@cyberhub/trust-faker 1.0.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +38 -0
- package/package.json +20 -0
package/README.md
ADDED
|
@@ -0,0 +1,38 @@
|
|
|
1
|
+
# Security Trust Report: faker
|
|
2
|
+
|
|
3
|
+
**Score: 56/100 | Grade: C+ | Tier: STANDARD**
|
|
4
|
+
|
|
5
|
+
> This package has notable risk factors. Review flags below.
|
|
6
|
+
|
|
7
|
+
## Score Breakdown
|
|
8
|
+
|
|
9
|
+
| Category | Score |
|
|
10
|
+
|----------|-------|
|
|
11
|
+
| Maintainer Trust | 38/100 |
|
|
12
|
+
| Package Health | 99/100 |
|
|
13
|
+
| Supply Chain | 47/100 |
|
|
14
|
+
| Community | 43/100 |
|
|
15
|
+
|
|
16
|
+
## Vulnerabilities
|
|
17
|
+
|
|
18
|
+
**1 vulnerabilities** (Critical: 0, High: 1)
|
|
19
|
+
|
|
20
|
+
## Flags
|
|
21
|
+
|
|
22
|
+
- **CRITICAL**: HISTORICAL BREACH: Maintainer sabotaged — deleted all code (2022)
|
|
23
|
+
- **CRITICAL**: Maintainer "marak" has history of package sabotage
|
|
24
|
+
- **HIGH**: Maintainer(s) removed in v2.1.4: fotoverite
|
|
25
|
+
- **HIGH**: 1 HIGH severity vulnerability(ies) detected
|
|
26
|
+
- **MEDIUM**: New maintainer(s) added in v2.0.0: marak
|
|
27
|
+
- **MEDIUM**: Single maintainer — bus factor risk
|
|
28
|
+
- **MEDIUM**: Package dormant — last published 1548 days ago
|
|
29
|
+
- **MEDIUM**: No GitHub repo found — community signals unavailable
|
|
30
|
+
- **LOW**: Erratic publish cadence — highly irregular release intervals
|
|
31
|
+
- **LOW**: Single maintainer using free email service
|
|
32
|
+
|
|
33
|
+
## Maintainers
|
|
34
|
+
|
|
35
|
+
- marak (2FA)
|
|
36
|
+
|
|
37
|
+
---
|
|
38
|
+
*[pkgtrust](https://nrupak.com/trust/faker) | [Dashboard](https://nrupak.com/trust) | Updated 2026-04-02*
|
package/package.json
ADDED
|
@@ -0,0 +1,20 @@
|
|
|
1
|
+
{
|
|
2
|
+
"name": "@cyberhub/trust-faker",
|
|
3
|
+
"version": "1.0.0",
|
|
4
|
+
"description": "Security Trust Report for faker — 56/100 (C+, standard). Maintainer risk and vulnerability analysis from 8 security databases.",
|
|
5
|
+
"keywords": [
|
|
6
|
+
"faker",
|
|
7
|
+
"security",
|
|
8
|
+
"trust-score",
|
|
9
|
+
"vulnerability",
|
|
10
|
+
"pkgtrust",
|
|
11
|
+
"CVE"
|
|
12
|
+
],
|
|
13
|
+
"license": "MIT",
|
|
14
|
+
"author": "Nrupak Shah",
|
|
15
|
+
"repository": {
|
|
16
|
+
"type": "git",
|
|
17
|
+
"url": "https://github.com/nrupaks/pkgtrust"
|
|
18
|
+
},
|
|
19
|
+
"homepage": "https://nrupak.com/trust/faker"
|
|
20
|
+
}
|