brin
brin

@pulumi/pulumi

npm

Is @pulumi/pulumi safe to use?

Based on the latest brin safety scan, no vulnerabilities or threats were detected for @pulumi/pulumi v3.220.0. Trust score: 75/100. No known CVE vulnerabilities, no detected threat patterns, and no suspicious capabilities identified. This is an automated, point-in-time assessment.

Install (safety-checked)

@pulumi/pulumi Passed Security Checks

No security concerns detected

clean
CVEs

0

Threats

0

Install Scripts

0

No Concerns Detected

No security concerns detected in the latest brin assessment. This is an automated, point-in-time evaluation — security posture may change.

This is an automated, point-in-time assessment and may contain errors. Findings are risk indicators, not confirmed threats. Security posture may change over time. Maintainers can dispute findings via the brin review process.

@pulumi/pulumi Capabilities & Permissions

What @pulumi/pulumi can access when installed. Review these capabilities before using with AI agents like Cursor, Claude Code, or Codex.

Network Access

This package makes network requests.

blakeembrey.mecaniuse.comchromium.googlesource.comdocs.npmjs.comget.pulumi.comgithub.comnodejs.orgpkg.go.devstackoverflow.comwww.apache.org+4 more
Protocols: http, https

Filesystem Access

Reads and writes to the filesystem.

.env (rw)node_modules (rw)package.json (rw)node_modules (rw)node_modules (rw)node_modules (rw)package.json (rw)node_modules (rw)+32 more

Process Spawning

This package can spawn child processes.

Environment Variables

Accesses the following environment variables.

PATHPULUMI_DEBUG_PROMISE_LEAKSPULUMI_DISABLE_RESOURCE_REFERENCESPULUMI_ERROR_OUTPUT_STRINGPULUMI_EXPERIMENTALPULUMI_NODEJS_SKIP_COMPONENT_INPUTSPULUMI_NODEJS_TRANSPILE_ONLYPULUMI_NODEJS_TSCONFIG_PATHPULUMI_NODEJS_TYPESCRIPTSystemRoot+14 more

AGENTS.md for @pulumi/pulumi

Good instructions lead to good results. brin adds @pulumi/pulumi documentation to your AGENTS.md so your agent knows how to use it properly—improving both safety and performance.

brin init

Vercel's research: 100% accuracy with AGENTS.md vs 53% without →

@pulumi/pulumi Documentation & Source Code

For the full @pulumi/pulumi README, API documentation, and source code, visit the official package registry.

View on npmView SourceHomepage

Frequently asked questions about @pulumi/pulumi safety

Weekly Downloads

1.1M

Version

3.220.0

License

Apache-2.0

Other Versions

3.219.0
3.218.0warning

Last Scanned

Feb 10, 2026

Trust Score

75/100·Legitimacy signals, not safety

Capabilities

Network

Connects to: blakeembrey.me, caniuse.com, chromium.googlesource.com...

Filesystem

Reads & Writes files

Process

Spawns child processes

Environment

Accesses: PATH, PULUMI_DEBUG_PROMISE_LEAKS, PULUMI_DISABLE_RESOURCE_REFERENCES...

Is @pulumi/pulumi Safe? | npm Safety Scan - brin