Is web3-core-subscriptions safe to use?

web3-core-subscriptions has 1 known vulnerabilities on the latest version (1.10.3). DepScope rates its health at 42/100 (high risk).

What is the latest version of web3-core-subscriptions?

The latest version of web3-core-subscriptions is 1.10.3, released 2023-10-18.

Does web3-core-subscriptions have known vulnerabilities?

Yes. web3-core-subscriptions has 1 known vulnerabilities. See depscope.dev/pkg/npm/web3-core-subscriptions for details.

Is web3-core-subscriptions deprecated?

No, web3-core-subscriptions is actively maintained. Latest release: 1.10.3 (2023-10-18).

What are alternatives to web3-core-subscriptions?

Popular alternatives to web3-core-subscriptions in npm include: semver, ansi-styles, minimatch, debug, brace-expansion.

What license does web3-core-subscriptions use?

web3-core-subscriptions is licensed under LGPL-3.0.

web3-core-subscriptions

npmv1.10.3

Manages web3 subscriptions. This is an internal package.

License LGPL-3.0weak copyleft137 versions1 maintainers2 deps

ethereum/web3.js.git#1.x

/ 100

Health

safe to use

[email protected] is safe to use (health: 42/100)

Health breakdown0 – 100

0/25

maintenance

0/20

popularity

25/25

security

15/15

maturity

2/15

community

Vulnerabilities

1 low

Advisories (1)

Severity	ID	Summary	Fixed in
low	CVE-2025-57330	web3-core-subscriptions has a Prototype Pollution vulnerability	—

Bundle & TypeScript

🌟

TypeScript

10/10typed

bundled

Health History

Dependency Tree

License Audit

Dependencies (2)

eventemitter3 web3-core-helpers

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/web3-core-subscriptions