npq
« Back to VersTracker
Description:
Audit npm packages before you install them
Type: Formula  |  Latest Version: 3.16.0@0  |  Tracked Since: Dec 6, 2025
Links: Homepage  |  GitHub  |  @lirantal  |  formulae.brew.sh
Stars: 1,537  |  Forks: 34  |  Language: JavaScript  |  Category: Security
Tags: npm security audit javascript dependencies
Install: brew install npq
About:
npq is a command-line tool that performs safety audits on npm packages before installation. It checks for known vulnerabilities, suspicious package metadata, and potential security risks by querying multiple sources. Its main value is preventing malicious or vulnerable packages from being installed in your project.
Key Features:
  • Pre-install security audits for npm packages
  • Checks for known vulnerabilities via Snyk and other sources
  • Analyzes package metadata for suspicious indicators
  • Integrates with npm install via `npx` or as a wrapper
  • Provides clear, actionable warnings before proceeding
Use Cases:
  • Security-conscious developers auditing dependencies before adding them to a project
  • CI/CD pipelines to enforce safety checks for automated npm installs
  • Teams enforcing security policies to prevent risky package installations
Alternatives:
  • npm audit – Runs post-install, while npq audits before installation.
  • snyk – Broader security platform; npq is a lightweight, pre-install focused tool.
Version History
Detected Version Rev Change Commit
Dec 24, 2025 9:55pm 3.16.0 0 VERSION_BUMP 772fe2d5
Dec 20, 2025 11:07am 3.15.4 0 VERSION_BUMP e1de1442
Dec 6, 2025 11:08pm 0 VERSION_BUMP a40b6ea3
Dec 6, 2025 2:46am 0 VERSION_BUMP 1c27e02a
Dec 1, 2025 10:23am 0 VERSION_BUMP 064fd830
Oct 30, 2025 5:13pm 0 VERSION_BUMP ee5b5063
Sep 9, 2025 11:22am 0 VERSION_BUMP d27b523e
« Back to VersTracker  |  Browse Packages  |  About