Book a demo →
npm package report

Is cors safe?

Checked against the XYZ decision brain: known-malicious corpus, advisories, commit-level findings, dependencies and provenance.

cyberxyz.io/packages/npm/cors
npm packagelast checked 2026-06-10

cors · verdict ALLOW · no known risk

0.6/10
XYZ SCORE
SUMMARY

Verdict ALLOW · 35 known dependencies · provenance: none found

Re-check live →

SIGNALS
All signals clearclearOK

No known-malicious match, advisory, commit-level finding or anomaly.

DEPENDENCIES
after@0.8.2clean
basic-auth-connect@^1clean
basic-auth-connect@^1.0.0clean
body-parser@^1.12.4clean
body-parser@^1.4.3clean
eslint@^0.21.2clean
eslint@2.13.1clean
express@*clean
express@^3clean
express@^4clean
express@^4.12.4clean
express@4.16.3clean
istanbul@^0.4.5clean
lint@*clean
lint@^1.1.2clean
mocha@*clean
mocha@^1.18.2clean
mocha@^2.2.5clean
mocha@3.4.2clean
mocha@5.2.0clean
PACKAGE corsECOSYSTEM npmDECISION ALLOW

Baked snapshot · run a live check for the current verdict · browse all packages