Is Codecompass Safe? Trust Analysis 2026

Nerq Trust Intelligence

Is Codecompass Safe?

Use Codecompass with some caution. Codecompass is a Node.js package with a Nerq Trust Score of 58.4/100 (D), based on 5 independent data dimensions. It is below the recommended threshold of 70. Security: 0/100. Maintenance: 0/100. Popularity: 0/100. Data sourced from npm registry, GitHub repository, NVD, OSV.dev, and OpenSSF Scorecard. Last updated: 2026-03-27. Machine-readable data (JSON).

Is Codecompass safe?

CAUTION — Codecompass has a Nerq Trust Score of 58.4/100 (D). It has moderate trust signals but shows some areas of concern that warrant attention. Suitable for development use — review security and maintenance signals before production deployment.

Trust Score Breakdown

Security

0

Compliance

100

Maintenance

0

Documentation

1

Popularity

0

Key Findings

✗Security score: 0/100 (weak)

✗Maintenance: 0/100 — low maintenance activity

⚠Compliance: 100/100 — covers 52 of 52 jurisdictions

✗Documentation: 1/100 — limited documentation

⚠Popularity: 0/100 — community adoption

Details

Author	alvinveroy
Category	coding
Source	https://www.npmjs.com/package/codecompass
Frameworks	mcp
Protocols	mcp

Regulatory Compliance

EU AI Act Risk Class	Not assessed
Compliance Score	100/100
Jurisdictions	Assessed across 52 jurisdictions

Popular Alternatives in coding

Significant-Gravitas/AutoGPT

langchain-ai/langchain

86.4/100 · A

github

x1xhlol/system-prompts-and-models-of-ai-tools

Safety Guide: Codecompass

What is Codecompass?

Codecompass is a Node.js package — AI-powered MCP server for codebase navigation and LLM prompt optimization.

How to Verify Safety

Run npm audit to check for vulnerabilities. Review the package's GitHub repository for recent commits.

You can also check the trust score via API: GET /v1/preflight?target=codecompass

Key Safety Concerns for Node.js packages

When evaluating any Node.js package, watch for: dependency vulnerabilities, malicious packages, typosquatting.

Trust Assessment

Codecompass has a Nerq Trust Score of 58/100 (D) and has not yet reached Nerq trust threshold (70+). This score is based on automated analysis of security, maintenance, community, and quality signals.

Alternatives

Key Takeaways

Codecompass has a Trust Score of 58/100 (D).
Review carefully before use — below trust threshold.
Always verify independently using the Nerq API.

Frequently Asked Questions

Is Codecompass safe to use?

Use with some caution. codecompass has a Nerq Trust Score of 58.4/100 (D). Strongest signal: compliance (100/100). Score based on security (0/100), maintenance (0/100), popularity (0/100), documentation (1/100).

What is Codecompass's trust score?

codecompass: 58.4/100 (D). Score based on: security (0/100), maintenance (0/100), popularity (0/100), documentation (1/100). Compliance: 100/100. Scores update as new data becomes available. API: GET nerq.ai/v1/preflight?target=codecompass

What are safer alternatives to Codecompass?

In the coding category, higher-rated alternatives include Significant-Gravitas/AutoGPT (75/100), ollama/ollama (74/100), langchain-ai/langchain (86/100). codecompass scores 58.4/100.

Does Codecompass have known vulnerabilities?

Nerq checks Codecompass against NVD, OSV.dev, and registry-specific vulnerability databases. Current security score: 0/100. Run your package manager's audit command for the latest findings.

How actively maintained is Codecompass?

Codecompass has a trust score of 58.4/100 (D). Below Nerq Verified threshold — conduct additional review.

API: /v1/preflight Trust Badge API Docs

Disclaimer: Nerq trust scores are automated assessments based on publicly available signals. They are not endorsements or guarantees. Always conduct your own due diligence.