Is Commandmate Safe? Trust Analysis 2026

Nerq Trust Intelligence

Is Commandmate Safe?

Use Commandmate with some caution. Commandmate is a Node.js package with a Nerq Trust Score of 63.8/100 (C+), based on 3 independent data dimensions. It is below the recommended threshold of 70. Security: 90/100. Popularity: 30/100. Data sourced from npm registry, GitHub repository, NVD, OSV.dev, and OpenSSF Scorecard. Last updated: 2026-03-25. Machine-readable data (JSON).

Is Commandmate Safe?

CAUTION — Commandmate has a Nerq Trust Score of 63.8/100 (C+). It has moderate trust signals but shows some areas of concern that warrant attention. Suitable for development use — review security and maintenance signals before production deployment.

Trust Score Breakdown

Security

90

Popularity

30

Key Findings

✓Security score: 90/100 (strong)

⚠Popularity: 30/100 — community adoption

Details

Author	kewton
Category	npm
Source	N/A

Safety Guide: Commandmate

What is Commandmate?

Commandmate is a Node.js package — A local control plane for agent CLIs — orchestration and visibility for Claude Code, Codex, Gemini CLI, and more across Git worktrees.

How to Verify Safety

Run npm audit to check for vulnerabilities. Review the package's GitHub repository for recent commits.

You can also check the trust score via API: GET /v1/preflight?target=commandmate

Key Safety Concerns for Node.js packages

When evaluating any Node.js package, watch for: dependency vulnerabilities, malicious packages, typosquatting.

Trust Assessment

Commandmate has a Nerq Trust Score of 64/100 (C+) and has not yet reached Nerq trust threshold (70+). This score is based on automated analysis of security, maintenance, community, and quality signals.

Key Takeaways

Commandmate has a Trust Score of 64/100 (C+).
Review carefully before use — below trust threshold.
Always verify independently using the Nerq API.

Frequently Asked Questions

Is Commandmate safe to use?

Use with some caution. commandmate has a Nerq Trust Score of 63.8/100 (C+). Strongest signal: security (90/100). Score based on security (90/100), popularity (30/100).

What is Commandmate's trust score?

commandmate: 63.8/100 (C+). Score based on: security (90/100), popularity (30/100). Scores update as new data becomes available. API: GET nerq.ai/v1/preflight?target=commandmate

What are safer alternatives to Commandmate?

In the npm category, more Node.js packages are being analyzed — check back soon. commandmate scores 63.8/100.

Does Commandmate have known vulnerabilities?

Nerq checks Commandmate against NVD, OSV.dev, and registry-specific vulnerability databases. Current security score: 90/100. Run your package manager's audit command for the latest findings.

How actively maintained is Commandmate?

Commandmate has a trust score of 63.8/100 (C+). Below Nerq Verified threshold — conduct additional review.

API: /v1/preflight Trust Badge API Docs

Disclaimer: Nerq trust scores are automated assessments based on publicly available signals. They are not endorsements or guarantees. Always conduct your own due diligence.