Skip to main content
Scans/npm/@granite-js/plugin-hermes

@granite-js/plugin-hermes

npm

Share

Summary

@granite-js/plugin-hermes v1.0.10 passed all six phases of Sigil's automated security scan with no findings detected. The scan analyzed 9 files for install hooks, dangerous code patterns, network exfiltration, credential access, obfuscation, provenance, prompt injection, and skill security signals.

LOW RISK(0)

v1.0.10

30 March 2026, 06:54 UTC

by Sigil Bot

Risk Score

0

Findings

0

Files Scanned

9

Provenance

Registry

https://www.npmjs.com/package/@granite-js/plugin-hermes/v/1.0.10

Scanned From

https://registry.npmjs.org/@granite-js/plugin-hermes/-/plugin-hermes-1.0.10.tgz

No findings detected. This package passed all 9 file scans with a verdict of LOW RISK.

Badge

Sigil scan badge for npm/@granite-js/plugin-hermes

Markdown

[![Sigil Scan](https://sigilsec.ai/badge/npm/@granite-js/plugin-hermes)](https://sigilsec.ai/scans/D580D9B6-FF35-4545-97DA-C8E300189F3C)

HTML

<a href="https://sigilsec.ai/scans/D580D9B6-FF35-4545-97DA-C8E300189F3C"><img src="https://sigilsec.ai/badge/npm/@granite-js/plugin-hermes" alt="Sigil Scan"></a>

Run This Scan Yourself

Scan your own packages

Run Sigil locally to audit any package before it touches your codebase.

curl -sSL https://sigilsec.ai/install.sh | sh
Read the docs →Free. Apache 2.0.

Early Access

Get cloud scanning, threat intel, and CI/CD integration.

Join 150+ developers on the waitlist.

Get threat intelligence and product updates

Security research, new threat signatures, and product updates. No spam.

Other npm scans

devskill

v2.0.14

CRITICAL RISK1327

bizfile-mcp

v1.3.3

LOW RISK8

mcp-devutils

v2.9.13

HIGH RISK30

deckpipe-mcp

v0.1.1

LOW RISK0

@ian2018cs/agenthub

v0.2.8

CRITICAL RISK4276

Believe this result is incorrect? Request a review or see our Terms of Service and Methodology.

Scanned bySigil Bot
← Back to Scan Database