npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2024 – Pkg Stats / Ryan Hefner

lwyrup

v0.0.1

Published

Dependency license compatibility checker 🕴

Downloads

4

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

nevonnevon

Keywords

licenselicencecheckerfinderauditlegaldependencycli

Readme

LWYRUP

🚨 WIP: This absolutely does not work at the moment 🚨

Check if your project is in conflict with the licenses of your dependencies.

While it's exciting to see that open-source is becoming the new normal, and the open-source community a place of innovation and creativity, the new breed of open-source developers are in my opinion often ignorant when it comes to software licensing. Developers that were active in open-source when it was still a new and strange thing are often appreciative of licensing as a tool to protect and preserve open-source - a belief that is slowly eroding.

In an effort to educate and help developers more easily understand software licensing, this project aims to very easily tell you if you are in conflict with your dependencies (with some caveats).

As an added bonus, it also highlights the absurd complexity of software licensing, where a single dependency can introduce 20 different licenses due to transitive dependencies.

Notes

  • I am not a lawyer. Nothing I say or any information provided by this project is legal advice. If you are concerned about software licensing, contact a legal professional in your juristiction.
  • This project does not recursively scan dependencies of dependencies at the moment. This means that even if you are not in conflict with the license that one of your dependencies is released under, it's possible that one of your dependencies is in conflict with one if its dependencies and may need to be re-licensed under a license that you are not compatible with. Contributions to allow for conditional recursive scanning are welcome!
  • A lot of information is missing on which licenses are compatible with each other, which often causes the result to be that you are potentially in violation. Contributions backed by authoritative sources adding more information about which licenses are compatible are most welcome.

Contributing

Bug reports and pull requests are welcome. Changes are expected to be well tested before being merged. Please open an issue before contributing any large change, to avoid doing unnecessary work in case it is a change that would be rejected based on the goals of the project.

Attribution

Licensing information derived from https://github.com/librariesio/license-compatibility

License

This project is available under the terms of the MIT License.