brin
brin

cross-fetch

npm

Is cross-fetch safe to use?

The latest brin safety scan flagged cross-fetch v4.1.0 with risk indicators that warrant review. No known CVE vulnerabilities. Trust score: 65/100. Review the findings below before use. This is an automated assessment and may contain errors.

Install (safety-checked)

cross-fetch Has Warnings

Warnings detected due to potential concerns

warning
CVEs

0

Threats

0

Install Scripts

0

Risk Indicators

  • Can spawn child processes

brin Recommendations

  • This package has warnings detected. Evaluate the specific concerns before proceeding.

Install with brin add cross-fetch to automatically apply these checks before installation.

This is an automated, point-in-time assessment and may contain errors. Findings are risk indicators, not confirmed threats. Security posture may change over time. Maintainers can dispute findings via the brin review process.

cross-fetch Capabilities & Permissions

What cross-fetch can access when installed. Review these capabilities before using with AI agents like Cursor, Claude Code, or Codex.

Network Access

This package makes network requests.

github.comscript.aculo.ustools.ietf.org
Protocols: http, https

Process Spawning

This package can spawn child processes.

AGENTS.md for cross-fetch

Good instructions lead to good results. brin adds cross-fetch documentation to your AGENTS.md so your agent knows how to use it properly—improving both safety and performance.

brin init

Vercel's research: 100% accuracy with AGENTS.md vs 53% without →

cross-fetch Documentation & Source Code

For the full cross-fetch README, API documentation, and source code, visit the official package registry.

View on npmView Source

Frequently asked questions about cross-fetch safety

Weekly Downloads

25.6M

Version

4.1.0

License

MIT

Last Scanned

Jan 31, 2026

Trust Score

65/100·Legitimacy signals, not safety

Capabilities

Network

Connects to: github.com, script.aculo.us, tools.ietf.org

Process

Spawns child processes