Version 6.37.7 • License MIT
One-Line Verdict
"Heavy install size detected. Review bloat risk."
Caution
Actively Maintained
16 CVE History
Historical vulnerabilities found.
2.8 MB
Heavy: 2.8 MB
2,395,864
Highly Trusted
Package Payload
16 Direct
Dependency Hell Risk: High chain complexity.
Cold-Start Impact
+42 ms
Estimated execution overhead on standard hardware.
Current Threat Level
Risk Detected
Our audit detected 16 active or historical security flags. Critical CVEs have been mapped to this library.
Accuracy Protocol
Scanned against OSV.dev (Google Open Source) databases. Last Deep-Scan: 2026.
Is sequelize too heavy? Compare it with these industry standards:
"Sequelize is a promise-based Node.js ORM tool for Postgres, MySQL, MariaDB, SQLite, Microsoft SQL Server, Amazon Redshift and Snowflake’s Data Cloud. It features solid transaction support, relations, eager and lazy loading, read replication and more."
sequelize is used to facilitate high-performance Node.js workflows. It provides a robust footprint of 2.8 MB on disk.
# Install via NPM
npm install sequelize
# Install via Yarn
yarn add sequelize
You are currently viewing a proprietary security audit for sequelize on PAudit. We aggregate global databases to provide a safety rating of 65/100.
Run npm install sequelize. This installs version 6.37.7 and adds 16 direct dependencies to your project.
Yes, sequelize records 2,395,864 weekly downloads, making it a Highly Trusted part of the ecosystem.