pacote
npmIs pacote safe to use?
The latest brin safety scan flagged pacote v21.1.0 with risk indicators that warrant review. No known CVE vulnerabilities. Trust score: 85/100. Review the findings below before use. This is an automated assessment and may contain errors.
Install (safety-checked)
pacote Has Warnings
Warnings detected due to potential concerns
0
0
0
Risk Indicators
- •Can spawn child processes
brin Recommendations
- →This package has warnings detected. Evaluate the specific concerns before proceeding.
Install with brin add pacote to automatically apply these checks before installation.
This is an automated, point-in-time assessment and may contain errors. Findings are risk indicators, not confirmed threats. Security posture may change over time. Maintainers can dispute findings via the brin review process.
pacote Capabilities & Permissions
What pacote can access when installed. Review these capabilities before using with AI agents like Cursor, Claude Code, or Codex.
Network Access
This package makes network requests.
Process Spawning
This package can spawn child processes.
Environment Variables
Accesses the following environment variables.
AGENTS.md for pacote
Good instructions lead to good results. brin adds pacote documentation to your AGENTS.md so your agent knows how to use it properly—improving both safety and performance.
brin initVercel's research: 100% accuracy with AGENTS.md vs 53% without →
pacote Documentation & Source Code
For the full pacote README, API documentation, and source code, visit the official package registry.
Frequently asked questions about pacote safety
Install (safety-checked)
Weekly Downloads
Version
21.1.0License
ISCLast Scanned
Trust Score
Capabilities
Connects to: registry.npmjs.org
Spawns child processes
Accesses: HOME, LOCALAPPDATA, _PACOTE_NO_PREPARE_