NPM Sentinel MCP

Name: NPM Sentinel MCP
Rating: 3.24 (1 reviews)
Author: Nekzus

#804 · by Nekzus

agent tool-use multi-step

3.24/ 5.00

trustedBeta

Mar 3, 2026 at 7:21 AM6 signals analysedNo manual reviews · fully automated

Trust Signal Breakdown

high23 sub-signals across 6 dimensions

CVEs, dependency health, and supply chain integrity

0 of 3 sub-signals with data

Known CVEsno data—

Weight redistributed to sub-signals with data

Dependency Healthno data—

Weight redistributed to sub-signals with data

Supply Chainno data—

Weight redistributed to sub-signals with data

Uptime, latency, error rates, and incident history

4 of 4 sub-signals with data

Uptime35%5.0

100.00% over 3 checks

via Health checks

Response Latency25%5.0

p99: 166ms, p50: 146ms

via Health checks

Error Rate20%1.0

33.33% error rate (1/3)

via Health checks

Incident History20%3.0

2 incidents in last 90 days

via Incidents table

Commit recency, release cadence, issue response, CI/CD

3 of 4 sub-signals with data

Commit Recency37%4.0

via GitHub

Release Cadence31%4.0

via GitHub

Issue Responseno data—

Weight redistributed to sub-signals with data

CI/CD Presence31%5.0

via GitHub Actions

Downloads, stars, dependents, and growth trajectory

1 of 4 sub-signals with data

Download Volumeno data—

Weight redistributed to sub-signals with data

GitHub Stars100%1.0

18 stars

via GitHub

Dependent Packagesno data—

Weight redistributed to sub-signals with data

Growth Trendno data—

Weight redistributed to sub-signals with data

License, documentation, security policy, changelog

4 of 4 sub-signals with data

Open Source30%5.0

Public repo with OSI-approved license (mit)

via GitHub

Documentation25%4.0

Good README (>2000 bytes with examples)

via GitHub

Security Policy20%5.0

SECURITY.md present

via GitHub

Changelog25%5.0

CHANGELOG.md present and releases exist

via GitHub

Track record, org maturity, community standing

4 of 4 sub-signals with data

Track Record30%1.0

Internal: 1.0 (0 services), External: 1.0 (9 followers, 28 stars)

via Fabric index

Org Maturity30%4.0

User account, 4.7 years old

via GitHub

Community Standing20%4.0

95 public repositories

via GitHub

Cross-Platform20%1.0

Present on 1 platform(s): github

via Registry scan

About this score

Scored across 23 sub-signals in 6 dimensionsScoring engine v1 (beta) — actively being expandedPhase 1: Core sub-signal architecture (live)Phase 2: Permission scope & expanded collection (in progress)

Trust AssessmentAI Assessment

Provide AI-powered real-time analysis and intelligence on NPM packages, including security, dependencies, performance, and quality metrics. Enable faster and safer package management decisions by integrating with Claude and Anthropic AI. Deliver comprehensive insights such as vulnerability scanning, download trends, and maintenance status to optimize your npm ecosystem.

Package Availability (30d)

100.00%

p50: 146ms · p99: 166ms

Avg Latency

109ms

averaged across 30d health checks

Weekly Downloads

—

no package registry data

Transparency & Compliance4/5 passed

✓

Open Source CodePublic repository on GitHub