Is redos-detector safe to use?

redos-detector has no known vulnerabilities on the latest version (6.1.4). DepScope rates its health at 72/100 (moderate risk).

What is the latest version of redos-detector?

The latest version of redos-detector is 6.1.4, released 2026-02-14.

Does redos-detector have known vulnerabilities?

No known vulnerabilities on the latest version of redos-detector.

Is redos-detector deprecated?

No, redos-detector is actively maintained. Latest release: 6.1.4 (2026-02-14).

What are alternatives to redos-detector?

Popular alternatives to redos-detector in npm include: semver, debug, ansi-styles, minimatch, brace-expansion.

What license does redos-detector use?

redos-detector is licensed under MIT.

redos-detector

npmv6.1.4

A CLI and library which tests helps score how vulnerable a regex pattern is to ReDoS attacks. Supported in the browser, Node and Deno.

License MITpermissive59 versions1 maintainers1 deps40,481 weekly dl

tjenkinson/redos-detector

/ 100

Health

safe to use

[email protected] is safe to use (health: 72/100)

Health breakdown0 – 100

20/25

maintenance

10/20

popularity

25/25

security

15/15

maturity

2/15

community

Vulnerabilities

none known

Bundle & TypeScript

📦

Bundle Size

66.4 KBminified

22.6 KB gzipped

1 direct dependencies

ESMside effects

🌟

TypeScript

10/10typed

bundled

Health History

Dependency Tree

License Audit

Dependencies (1)

regjsparser

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/redos-detector