brin
brin

@grpc/grpc-js

npm

Is @grpc/grpc-js safe to use?

The latest brin safety scan flagged @grpc/grpc-js v1.14.3 with risk indicators that warrant review. No known CVE vulnerabilities. Trust score: 75/100. Review the findings below before use. This is an automated assessment and may contain errors.

Install (safety-checked)

@grpc/grpc-js Has Warnings

Warnings detected due to potential concerns

warning
CVEs

0

Threats

0

Install Scripts

0

Risk Indicators

  • Can spawn child processes

brin Recommendations

  • This package has warnings detected. Evaluate the specific concerns before proceeding.

Install with brin add @grpc/grpc-js to automatically apply these checks before installation.

This is an automated, point-in-time assessment and may contain errors. Findings are risk indicators, not confirmed threats. Security posture may change over time. Maintainers can dispute findings via the brin review process.

@grpc/grpc-js Capabilities & Permissions

What @grpc/grpc-js can access when installed. Review these capabilities before using with AI agents like Cursor, Claude Code, or Codex.

Network Access

This package makes network requests.

github.comnodejs.orgstackoverflow.comtools.ietf.orgwww.apache.org
Protocols: http, https, tcp

Filesystem Access

Reads from the filesystem.

.env (r).env (r).env (r).env (r)package.json (r).env (r)package.json (r).env (r)+6 more

Process Spawning

This package can spawn child processes.

Environment Variables

Accesses the following environment variables.

GRPC_DEFAULT_SSL_ROOTS_FILE_PATHGRPC_EXPERIMENTAL_ENABLE_OUTLIER_DETECTIONGRPC_NODE_TRACEGRPC_NODE_USE_ALTERNATIVE_RESOLVERGRPC_NODE_VERBOSITYGRPC_SSL_CIPHER_SUITESGRPC_TRACEGRPC_VERBOSITYgrpc_proxyhttp_proxy+3 more

AGENTS.md for @grpc/grpc-js

Good instructions lead to good results. brin adds @grpc/grpc-js documentation to your AGENTS.md so your agent knows how to use it properly—improving both safety and performance.

brin init

Vercel's research: 100% accuracy with AGENTS.md vs 53% without →

@grpc/grpc-js Documentation & Source Code

For the full @grpc/grpc-js README, API documentation, and source code, visit the official package registry.

View on npmView SourceHomepage

Frequently asked questions about @grpc/grpc-js safety

Weekly Downloads

24.4M

Version

1.14.3

License

Apache-2.0

Last Scanned

Feb 1, 2026

Trust Score

75/100·Legitimacy signals, not safety

Capabilities

Network

Connects to: github.com, nodejs.org, stackoverflow.com...

Filesystem

Reads files

Process

Spawns child processes

Environment

Accesses: GRPC_DEFAULT_SSL_ROOTS_FILE_PATH, GRPC_EXPERIMENTAL_ENABLE_OUTLIER_DETECTION, GRPC_NODE_TRACE...