Package Health

clevertap-web-sdk

<p align="center"> <img src="https://github.com/CleverTap/clevertap-ios-sdk/blob/master/docs/images/clevertap-logo.png" width = "50%"/> </p>

Latest 2.7.2NPMNPM

93%

Total Score

Maintainer Stability
Maintainer Stability
Assesses the consistency and reliability of package maintainers

64

Dependencies
Dependencies
Evaluates the health and security of package dependencies

100

Maturity
Maturity
Indicates package age, release frequency, and adoption metrics

100

Supply Chain
Supply Chain
Evaluates supply chain security practices and risks

100

Attestations
Attestations
Measures the presence and validity of package attestations and signatures

100

Are you affected? Scan for Free

Vulnerabilities

TitleVersionsSeverity
CVE-2026-26862
clevertap-web-sdk is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in versions 0.0.0 - 1.15.3.
0.0.0 - 1.15.3
High
AIKIDO-2025-10849 Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.
clevertap-web-sdk is vulnerable to Improper Input Validation in versions 1.0.0 - 2.3.1.
1.0.0 - 2.3.1
Medium
AIKIDO-2025-10332
clevertap-web-sdk is vulnerable to Permissive Cross-domain Policy with Untrusted Domains in versions 1.14.2 - 1.15.2.
1.14.2 - 1.15.2
High
AIKIDO-2025-10320 Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.
clevertap-web-sdk is vulnerable to Cross-site Scripting (XSS) in versions 1.9.1 - 1.15.1.
1.9.1 - 1.15.1
Medium
AIKIDO-2025-10104 Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.
clevertap-web-sdk is vulnerable to Cross-site Scripting (XSS) in versions 1.0.0 - 1.12.1.
1.0.0 - 1.12.1
High

Package versions

Direct Dependencies

DependencyLast ReleaseScore
core-js
Version ^3.49.0
crypto-js
Version ^4.2.0

Weekly Downloads

Info

Last Published
1 month ago
Created
5 years ago
Unpacked Size
3.3 MB