Package Health

@automattic/newspack-blocks

=== Newspack Blocks === Contributors: (this should be a list of wordpress.org userid's) Donate link: https://example.com/ Tags: comments, spam Requires at least: 4.5 Tested up to: 5.1.1 Stable tag: 0.1.0 License: GPLv2 or later License URI: https://www.gn

Latest 4.27.0NPMNPM

91%

Total Score

Maintainer Stability
Maintainer Stability
Assesses the consistency and reliability of package maintainers

100

Dependencies
Dependencies
Evaluates the health and security of package dependencies

78

Maturity
Maturity
Indicates package age, release frequency, and adoption metrics

91

Supply Chain
Supply Chain
Evaluates supply chain security practices and risks

100

Attestations
Attestations
Measures the presence and validity of package attestations and signatures

0

Are you affected? Scan for Free

Vulnerabilities

TitleVersionsSeverity
AIKIDO-2025-10289 Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.
@automattic/newspack-blocks is vulnerable to Weak Password Requirements in versions 1.33.1 - 4.5.10.
1.33.1 - 4.5.10
Low

Package versions

Direct Dependencies

DependencyLast ReleaseScore
redux
Version ^5.0.0
lodash
Version ^4.17.21
swiper
Version 12.2.0
classnames
Version ^2.5.1
redux-saga
Version ^1.5.0

Weekly Downloads

Info

Last Published
4 days ago
Created
4 years ago
Unpacked Size
4 MB