Is Cdk Codebuild Sonarcloud Safe?

Cdk Codebuild Sonarcloud — Nerq Trust Score 57.8/100 (C grade). Based on analysis of 2 trust dimensions, it is has notable safety concerns. Last updated: 2026-04-05.

Use Cdk Codebuild Sonarcloud with some caution. Cdk Codebuild Sonarcloud is a npm package with a Nerq Trust Score of 57.8/100 (C), based on 3 independent data dimensions. Below the recommended threshold of 70. Security: 90/100. Popularity: 0/100. Data sourced from npm registry, GitHub repository, NVD, OSV.dev, and OpenSSF Scorecard. Last updated: 2026-04-05. Machine-readable data (JSON).

Cdk Codebuild Sonarcloud Across Platforms

Same developer/company in other registries:

Safety Guide: Cdk Codebuild Sonarcloud

What is Cdk Codebuild Sonarcloud?

Cdk Codebuild Sonarcloud is a Node.js package — This CDK construct creates an [AWS Codebuild](https://www.sonarsource.com/products/sonarcloud/) action to perform static code analysis using [Sonarcloud](https://www.sonarsource.com/products/sonarclou.

How to Verify Safety

Run npm audit to check for vulnerabilities. Review the package's GitHub repository for recent commits.

You can also check the trust score via API: GET /v1/preflight?target=cdk-codebuild-sonarcloud

Key Safety Concerns for Node.js package

When evaluating any Node.js package, watch for: dependency vulnerabilities, malicious packages, typosquatting.

Trust Assessment

Cdk Codebuild Sonarcloud has a Nerq Trust Score of 58/100 (C) and has not yet reached Nerq trust threshold (70+). This score is based on automated analysis of security, maintenance, community, and quality signals.

Key Takeaways

• Cdk Codebuild Sonarcloud has a Trust Score of 58/100 (C).
• Review carefully before use — below trust threshold.
• Always verify independently using the Nerq API.

Disclaimer: Nerq trust scores are automated assessments based on publicly available signals. They are not endorsements or guarantees. Always conduct your own due diligence.