Is csp_evaluator safe to use?

csp_evaluator has no known vulnerabilities on the latest version (1.1.5). DepScope rates its health at 61/100 (moderate risk).

What is the latest version of csp_evaluator?

The latest version of csp_evaluator is 1.1.5, released 2025-02-20.

Does csp_evaluator have known vulnerabilities?

No known vulnerabilities on the latest version of csp_evaluator.

Is csp_evaluator deprecated?

No, csp_evaluator is actively maintained. Latest release: 1.1.5 (2025-02-20).

What are alternatives to csp_evaluator?

Popular alternatives to csp_evaluator in npm include: semver, debug, minimatch, strip-ansi, ms.

What license does csp_evaluator use?

csp_evaluator is licensed under Apache-2.0.

csp_evaluator

npmv1.1.5

Evaluate Content Security Policies for a wide range of bypasses and weaknesses

License Apache-2.0permissive14 versions1 maintainers0 deps2,474,276 weekly dl

google/csp-evaluator

/ 100

Health

safe to use

[email protected] is safe to use (health: 61/100)

Health breakdown0 – 100

5/25

maintenance

17/20

popularity

25/25

security

12/15

maturity

2/15

community

Vulnerabilities

none known

Bundle & TypeScript

📦

Bundle Size

32.6 KBminified

10.2 KB gzipped

0 direct dependencies

side effects

🌟

TypeScript

10/10typed

bundled

Quality signals

Publish security

npm signed

Health History

Dependency Tree

License Audit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/csp_evaluator