Version 2.0.12 • License MIT
One-Line Verdict
"Heavy install size detected. Review bloat risk."
Poor
Actively Maintained
1 CVE History
Historical vulnerabilities found.
6.6 MB
Critical Bloat: 6.6 MB
83,811
Highly Trusted
Package Payload
5 Direct
Clean dependency structure.
Cold-Start Impact
+99 ms
Estimated execution overhead on standard hardware.
Current Threat Level
Risk Detected
Our audit detected 1 active or historical security flags. Critical CVEs have been mapped to this library.
Accuracy Protocol
Scanned against OSV.dev (Google Open Source) databases. Last Deep-Scan: 2026.
Is @lottiefiles/lottie-player too heavy? Compare it with these industry standards:
"Lottie animation and Telegram Sticker player web components."
@lottiefiles/lottie-player is used to facilitate high-performance Node.js workflows. It provides a robust footprint of 6.6 MB on disk.
# Install via NPM
npm install @lottiefiles/lottie-player
# Install via Yarn
yarn add @lottiefiles/lottie-player
You are currently viewing a proprietary security audit for @lottiefiles/lottie-player on PAudit. We aggregate global databases to provide a safety rating of 35/100.
Run npm install @lottiefiles/lottie-player. This installs version 2.0.12 and adds 5 direct dependencies to your project.
Yes, @lottiefiles/lottie-player records 83,811 weekly downloads, making it a Highly Trusted part of the ecosystem.