undici - dependency health snapshot - depmedic

depmedic / health / undici

undici v5.15.0

An HTTP/1.1 client, written from scratch for Node.js

B
87/100 depmedic health score
snapshot taken 2026-04-28T07:19:42.965Z

Score breakdown

Popularity59/100
Maintenance100/100
Quality95/100
Risk (penalty for deprecated)100/100

Snapshot

Weekly downloads
643.1K
Monthly downloads
11.2M
npm dependents
0
GitHub stars
4.5K
Open issues
113
License
MIT
TypeScript types
no
Maintainers (top 5)
matteo.collina, ronag, ethan_arrowood

Embed the badge

Drop one of these into your README. Updates whenever depmedic re-runs the snapshot.

depmedic health: 87/100 (B)

![depmedic health](https://depmedicdev-byte.github.io/health/badge/undici.svg)

Use depmedic locally on this package

# In your project that depends on undici:
npm install undici
npx depmedic                    # vulnerability triage on your install
npx depmedic --severity=high    # CI-friendly: exits 1 on high+critical

Want a deep audit of undici for vendor review?

The Vendor Dossier PDF goes deeper than this snapshot: full advisory list (resolved + open), maintainer drift, release cadence, transitive risk, license tree. $9 one-time per package.

Order Vendor Dossier ($9) More tools

Org-wide monitoring

Track every package across your repos. Get an email when any one slips below your minimum grade. $19/mo.

Org Dep Health Monitor ($19/mo)