lodash - dependency health snapshot - depmedic

depmedic / health / lodash

lodash v4.17.21

Lodash modular utilities.

B
85/100 depmedic health score
snapshot taken 2026-04-28T07:19:37.015Z

Score breakdown

Popularity94/100
Maintenance83/100
Quality68/100
Risk (penalty for deprecated)100/100

Snapshot

Weekly downloads
0
Monthly downloads
193.3M
npm dependents
0
GitHub stars
55.1K
Open issues
462
License
MIT
TypeScript types
no
Maintainers (top 5)
mathias, jdalton, bnjmnt4n

Embed the badge

Drop one of these into your README. Updates whenever depmedic re-runs the snapshot.

depmedic health: 85/100 (B)

![depmedic health](https://depmedicdev-byte.github.io/health/badge/lodash.svg)

Use depmedic locally on this package

# In your project that depends on lodash:
npm install lodash
npx depmedic                    # vulnerability triage on your install
npx depmedic --severity=high    # CI-friendly: exits 1 on high+critical

Want a deep audit of lodash for vendor review?

The Vendor Dossier PDF goes deeper than this snapshot: full advisory list (resolved + open), maintainer drift, release cadence, transitive risk, license tree. $9 one-time per package.

Order Vendor Dossier ($9) More tools

Org-wide monitoring

Track every package across your repos. Get an email when any one slips below your minimum grade. $19/mo.

Org Dep Health Monitor ($19/mo)