هل Which آمن؟

Which — Nerq Trust Score 64.7/100 (الدرجة C+). بناءً على تحليل 2 أبعاد للثقة، يُعتبر آمنًا بشكل عام مع بعض المخاوف. آخر تحديث: 2026-03-31.

استخدم Which بحذر. Which is a Node.js package with a Nerq Trust Score of 64.7/100 (C+), based on 3 independent data dimensions. It is below the recommended threshold of 70. Security: 80/100. Popularity: 95/100. البيانات مصدرها قراءة آلية.

هل Which آمن؟

CAUTION — Which has a Nerq Trust Score of 64.7/100 (C+). It has moderate trust signals but shows some areas of concern that warrant attention. Suitable for development use — review security and maintenance signals before production deployment.

تحليل الأمان → تقرير الخصوصية →

ما هي درجة ثقة Which؟

حصل Which على درجة ثقة Nerq تبلغ 64.7/100 بدرجة C+. يعتمد هذا التقييم على 2 أبعاد مُقاسة بشكل مستقل.

الأمان
80
الشعبية
95

ما هي النتائج الأمنية الرئيسية لـ Which؟

أقوى إشارة لـ Which هي الشعبية بدرجة 95/100. لم يتم اكتشاف أي ثغرات أمنية معروفة. لم يصل بعد إلى عتبة التحقق من Nerq البالغة 70+.

Security score: 80/100 (strong)
Popularity: 95/100 — community adoption

ما هو Which ومن يديره؟

المؤلفgar
الفئةnpm
المصدرN/A

Which عبر المنصات

منتجات من نفس المطور

which
48/100 · crates
Which?
42/100 · ios
Dark mode for Substack
31/100 · firefox

Npm مشابهة حسب درجة الثقة

babel-plugin-jest-hoist (74)@smithy/util-stream (74)@aws-sdk/middleware-bucket-endpoint (74)@aws-sdk/middleware-ssec (74)@aws-sdk/middleware-location-constraint (74)
عرض جميع Npm الأكثر أمانًا →

دليل الأمان: Which

ما هو Which?

Which is a Node.js package — Like which(1) unix command. Find the first instance of an executable in the PATH..

How to Verify Safety

Run npm audit to check for vulnerabilities. Review the package's GitHub repository for recent commits.

You can also check the trust score via API: GET /v1/preflight?target=which

Key Safety Concerns for Node.js packages

When evaluating any Node.js package, watch for: dependency vulnerabilities, malicious packages, typosquatting.

Trust Assessment

Which has a Nerq Trust Score of 65/100 (C+) and has not yet reached Nerq trust threshold (70+). This score is based on automated analysis of security, maintenance, community, and quality signals.

Key Takeaways

تحليل مفصل للدرجة

DimensionScore
Security80/100
الخصوصية80/100
Reliability90/100
Transparency85/100
Maintenance60/100

Based on 5 dimensions. Data from npm registry, GitHub repository, NVD, OSV.dev, and OpenSSF Scorecard.

ما البيانات التي يجمعها Which؟

Which is a Node.js package maintained by gar. It receives approximately 112,436,732 weekly downloads. Licensed under ISC.

As a development package, Which does not directly collect end-user personal data. However, applications built with it may collect data depending on implementation. Privacy score: 80/100.

Review the package's dependencies for potential supply chain risks. Run your package manager's audit command regularly.

Full analysis: تقرير الخصوصية · الخصوصية review

هل Which آمن؟

Security score: 80/100. Which has 0 known vulnerabilities (CVEs) in the National Vulnerability Database. This is a clean record.

Licensed under ISC, allowing code inspection. Open-source packages allow independent security review of the source code.

Run your package manager's audit command (`npm audit`, `pip audit`, `cargo audit`) to check for known vulnerabilities in your dependency tree.

Full analysis: Which Security Report

Which عبر المنصات

منتجات من نفس المطور

which (crates, 48/100)Which? (ios, 42/100)Dark mode for Substack (firefox, 31/100)

كيف حسبنا هذه الدرجة

Which's trust score of 64.7/100 (C+) is computed from npm registry, GitHub repository, NVD, OSV.dev, and OpenSSF Scorecard. The score reflects 5 independent dimensions: security (80/100), privacy (80/100), reliability (90/100), transparency (85/100), maintenance (60/100). Each dimension is weighted equally to produce the composite trust score.

Nerq analyzes over 7.5 million entities across 26 registries using the same methodology, enabling direct cross-entity comparison. Scores are updated continuously as new data becomes available.

This page was last reviewed on March 31, 2026. Data version: 1.0.

Full methodology documentation · قراءة آلية data (JSON API)

الأسئلة الشائعة

Is Which safe to use?
Use with some caution. which has a Nerq Trust Score of 64.7/100 (C+). Strongest signal: الشعبية (95/100). Score based on security (80/100), popularity (95/100).
ما هو Which's trust score?
which: 64.7/100 (C+). Score based on: security (80/100), popularity (95/100). Scores update as new data becomes available. API: GET nerq.ai/v1/preflight?target=which
What are safer alternatives to Which?
In the npm category, more Node.js packages are being analyzed — check back soon. which scores 64.7/100.
Does Which have known vulnerabilities?
Nerq checks Which against NVD, OSV.dev, and registry-specific vulnerability databases. Current security score: 80/100. Run your package manager's audit command for the latest findings.
How actively maintained is Which?
Which has a trust score of 64.7/100 (C+). Below Nerq Verified threshold — conduct additional review.
API: /v1/preflight Trust Badge واجهة برمجة التطبيقات Docs

Popular in npm

Babel Plugin Jest Hoist 74Util Stream 74Middleware Bucket Endpoint 74Middleware Ssec 74Middleware Location Constraint 74Middleware Retry 74Webpack 74Util User Agent Node 74Signature V4 Multi Region 74Middleware User Agent 74Config Resolver 74Middleware Sdk S3 74

Browse Categories

npm PackagesInfrastructureSecurity Tools

Recently Analyzed

Descript (Audio) ai_toolExpress npmAirbrake saasExpedia: Hotels, Flights, androidRedbox androidAgentsync saasFox Sports androidCastle Crush:Epic Battle androidYoutube Tv androidBrowserstack saas

Disclaimer: درجات ثقة Nerq هي تقييمات آلية مبنية على إشارات متاحة للعموم. وهي ليست توصيات أو ضمانات. قم دائمًا بإجراء العناية الواجبة الخاصة بك.

Apps Packages Websites VPNs Games Extensions WordPress Countries Charities Compare Check Website
We use cookies for analytics and caching. الخصوصية Policy