Is Bump2Version Safe?

Bump2Version — Nerq Trust Score 67.0/100 (B- grade). Based on analysis of 2 trust dimensions, it is generally safe but has some concerns. Last updated: 2026-04-03.

Use Bump2Version with some caution. Bump2Version is a Python package with a Nerq Trust Score of 67.0/100 (B-), based on 3 independent data dimensions. It is below the recommended threshold of 70. Security: 90/100. Popularity: 75/100. Data sourced from PyPI registry, GitHub repository, NVD, OSV.dev, and OpenSSF Scorecard. Last updated: 2026-04-03. Machine-readable data (JSON).

Is Bump2Version safe?

CAUTION — Bump2Version has a Nerq Trust Score of 67.0/100 (B-). It has moderate trust signals but shows some areas of concern that warrant attention. Suitable for development use — review security and maintenance signals before production deployment.

Security Analysis → {name} Privacy Report →

What is Bump2Version's trust score?

Bump2Version has a Nerq Trust Score of 67.0/100, earning a B- grade. This score is based on 2 independently measured dimensions including security, maintenance, and community adoption.

Security
90
Popularity
75

What are the key security findings for Bump2Version?

Bump2Version's strongest signal is security at 90/100. No known vulnerabilities have been detected. It has not yet reached the Nerq Verified threshold of 70+.

Security score: 90/100 (strong)
Popularity: 75/100 — community adoption

What is Bump2Version and who maintains it?

AuthorChristian Verkerk
Categorypypi
SourceN/A

Bump2Version Across Platforms

Same developer/company in other registries:

bump2version
57/100 · crates

Similar Pypi by Trust Score

asttokens (77)statsmodels (77)agate (77)azure-eventgrid (77)cdk-nag (77)
See all safest Pypi →

Compare

Bump2Version vs asttokensBump2Version vs statsmodelsBump2Version vs agate

Safety Guide: Bump2Version

What is Bump2Version?

Bump2Version is a Python package — Version-bump your software with a single command!.

How to Verify Safety

Run pip audit or safety check. Review on PyPI for download stats.

You can also check the trust score via API: GET /v1/preflight?target=bump2version

Key Safety Concerns for Python packages

When evaluating any Python package, watch for: dependency vulnerabilities, malicious uploads, maintenance status.

Trust Assessment

Bump2Version has a Nerq Trust Score of 67/100 (B-) and has not yet reached Nerq trust threshold (70+). This score is based on automated analysis of security, maintenance, community, and quality signals.

Key Takeaways

Frequently Asked Questions

Is Bump2Version safe to use?
Use with some caution. bump2version has a Nerq Trust Score of 67.0/100 (B-). Strongest signal: security (90/100). Score based on security (90/100), popularity (75/100).
What is Bump2Version's trust score?
bump2version: 67.0/100 (B-). Score based on: security (90/100), popularity (75/100). Scores update as new data becomes available. API: GET nerq.ai/v1/preflight?target=bump2version
What are safer alternatives to Bump2Version?
In the pypi category, more Python packages are being analyzed — check back soon. bump2version scores 67.0/100.
Does Bump2Version have known vulnerabilities?
Nerq checks Bump2Version against NVD, OSV.dev, and registry-specific vulnerability databases. Current security score: 90/100. Run your package manager's audit command for the latest findings.
How actively maintained is Bump2Version?
Bump2Version has a trust score of 67.0/100 (B-). Below Nerq Verified threshold — conduct additional review.
API: /v1/preflight Trust Badge API Docs

Popular in pypi

Awscli 81Anthropic 81Bleach 81Pygments 81Pandas 81Httpx 81Lxml 81Coverage 81Langchain 81Huggingface Hub 81Sympy 81Mypy 81

Browse Categories

Python PackagesData ToolsAI Tools

Recently Analyzed

Mobirise website_builderUcraft website_builderGoogle Sites website_builderZyro website_builderSimplesite website_builderBookmark website_builderHugo website_builderGatsby Cloud website_builderAppy Pie Website website_builderLeadpages website_builder

Disclaimer: Nerq trust scores are automated assessments based on publicly available signals. They are not endorsements or guarantees. Always conduct your own due diligence.

Apps npm PyPI VPNs Games All Categories Compare
We use cookies for analytics and caching. Privacy Policy