npm - @cyberhub/trust-faker - Versions diffs - 1.0.62 → 1.0.64 - Mend

@cyberhub/trust-faker 1.0.62 → 1.0.64

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/README.md +11 -11
package/package.json +1 -1

package/README.md CHANGED Viewed

@@ -1,8 +1,8 @@
 # Security Trust Report: faker
-**faker@6.6.6: 54/100 | Grade: C | Tier: STANDARD** (confidence: ±3)
+**[faker@6.6.6](https://www.npmjs.com/package/faker): 54/100 | Grade: C | Tier: STANDARD** (confidence: ±3)
-> Data verified on 2026-04-02 from 8 security databases.
+> Scanned on 2026-04-10 from 8 security databases. [View package on npm →](https://www.npmjs.com/package/faker)
 ## TL;DR
@@ -41,7 +41,7 @@ Community:         █████████░░░░░░░░░░░
 - 🔴 **CRITICAL**: HISTORICAL BREACH: Maintainer sabotaged — deleted all code (2022)
 - 🔴 **CRITICAL**: Maintainer "marak" has history of package sabotage
-- 🟠 **HIGH**: Maintainer(s) removed in v2.1.4: fotoverite
+- 🟠 **HIGH**: Maintainer(s) removed in v2.1.4: fotoverite ([evidence](https://www.npmjs.com/package/faker/v/2.1.4))
 - 🟠 **HIGH**: 1 HIGH vulnerability detected
 ## 🛠️ What Should You Do?
@@ -55,22 +55,22 @@ Community:         █████████░░░░░░░░░░░
 ## 🔄 Safer Alternatives
-| Package | Why | Trust Report |
-|---------|-----|-------------|
-| **@faker-js/faker** | Community fork, actively maintained | [View score](https://nrupak.com/trust/%40faker-js%2Ffaker) |
-| **chance** | Random data generator | [View score](https://nrupak.com/trust/chance) |
+| Package | Why | npm | Trust Score |
+|---------|-----|-----|-------------|
+| **@faker-js/faker** | Community fork, actively maintained | [npm](https://www.npmjs.com/package/%40faker-js%2Ffaker) | [View score](https://nrupak.com/trust/%40faker-js%2Ffaker) |
+| **chance** | Random data generator | [npm](https://www.npmjs.com/package/chance) | [View score](https://nrupak.com/trust/chance) |
-## Maintainers
+## Maintainers (1)
-- ⛔ **[marak](https://nrupak.com/trust/maintainer/marak)** — COMPROMISED: Deliberately sabotaged colors and faker (2022)
+- ⛔ **[marak](https://www.npmjs.com/~marak)** — COMPROMISED: Deliberately sabotaged colors and faker (2022) ([Trust profile](https://nrupak.com/trust/maintainer/marak))
 **Methodology:** 18+ signals across 4 categories (Maintainer 35%, Package 25%, Supply Chain 25%, Community 15%). [Full scoring docs →](https://nrupak.com/trust)
 **Check your project:** `npm i -g @cyberhub/pkgtrust && pkgtrust scan faker` — [CLI docs](https://npmjs.com/package/@cyberhub/pkgtrust)
-**Data Sources:** GitHub Advisories · OSV.dev · npm audit · Snyk · Socket.dev · npms.io · Bundlephobia · deps.dev
+**Data Sources:** GitHub Advisories · OSV.dev · npm audit · Snyk · Socket.dev · npms.io · Bundlephobia · deps.dev · CISA KEV · Packagephobia · OpenSSF Scorecard · Ecosyste.ms · GitHub Enhanced · Keybase · npm Provenance
 ---
 *Report by [pkgtrust](https://nrupak.com/trust/faker) · [Dashboard](https://nrupak.com/trust) · [Compare](https://nrupak.com/trust/compare) · [CLI](https://npmjs.com/package/@cyberhub/pkgtrust)*
-*This is an automated security report. Not affiliated with the faker team. Updated 2026-04-02.*
+*This is an automated security report. Not affiliated with the faker team. Updated 2026-04-10.*

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@cyberhub/trust-faker",
-  "version": "1.0.62",
+  "version": "1.0.64",
   "description": "Security Trust Report: faker@6.6.6 — 54/100 (C, standard). 1 vulnerability found. Maintainer risk, supply chain analysis from 8 security databases.",
   "keywords": [
     "faker",