Version 5.105.0 • License MIT
One-Line Verdict
"Heavy install size detected. Review bloat risk."
Poor
Actively Maintained
4 CVE History
Historical vulnerabilities found.
5.5 MB
Critical Bloat: 5.5 MB
38,493,536
Highly Trusted
Package Payload
25 Direct
Dependency Hell Risk: High chain complexity.
Cold-Start Impact
+83 ms
Estimated execution overhead on standard hardware.
Current Threat Level
Risk Detected
Our audit detected 4 active or historical security flags. Critical CVEs have been mapped to this library.
Accuracy Protocol
Scanned against OSV.dev (Google Open Source) databases. Last Deep-Scan: 2026.
Is webpack too heavy? Compare it with these industry standards:
"Packs ECMAScript/CommonJs/AMD modules for the browser. Allows you to split your codebase into multiple bundles, which can be loaded on demand. Supports loaders to preprocess files, i.e. json, jsx, es7, css, less, ... and your custom stuff."
webpack is used to facilitate high-performance Node.js workflows. It provides a robust footprint of 5.5 MB on disk.
# Install via NPM
npm install webpack
# Install via Yarn
yarn add webpack
You are currently viewing a proprietary security audit for webpack on PAudit. We aggregate global databases to provide a safety rating of 45/100.
Run npm install webpack. This installs version 5.105.0 and adds 25 direct dependencies to your project.
Yes, webpack records 38,493,536 weekly downloads, making it a Highly Trusted part of the ecosystem.