npm, the awesome source code package manager for JavaScript and stuff, publishes a specification for license metadata in package.json files. The spec asks maintainers to use the SPDX standard’s license expression syntax to show how their work is licensed in a machine-readable way. You will get a warning if you don’t.

In most cases, that's as easy as setting your license property (not licenses, as for RubyGems) to MIT, ISC, BSD-2-Clause, Apache-2.0, or some other string on SPDX' official list. You can even Unlicense or WTFPL, you rebel, you.

The following is a list of packages among the 1,000 most-depended-upon (the “npm1K”) that aren't yet part of that better world. There are handy links for making quick pull requests to fix package.json if you’d like to help them out. Given how vital these packages are, each one with a good license property helps make Node easier to adopt in new and different teams, many of which are dipping timid corporate toes into open-source for the very first time.

Who cares? Nobody cares! Until they have to do a license check. Then, thanks to how amazing npm is, you’re left staring down a bottomless well of node_modules directories you must search, manually, for LICENSE files and hints in README. But shouldn’t some lousy program do that kind of work for you? Of course! And it would sure help if the npm ecosystem offered good, clean metadata to chew on.

Special thanks to @beaugunderson and @tunnckoCore.


92% valid
8% invalid

Thu, 16 Mar 2017 18:48:41 GMT

Package Latest Maintainers Fix It! Warnings
14 q 1.4.1 kriskowal domenic {"type":"MIT","url":"http://github.com/kriskowal/q/raw/master/LICENSE"}
  • Invalid license property
31 node-uuid 1.4.7 broofa coolaj86
  • Missing license property
37 optimist 0.6.1 substack "MIT/X11"
  • license should be a valid SPDX license expression (without "LicenseRef"), "UNLICENSED", or "SEE LICENSE IN <filename>"
  • license is similar to the valid expression "MIT"
61 mime 1.3.4 broofa bentomas
  • Missing license property
96 gulp-rename 1.2.2 hparra contra shinnn fractal
  • Missing license property
176 progress 1.1.8 tjholowaychuk hallas prezjordan
  • Missing license property
179 crypto 0.0.3 gozala
  • Missing license property
182 cli-table 0.3.1 rauchg
  • Missing license property
206 querystring 0.2.0 gozala
  • Missing license property
222 passport-local 1.0.0 jaredhanson
  • Missing license property
228 xmldom 0.1.27 jindw yaron bigeasy kethinov jinjinyun
  • Missing license property
237 wrench 1.5.9 ryanmcgrath
  • Missing license property
292 adm-zip 0.4.7 cthackers
  • Missing license property
300 walk 2.3.9 coolaj86
  • Missing license property
306 nomnom 1.8.1 harth
  • Missing license property
331 less-loader 3.0.0 bebraw d3viant0ne ericclemmons jhnns sokra thelarkinn
  • Missing license property
343 react-tap-event-plugin 2.0.1 s0meone
  • Missing license property
344 ssh2 0.5.4 mscdex
  • Missing license property
348 slug 0.9.1 dodo
  • Missing license property
403 raw-loader 0.5.1 sokra
  • Missing license property
407 bcrypt-nodejs 0.0.3 shanegirish
  • Missing license property
413 passport-oauth 1.0.0 jaredhanson
  • Missing license property
442 hogan.js 3.0.2 fat sayrer
  • Missing license property
456 hoist-non-react-statics 1.2.0 mridgway
  • Missing license property
466 markdown 0.5.0 ashb dom
  • Missing license property
467 connect-flash 0.1.1 jaredhanson
  • Missing license property
485 tv4 1.2.7 geraintluff bartvds
  • Missing license property
507 iniparser 1.0.5 shockie
  • Missing license property
528 passport-strategy 1.0.0 jaredhanson
  • Missing license property
533 tslib 1.6.0 typescript
  • Missing license property
551 utils-merge 1.0.0 jaredhanson
  • Missing license property
552 stack-trace 0.0.9 felixge tim-smart sebastianhoitz
  • Missing license property
