brin
brin

vscode-ripgrep

npm

Is vscode-ripgrep safe to use?

Based on the latest brin safety scan, no vulnerabilities or threats were detected for vscode-ripgrep v1.13.2. Trust score: 65/100. No known CVE vulnerabilities, no detected threat patterns, and no suspicious capabilities identified. This is an automated, point-in-time assessment.

Install (safety-checked)

vscode-ripgrep Passed Security Checks

No security concerns detected

clean
CVEs

0

Threats

0

Install Scripts

1

Install Scripts Detected

postinstall

This package runs scripts during installation. Review these scripts before installing.

No Concerns Detected

No security concerns detected in the latest brin assessment. This is an automated, point-in-time evaluation — security posture may change.

This is an automated, point-in-time assessment and may contain errors. Findings are risk indicators, not confirmed threats. Security posture may change over time. Maintainers can dispute findings via the brin review process.

vscode-ripgrep Capabilities & Permissions

What vscode-ripgrep can access when installed. Review these capabilities before using with AI agents like Cursor, Claude Code, or Codex.

Network Access

This package makes network requests.

api.github.comstackoverflow.com
Protocols: https

Filesystem Access

Writes to the filesystem.

package.json (w).env (w)

Process Spawning

This package can spawn child processes.

Environment Variables

Accesses the following environment variables.

GITHUB_TOKENnpm_config_arch

AGENTS.md for vscode-ripgrep

Good instructions lead to good results. brin adds vscode-ripgrep documentation to your AGENTS.md so your agent knows how to use it properly—improving both safety and performance.

brin init

Vercel's research: 100% accuracy with AGENTS.md vs 53% without →

vscode-ripgrep Documentation & Source Code

For the full vscode-ripgrep README, API documentation, and source code, visit the official package registry.

View on npmView SourceHomepage

Frequently asked questions about vscode-ripgrep safety

Weekly Downloads

5.2K

Version

1.13.2

License

MIT

Last Scanned

3 hours ago

Trust Score

65/100·Legitimacy signals, not safety

Install Scripts

This package has install scripts that run automatically:

postinstall

Capabilities

Network

Connects to: api.github.com, stackoverflow.com

Filesystem

Writes files

Process

Spawns child processes

Environment

Accesses: GITHUB_TOKEN, npm_config_arch

Is vscode-ripgrep Safe? | npm Safety Scan - brin