npm, the awesome source code package manager for JavaScript and stuff, publishes a specification for license metadata in package.json files. The spec asks maintainers to use the SPDX standard’s license expression syntax to show how their work is licensed in a machine-readable way. You will get a warning if you don’t.

In most cases, that's as easy as setting your license property (not licenses, as for RubyGems) to MIT, ISC, BSD-2-Clause, Apache-2.0, or some other string on SPDX' official list. You can even Unlicense or WTFPL, you rebel, you.

The following is a list of packages among the 1,000 most-depended-upon (the “npm1K”) that aren't yet part of that better world. There are handy links for making quick pull requests to fix package.json if you’d like to help them out. Given how vital these packages are, each one with a good license property helps make Node easier to adopt in new and different teams, many of which are dipping timid corporate toes into open-source for the very first time.

Who cares? Nobody cares! Until they have to do a license check. Then, thanks to how amazing npm is, you’re left staring down a bottomless well of node_modules directories you must search, manually, for LICENSE files and hints in README. But shouldn’t some lousy program do that kind of work for you? Of course! And it would sure help if the npm ecosystem offered good, clean metadata to chew on.

Special thanks to @beaugunderson and @tunnckoCore.


94% valid
6% invalid

Wed, 16 Aug 2017 06:02:38 GMT

Package Latest Maintainers Fix It! Warnings
43 node-uuid 1.4.8 broofa defunctzombie
  • Missing license property
53 optimist 0.6.1 substack "MIT/X11"
  • license should be a valid SPDX license expression (without "LicenseRef"), "UNLICENSED", or "SEE LICENSE IN <filename>"
  • license is similar to the valid expression "MIT"
122 gulp-rename 1.2.2 hparra contra shinnn fractal
  • Missing license property
196 cli-table 0.3.1 rauchg
  • Missing license property
217 querystring 0.2.0 gozala
  • Missing license property
231 passport-local 1.0.0 jaredhanson
  • Missing license property
243 xmldom 0.1.27 jindw yaron bigeasy kethinov jinjinyun
  • Missing license property
302 wrench 1.5.9 ryanmcgrath
  • Missing license property
313 react-tap-event-plugin 2.0.1 s0meone
  • Missing license property
331 adm-zip 0.4.7 cthackers
  • Missing license property
336 walk 2.3.9 coolaj86
  • Missing license property
359 nomnom 1.8.1 harth
  • Missing license property
361 raw-loader 0.5.1 sokra
  • Missing license property
384 ssh2 0.5.5 mscdex
  • Missing license property
405 slug 0.9.1 dodo
  • Missing license property
435 bcrypt-nodejs 0.0.3 shanegirish
  • Missing license property
483 newrelic 2.1.0 lykkin
  • Missing license property
501 passport-oauth 1.0.0 jaredhanson
  • Missing license property
519 hogan.js 3.0.2 fat sayrer
  • Missing license property
521 tv4 1.3.0 geraintluff bartvds [{"type":"Public Domain","url":"http://geraintluff.github.io/tv4/LICENSE.txt"},{"type":"MIT","url":"http://jsonary.com/LICENSE.txt"}]
  • Invalid license property
522 connect-flash 0.1.1 jaredhanson
  • Missing license property
548 markdown 0.5.0 ashb dom
  • Missing license property
554 babel-preset-lfdoherty 1.0.6 lfdoherty
  • Missing license property
591 passport-strategy 1.0.0 jaredhanson
  • Missing license property
597 iniparser 1.0.5 shockie
  • Missing license property
601 keymirror 0.1.1 strml
  • Missing license property
612 utils-merge 1.0.0 jaredhanson
  • Missing license property
616 valid-url 1.0.9 odysseas sagens
  • Missing license property
658 btoa 1.1.2 coolaj86 "Apache2"
  • license should be a valid SPDX license expression (without "LicenseRef"), "UNLICENSED", or "SEE LICENSE IN <filename>"
  • license is similar to the valid expression "Apache-2.0"
684 express-jwt 5.3.0 dschenkelman hzalaz jaredhanson jfromaniello pose woloski
  • Missing license property
693 amqp 0.2.6 ry postwait
  • Missing license property
701 argv 0.0.2 codenothing
  • Missing license property
726 callsite 1.0.0 tjholowaychuk
  • Missing license property
731 slush 1.1.1 joakimbeng
  • Missing license property
738 copy-paste 1.3.0 xavi
  • Missing license property
770 busboy 0.2.14 mscdex
  • Missing license property
778 clear 0.0.1 bahamas10
  • Missing license property
790 log 1.4.0 tjholowaychuk
  • Missing license property
804 hat 0.0.3 substack "MIT/X11"
  • license should be a valid SPDX license expression (without "LicenseRef"), "UNLICENSED", or "SEE LICENSE IN <filename>"
  • license is similar to the valid expression "MIT"
807 pg-hstore 2.3.2 scarney
  • Missing license property
811 exports-loader 0.6.4 bebraw d3viant0ne ericclemmons jhnns peerigon sokra thelarkinn
  • Missing license property
812 rethinkdb 2.3.3 rethinkdb
  • Missing license property
824 readline 1.3.0 craigbrookes "BSD"
  • license should be a valid SPDX license expression (without "LicenseRef"), "UNLICENSED", or "SEE LICENSE IN <filename>"
  • license is similar to the valid expression "BSD-2-Clause"
840 mandrill-api 1.0.45 mailchimp
  • Missing license property
843 entities 1.1.1 feedic "BSD-like"
  • license should be a valid SPDX license expression (without "LicenseRef"), "UNLICENSED", or "SEE LICENSE IN <filename>"
  • license is similar to the valid expression "BSD-2-Clause"
850 passport-http-bearer 1.0.1 jaredhanson
  • Missing license property
872 base-64 0.1.0 mathias
  • Missing license property
873 fs.extra 1.3.2 coolaj86
  • Missing license property
905 duplexer 0.1.1 raynos dominictarr
  • Missing license property
913 useragent 2.2.1 v1 3rdeden {"type":"MIT","url":"https://github.com/3rd-Eden/useragent/blob/master/LICENSE"}
  • Invalid license property
920 ftp 0.3.10 mscdex
  • Missing license property
928 i 0.3.5 pksunkara
  • Missing license property
938 source-map-loader 0.2.1 bebraw d3viant0ne ericclemmons jhnns sokra thelarkinn
  • Missing license property
940 fastclick 1.0.6 ftlabs mcg georgecrawfordft mattandrews
  • Missing license property
941 moment-range 3.0.3 adambiggs gf3 {"type":"Public Domain","url":"https://github.com/gf3/moment-range/raw/master/UNLICENSE"}
  • Invalid license property
942 passport-http 0.3.0 jaredhanson
  • Missing license property
954 validate.io-function 1.0.2 kgryte
  • Missing license property
959 co-request 1.0.0 leukhin
  • Missing license property
963 domready 1.0.8 ded fat
  • Missing license property
973 imagemagick 0.1.3 rsms
  • Missing license property
988 expect.js 0.3.1 rauchg
  • Missing license property
989 clui 0.3.6 artokun nathanpeck
  • Missing license property
991 prelude-ls 1.1.2 gkz
  • Missing license property
1000 htmlparser 1.7.7 tautologistics
  • Missing license property
Fork me on GitHub