npm, the awesome source code package manager for JavaScript and stuff, publishes a specification for license metadata in package.json files. The spec asks maintainers to use the SPDX standard’s license expression syntax to show how their work is licensed in a machine-readable way. You will get a warning if you don’t.

In most cases, that's as easy as setting your license property (not licenses, as for RubyGems) to MIT, ISC, BSD-2-Clause, Apache-2.0, or some other string on SPDX' official list. You can even Unlicense or WTFPL, you rebel, you.

The following is a list of packages among the 1,000 most-depended-upon (the “npm1K”) that aren't yet part of that better world. There are handy links for making quick pull requests to fix package.json if you’d like to help them out. Given how vital these packages are, each one with a good license property helps make Node easier to adopt in new and different teams, many of which are dipping timid corporate toes into open-source for the very first time.

Who cares? Nobody cares! Until they have to do a license check. Then, thanks to how amazing npm is, you’re left staring down a bottomless well of node_modules directories you must search, manually, for LICENSE files and hints in README. But shouldn’t some lousy program do that kind of work for you? Of course! And it would sure help if the npm ecosystem offered good, clean metadata to chew on.

Special thanks to @beaugunderson and @tunnckoCore.


93% valid
7% invalid

Sun, 16 Apr 2017 06:02:50 GMT

Package Latest Maintainers Fix It! Warnings
32 node-uuid 1.4.8 broofa defunctzombie
  • Missing license property
38 optimist 0.6.1 substack "MIT/X11"
  • license should be a valid SPDX license expression (without "LicenseRef"), "UNLICENSED", or "SEE LICENSE IN <filename>"
  • license is similar to the valid expression "MIT"
64 mime 1.3.4 broofa bentomas
  • Missing license property
101 gulp-rename 1.2.2 hparra contra shinnn fractal
  • Missing license property
181 crypto 0.0.3 gozala
  • Missing license property
187 cli-table 0.3.1 rauchg
  • Missing license property
207 querystring 0.2.0 gozala
  • Missing license property
225 passport-local 1.0.0 jaredhanson
  • Missing license property
231 xmldom 0.1.27 jindw yaron bigeasy kethinov jinjinyun
  • Missing license property
249 wrench 1.5.9 ryanmcgrath
  • Missing license property
300 adm-zip 0.4.7 cthackers
  • Missing license property
306 walk 2.3.9 coolaj86
  • Missing license property
316 nomnom 1.8.1 harth
  • Missing license property
328 react-tap-event-plugin 2.0.1 s0meone
  • Missing license property
350 ssh2 0.5.4 mscdex
  • Missing license property
362 slug 0.9.1 dodo
  • Missing license property
394 raw-loader 0.5.1 sokra
  • Missing license property
417 bcrypt-nodejs 0.0.3 shanegirish
  • Missing license property
426 passport-oauth 1.0.0 jaredhanson
  • Missing license property
446 tslib 1.6.0 typescript
  • Missing license property
448 hoist-non-react-statics 1.2.0 mridgway
  • Missing license property
451 hogan.js 3.0.2 fat sayrer
  • Missing license property
483 connect-flash 0.1.1 jaredhanson
  • Missing license property
492 newrelic 1.38.2 lykkin
  • Missing license property
495 tv4 1.3.0 geraintluff bartvds [{"type":"Public Domain","url":"http://geraintluff.github.io/tv4/LICENSE.txt"},{"type":"MIT","url":"http://jsonary.com/LICENSE.txt"}]
  • Invalid license property
498 markdown 0.5.0 ashb dom
  • Missing license property
517 iniparser 1.0.5 shockie
  • Missing license property
543 passport-strategy 1.0.0 jaredhanson
  • Missing license property
556 babel-preset-lfdoherty 1.0.6 lfdoherty
  • Missing license property
558 stack-trace 0.0.9 felixge tim-smart sebastianhoitz
  • Missing license property
560 utils-merge 1.0.0 jaredhanson
