sequelize

npmv6.37.8

Sequelize is a promise-based Node.js ORM tool for Postgres, MySQL, MariaDB, SQLite, Microsoft SQL Server, Amazon Redshift and Snowflake’s Data Cloud. It features solid transaction support, relations, eager and lazy loading, read replication and more.

License MITpermissive627 versions9 maintainers16 deps2,851,106 weekly dl
sequelize/sequelize
78
/ 100
Health
do not use

sequelize has critical vulnerabilities — do not use

Update to >= 7.0.0-alpha.20 to fix known vulnerabilities

  • 1 critical vulnerabilities
Health breakdown0 – 100
20/25
maintenance
17/20
popularity
13/25
security
15/15
maturity
13/15
community
Vulnerabilities
2
1 critical1 medium
Advisories (2)
SeverityIDSummaryFixed in
mediumCVE-2023-22580Sequelize information disclosure vulnerability7.0.0-alpha.20
criticalCVE-2023-22579Unsafe fall-through in getWhereConditions7.0.0-alpha.20

Bundle & TypeScript

📦

Bundle Size

1364.2 KBminified
216.3 KB gzipped
16 direct dependencies
side effects
🌟

TypeScript

10/10typed
bundled

Health History

Dependency Tree

License Audit

Dependencies (16)
@types/debug@types/validatordebugdottieinflectionlodashmomentmoment-timezonepg-connection-stringretry-as-promisedsemversequelize-pooltoposort-classuuidvalidatorwkx
API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/sequelize
More from npm
debuglru-cachestring-widthcommanderpicomatchglob
Browse all npm packages →

First published · 2011-05-03T17:08:41.163Z

Last updated · 2026-03-07T18:44:43.419Z