562 keymirror 0.1.1 strml
  • Missing license property
566 amqp 0.2.6 ry postwait
  • Missing license property
572 valid-url 1.0.9 odysseas sagens
  • Missing license property
596 btoa 1.1.2 coolaj86 "Apache2"
  • license should be a valid SPDX license expression (without "LicenseRef"), "UNLICENSED", or "SEE LICENSE IN <filename>"
  • license is similar to the valid expression "Apache-2.0"
602 slush 1.1.1 joakimbeng
  • Missing license property
621 argv 0.0.2 codenothing
  • Missing license property
625 babel-preset-lfdoherty 1.0.6 lfdoherty
  • Missing license property
658 copy-paste 1.3.0 xavi
  • Missing license property
664 callsite 1.0.0 tjholowaychuk
  • Missing license property
673 batch 0.5.3 tjholowaychuk
  • Missing license property
674 docopt 0.6.2 stuartcarnie
  • Missing license property
677 hat 0.0.3 substack "MIT/X11"
  • license should be a valid SPDX license expression (without "LicenseRef"), "UNLICENSED", or "SEE LICENSE IN <filename>"
  • license is similar to the valid expression "MIT"
679 log 1.4.0 tjholowaychuk
  • Missing license property
683 busboy 0.2.14 mscdex
  • Missing license property
720 rethinkdb 2.3.3 rethinkdb
  • Missing license property
741 express-jwt 5.1.0 dschenkelman jaredhanson jfromaniello pose woloski
  • Missing license property
749 fs.extra 1.3.2 coolaj86
  • Missing license property
777 validate.io-function 1.0.2 kgryte
  • Missing license property
779 entities 1.1.1 feedic "BSD-like"
  • license should be a valid SPDX license expression (without "LicenseRef"), "UNLICENSED", or "SEE LICENSE IN <filename>"
  • license is similar to the valid expression "BSD-2-Clause"
790 duplexer 0.1.1 raynos dominictarr
  • Missing license property
798 pg-hstore 2.3.2 scarney
  • Missing license property
809 mandrill-api 1.0.45 mailchimp
  • Missing license property
821 imagemagick 0.1.3 rsms
  • Missing license property
825 rework 1.0.1 tjholowaychuk jonathanong jongleberry conradz necolas anthonyshort ianstormtaylor moox clintwood lydell slexaxton
  • Missing license property
827 domready 1.0.8 ded fat
  • Missing license property
832 ftp 0.3.10 mscdex
  • Missing license property
853 useragent 2.1.12 v1 3rdeden {"type":"MIT","url":"https://github.com/3rd-Eden/useragent/blob/master/LICENSE"}
  • Invalid license property
866 passport-http 0.3.0 jaredhanson
  • Missing license property
870 co-request 1.0.0 leukhin
  • Missing license property
874 expect.js 0.3.1 rauchg
  • Missing license property
875 win-spawn 2.0.0 forbeslindesay "BSD"
  • license should be a valid SPDX license expression (without "LicenseRef"), "UNLICENSED", or "SEE LICENSE IN <filename>"
  • license is similar to the valid expression "BSD-2-Clause"
876 i 0.3.5 pksunkara
  • Missing license property
883 readline 1.3.0 craigbrookes "BSD"
  • license should be a valid SPDX license expression (without "LicenseRef"), "UNLICENSED", or "SEE LICENSE IN <filename>"
  • license is similar to the valid expression "BSD-2-Clause"
888 jasmine-node 1.14.5 mhevery tebriel
  • Missing license property
889 colorful 2.1.0 lepture
  • Missing license property
893 prelude-ls 1.1.2 gkz
  • Missing license property
897 browser-request 0.3.3 jhs maxogden
  • Missing license property
906 eyes 0.1.8 cloudhead indexzero
  • Missing license property
909 uid2 0.0.3 coreh
  • Missing license property
924 moment-range 3.0.3 adambiggs gf3 {"type":"Public Domain","url":"https://github.com/gf3/moment-range/raw/master/UNLICENSE"}
  • Invalid license property
927 has 1.0.1 tarruda
  • Missing license property
940 node-getopt 0.2.3 jiangmiao
  • Missing license property
957 findup 0.1.5 Filirom1 filirom1
  • Missing license property
987 parent-require 1.0.0 jaredhanson
  • Missing license property
989 string-format 0.5.0 davidchambers
  • Missing license property
Fork me on GitHub