  • Missing license property
577 valid-url 1.0.9 odysseas sagens
  • Missing license property
583 keymirror 0.1.1 strml
  • Missing license property
593 amqp 0.2.6 ry postwait
  • Missing license property
597 btoa 1.1.2 coolaj86 "Apache2"
  • license should be a valid SPDX license expression (without "LicenseRef"), "UNLICENSED", or "SEE LICENSE IN <filename>"
  • license is similar to the valid expression "Apache-2.0"
626 slush 1.1.1 joakimbeng
  • Missing license property
629 argv 0.0.2 codenothing
  • Missing license property
658 copy-paste 1.3.0 xavi
  • Missing license property
682 callsite 1.0.0 tjholowaychuk
  • Missing license property
695 log 1.4.0 tjholowaychuk
  • Missing license property
712 docopt 0.6.2 stuartcarnie
  • Missing license property
720 hat 0.0.3 substack "MIT/X11"
  • license should be a valid SPDX license expression (without "LicenseRef"), "UNLICENSED", or "SEE LICENSE IN <filename>"
  • license is similar to the valid expression "MIT"
731 express-jwt 5.1.0 dschenkelman jaredhanson jfromaniello pose woloski
  • Missing license property
755 rethinkdb 2.3.3 rethinkdb
  • Missing license property
773 fs.extra 1.3.2 coolaj86
  • Missing license property
791 pg-hstore 2.3.2 scarney
  • Missing license property
799 duplexer 0.1.1 raynos dominictarr
  • Missing license property
810 validate.io-function 1.0.2 kgryte
  • Missing license property
811 entities 1.1.1 feedic "BSD-like"
  • license should be a valid SPDX license expression (without "LicenseRef"), "UNLICENSED", or "SEE LICENSE IN <filename>"
  • license is similar to the valid expression "BSD-2-Clause"
816 exports-loader 0.6.4 bebraw d3viant0ne ericclemmons jhnns peerigon sokra thelarkinn
  • Missing license property
824 mandrill-api 1.0.45 mailchimp
  • Missing license property
836 passport-http-bearer 1.0.1 jaredhanson
  • Missing license property
840 imagemagick 0.1.3 rsms
  • Missing license property
877 htmlparser 1.7.7 tautologistics
  • Missing license property
883 ftp 0.3.10 mscdex
  • Missing license property
886 rework 1.0.1 tjholowaychuk jonathanong jongleberry conradz necolas anthonyshort ianstormtaylor moox clintwood lydell slexaxton
  • Missing license property
888 useragent 2.1.13 v1 3rdeden {"type":"MIT","url":"https://github.com/3rd-Eden/useragent/blob/master/LICENSE"}
  • Invalid license property
894 readline 1.3.0 craigbrookes "BSD"
  • license should be a valid SPDX license expression (without "LicenseRef"), "UNLICENSED", or "SEE LICENSE IN <filename>"
  • license is similar to the valid expression "BSD-2-Clause"
898 i 0.3.5 pksunkara
  • Missing license property
903 co-request 1.0.0 leukhin
  • Missing license property
906 domready 1.0.8 ded fat
  • Missing license property
910 passport-http 0.3.0 jaredhanson
  • Missing license property
918 expect.js 0.3.1 rauchg
  • Missing license property
926 win-spawn 2.0.0 forbeslindesay "BSD"
  • license should be a valid SPDX license expression (without "LicenseRef"), "UNLICENSED", or "SEE LICENSE IN <filename>"
  • license is similar to the valid expression "BSD-2-Clause"
933 prelude-ls 1.1.2 gkz
  • Missing license property
934 browser-request 0.3.3 jhs maxogden
  • Missing license property
936 jasmine-node 1.14.5 mhevery tebriel
  • Missing license property
954 colorful 2.1.0 lepture
  • Missing license property
955 moment-range 3.0.3 adambiggs gf3 {"type":"Public Domain","url":"https://github.com/gf3/moment-range/raw/master/UNLICENSE"}
  • Invalid license property
970 eyes 0.1.8 cloudhead indexzero
  • Missing license property
976 has 1.0.1 tarruda
  • Missing license property
978 uid2 0.0.3 coreh
  • Missing license property
983 clear 0.0.1 bahamas10
  • Missing license property
999 node-getopt 0.2.3 jiangmiao
  • Missing license property
Fork me on GitHub