Is Remote Config Compat Safe?

What is Remote Config Compat's trust score?

Remote Config Compat has a Nerq Trust Score of 85.2/100, earning a A grade. This score is based on 2 independently measured dimensions including security, maintenance, and community adoption.

What are the key security findings for Remote Config Compat?

Remote Config Compat's strongest signal is security at 90/100. No known vulnerabilities have been detected. It meets the Nerq Verified threshold of 70+.

What is Remote Config Compat and who maintains it?

Detailed Score Analysis

Based on 5 dimensions. Data from npm registry, GitHub repository, NVD, OSV.dev, and OpenSSF Scorecard.

What data does Remote Config Compat collect?

Remote Config Compat is a Node.js package maintained by firebase-ops. It receives approximately 4,676,312 weekly downloads. Licensed under Apache-2.0.

As a development package, Remote Config Compat does not directly collect end-user personal data. However, applications built with it may collect data depending on implementation. Privacy score: 80/100.

Review the package's dependencies for potential supply chain risks. Run your package manager's audit command regularly.

Full analysis: Remote Config Compat Privacy Report · Privacy review

Is Remote Config Compat secure?

Security score: 90/100. Remote Config Compat has 0 known vulnerabilities (CVEs) in the National Vulnerability Database. This is a clean record.

Licensed under Apache-2.0, allowing code inspection. Open-source packages allow independent security review of the source code.

Run your package manager's audit command (`npm audit`, `pip audit`, `cargo audit`) to check for known vulnerabilities in your dependency tree.

Full analysis: Remote Config Compat Security Report

How we calculated this score

Remote Config Compat's trust score of 85.2/100 (A) is computed from npm registry, GitHub repository, NVD, OSV.dev, and OpenSSF Scorecard. The score reflects 5 independent dimensions: security (90/100), maintenance (100/100), popularity (90/100), quality (80/100), community (55/100). Each dimension is weighted equally to produce the composite trust score.

Nerq analyzes over 7.5 million entities across 26 registries using the same methodology, enabling direct cross-entity comparison. Scores are updated continuously as new data becomes available.

This page was last reviewed on June 14, 2026. Data version: 1.0.

Full methodology documentation · Machine-readable data (JSON API)