@osohq/langchain

Name: @osohq/langchain
Rating: 3.04 (1 reviews)
Author: GitHub Actions

#1685 · by GitHub Actions

infra serverless GPU

3.04/ 5.00

trustedBeta

Mar 4, 2026 at 11:29 PM6 signals analysedNo manual reviews · fully automated

Trust Signal Breakdown

medium23 sub-signals across 6 dimensions

CVEs, dependency health, and supply chain integrity

3 of 3 sub-signals with data

Known CVEs40%5.0

No known CVEs

via OSV.dev

Dependency Health30%5.0

2 dependencies (minimal)

via npm / PyPI

Supply Chain30%5.0

1 transitive CVEs found (penalty: -0.04)

via npm provenance

Uptime, latency, error rates, and incident history

4 of 4 sub-signals with data

Uptime35%5.0

100.00% over 4 checks

via Health checks

Response Latency25%4.0

p99: 386ms, p50: 385ms

via Health checks

Error Rate20%5.0

0.00% error rate (0/4)

via Health checks

Incident History20%3.0

2 incidents in last 90 days

via Incidents table

Commit recency, release cadence, issue response, CI/CD

0 of 4 sub-signals with data

Commit Recencyno data—

Weight redistributed to sub-signals with data

Release Cadenceno data—

Weight redistributed to sub-signals with data

Issue Responseno data—

Weight redistributed to sub-signals with data

CI/CD Presenceno data—

Weight redistributed to sub-signals with data

Downloads, stars, dependents, and growth trajectory

2 of 4 sub-signals with data

Download Volume67%3.5

19,119 weekly downloads

via npm / PyPI

GitHub Starsno data—

Weight redistributed to sub-signals with data

Dependent Packagesno data—

Weight redistributed to sub-signals with data

Growth Trend33%3.0

-3.8% week-over-week

via npm

License, documentation, security policy, changelog

0 of 4 sub-signals with data

Open Sourceno data—

Weight redistributed to sub-signals with data

Documentationno data—

Weight redistributed to sub-signals with data

Security Policyno data—

Weight redistributed to sub-signals with data

Changelogno data—

Weight redistributed to sub-signals with data

Track record, org maturity, community standing

4 of 4 sub-signals with data

Track Record30%4.0

Internal: 4.0 (82 services), External: 3.5 (2184 followers, 7593 stars)

via Fabric index

Org Maturity30%5.0

User account, 10.7 years old

via GitHub

Community Standing20%5.0

161 public repositories

via GitHub

Cross-Platform20%3.0

Present on 2 platform(s): github, npm

via Registry scan

About this score

Scored across 23 sub-signals in 6 dimensionsScoring engine v1 (beta) — actively being expandedPhase 1: Core sub-signal architecture (live)Phase 2: Permission scope & expanded collection (in progress)

Trust AssessmentAI Assessment

@osohq/langchain is an Apache-2.0 licensed npm package published by GitHub Actions that provides callback handlers for monitoring LangChain 0.x agent events through Oso's platform. The package shows no vulnerabilities and minimal dependencies (2 total), but maintenance and transparency signals are absent, indicating limited visibility into development activity or governance practices. With only 17.7K weekly downloads and reliance on automated publishing, teams should verify ongoing support commitments before adopting this integration for production agent monitoring.

Generated by Fabric AI · Mar 4, 2026 at 4:10 AM

Package Availability (30d)

100.00%

p50: 385ms · p99: 386ms

Avg Latency

361ms

averaged across 30d health checks

Weekly Downloads

19.1k-4%

npm weekly

Incidents & Alertslast 90 days

Mar 4Trust score decreased by 1.463.04