Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
An open-source eCommerce platform giving you full control and customizability.
Build any eCommerce solution that your business requires.
Slack
·
Documentation
·
Website
·
Demo
·
Roadmap
Visit the Quickstart Guide to set up Spree in 5 minutes.
Contact us for enterprise support and custom development services. We offer:
Besides Enterprise support we also offer an enterprise Spree version called Vendo - which is a commercial offering from the Spree team that gives you all the tools you need to launch your store or marketplace and provides you with ready-to-use integrations that will reduce your project's development time and cost.
To get access to Spree Enterprise (Vendo), contact our Sales team
Manage and curate products, users, orders, returns, shipments & more
Manage orders, shipments, returns and refunds
Use Spree for any use case. Innovate beyond what's out there.
Capture orders and payments for whatever you're selling - physical or digital, products or services
Run your own marketplace with multiple suppliers, each with a dedicated supplier dashboard
Start capturing 6+ figure orders from resellers with safe payments and a checkout process that fits your business model
Run your wholesale operation the way your retail partners expect
Launch a multi-tenant, multi-store platform for your customers, resellers, affiliates in any configuration, eg. B2B2B, B2B2C, B2B2E
Spree is an open source project and we love contributions in any form - pull requests, issues, feature ideas!
Follow our Contributing Guide
Join our Slack to meet other community members.
Contact us and let's go!
Spree is developed and maintained by
Vendo is an eCommerce platform based on Spree which you can customize to your exact needs (source available). Go global on day 1. DTC x B2B x Marketplace. API-first. One or multiple storefronts.
Spree Commerce is a free, open-source eCommerce framework giving you full control and customizability.
For Spree Commerce versions 4.10 and later in the spree/spree repository two licenses apply simultaneously and users are required to comply with the terms of these two licenses at the same time:
AGPL-3.0 - for all contributions from version 4.10 onwards
BSD-3-Clause - for all other contributions predating version 4.10
Effectively, for versions 4.10 and upwards AGPL-3.0 license applies.
Spree Commerce versions 4.9 and earlier in the spree/spree repository are available under the BSD-3-Clause license and users are required to comply with its terms.
If you’d like to use Spree Commerce without the AGPL-3.0 restrictions e.g. for a SaaS business, please talk to us about obtaining a Commercial License.
All third party components incorporated into this software are licensed under the original license provided by the owner of the applicable component.
Please refer to our Licensing FAQ in case of questions
FAQs
Unknown package
We found that spree demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.