Book a demo →
npm package report

Is bcrypt safe?

Checked against the XYZ decision brain: known-malicious corpus, advisories, commit-level findings, dependencies and provenance.

cyberxyz.io/packages/npm/bcrypt
npm packagelast checked 2026-06-10

bcrypt · verdict ALLOW · no known risk

0.6/10
XYZ SCORE
SUMMARY

Verdict ALLOW · 40 known dependencies · provenance: none found

Re-check live →

SIGNALS
Anomaly HistoryclearOK

1 historical anomaly alert(s) (transitive_malicious_dep) on this package. Add a version to check whether it is affected.

DEPENDENCIES
bindings@1.0.0clean
bindings@1.2.0clean
bindings@1.2.1clean
bindings@1.3.0clean
jest@^29.1.2clean
jest@^29.6.2clean
jest@^29.7.0clean
@mapbox/node-pre-gyp@^1.0.0clean
@mapbox/node-pre-gyp@^1.0.10clean
@mapbox/node-pre-gyp@^1.0.11clean
nan@1.3.0clean
nan@1.5.0clean
nan@1.7.0clean
nan@1.8.4clean
nan@2.0.5clean
nan@2.10.0clean
nan@2.11.0clean
nan@2.11.1clean
nan@2.12.1clean
nan@2.13.1clean
PACKAGE bcryptECOSYSTEM npmDECISION ALLOW

Baked snapshot · run a live check for the current verdict · browse all packages