npm package report

Is commander safe?

Checked against the XYZ decision brain: known-malicious corpus, advisories, commit-level findings, dependencies and provenance.

cyberxyz.io/packages/npm/commander

npm packagelast checked 2026-06-10

commander · verdict ALLOW · no known risk

0.6/10

XYZ SCORE

SUMMARY

Verdict ALLOW · 40 known dependencies · provenance: none found

SIGNALS

All signals clearclearOK

No known-malicious match, advisory, commit-level finding or anomaly.

DEPENDENCIES

eslint@^3.19.0clean

eslint@^4.19.1clean

eslint@^5.2.0clean

eslint@^5.3.0clean

eslint@^5.5.0clean

eslint@^5.6.1clean

eslint@^6.0.1clean

eslint@^6.1.0clean

eslint@^6.4.0clean

eslint@^6.7.0clean

eslint@^6.8.0clean

eslint@^7.11.0clean

eslint@^7.15.0clean

eslint@^7.17.0clean

eslint@^7.26.0clean

eslint@^7.27.0clean

eslint@^7.29.0clean

eslint@^8.19.0clean

eslint@^8.30.0clean

eslint@^8.57.1clean

PACKAGE commanderECOSYSTEM npmDECISION ALLOW

Baked snapshot · run a live check for the current verdict · browse all packages