detect licensing
information. Defaults to: [npm, github, content].Array of licenses (as people can dual
license their code) or undefined.With this knowledge, we can simply start detecting licensing using:
licenses('primus', function fetched(err, license) {
console.log(license.join(',')); // MIT
});
MIT
FAQs
A small tool that detects licensing information for a given Node.js module
The npm package licenses receives a total of 6,948 weekly downloads. As such, licenses popularity was classified as popular.
We found that licenses demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
React's CRA deprecation announcement sparked community criticism over framework recommendations, leading to quick updates acknowledging build tools like Vite as valid alternatives.
Security News
Ransomware payment rates hit an all-time low in 2024 as law enforcement crackdowns, stronger defenses, and shifting policies make attacks riskier and less profitable.
Security News
require(esm) backported to Node.js 20, easing the transition to ESM-only packages and reducing complexity for developers as Node 18 nears end-of-life.