Is Eslint Plugin React Refresh Safe?

What is Eslint Plugin React Refresh's trust score?

Eslint Plugin React Refresh has a Nerq Trust Score of 82.5/100, earning a A- grade. This score is based on 2 independently measured dimensions including security, maintenance, and community adoption.

What are the key security findings for Eslint Plugin React Refresh?

Eslint Plugin React Refresh's strongest signal is popularity at 100/100. No known vulnerabilities have been detected. It meets the Nerq Verified threshold of 70+.

What is Eslint Plugin React Refresh and who maintains it?

Detailed Score Analysis

Based on 5 dimensions. Data from npm registry, GitHub repository, NVD, OSV.dev, and OpenSSF Scorecard.

What data does Eslint Plugin React Refresh collect?

Eslint Plugin React Refresh is a Node.js package maintained by arnaud-barre. It receives approximately 13,703,206 weekly downloads. Licensed under MIT.

As a development package, Eslint Plugin React Refresh does not directly collect end-user personal data. However, applications built with it may collect data depending on implementation. Privacy score: 80/100.

Review the package's dependencies for potential supply chain risks. Run your package manager's audit command regularly.

Full analysis: Eslint Plugin React Refresh Privacy Report · Privacy review

Is Eslint Plugin React Refresh secure?

Security score: 90/100. Eslint Plugin React Refresh has 0 known vulnerabilities (CVEs) in the National Vulnerability Database. This is a clean record.

Licensed under MIT, allowing code inspection. Open-source packages allow independent security review of the source code.

Run your package manager's audit command (`npm audit`, `pip audit`, `cargo audit`) to check for known vulnerabilities in your dependency tree.

Full analysis: Eslint Plugin React Refresh Security Report

How we calculated this score

Eslint Plugin React Refresh's trust score of 82.5/100 (A-) is computed from npm registry, GitHub repository, NVD, OSV.dev, and OpenSSF Scorecard. The score reflects 5 independent dimensions: security (90/100), privacy (80/100), reliability (90/100), transparency (85/100), maintenance (60/100). Each dimension is weighted equally to produce the composite trust score.

Nerq analyzes over 7.5 million entities across 26 registries using the same methodology, enabling direct cross-entity comparison. Scores are updated continuously as new data becomes available.

This page was last reviewed on April 12, 2026. Data version: 1.0.

Full methodology documentation · Machine-readable data (JSON API)