Is @csmith/release-it-calver-plugin safe to install?

@csmith/release-it-calver-plugin passed Sigil's automated six-phase security scan with no findings. Verdict: LOW RISK.

What security issues were found in @csmith/release-it-calver-plugin?

No security issues were detected in @csmith/release-it-calver-plugin during automated analysis.

Scans/npm/@csmith/release-it-calver-plugin

@csmith/release-it-calver-plugin

npm

Summary

@csmith/release-it-calver-plugin v2026.3.10 passed all six phases of Sigil's automated security scan with no findings detected. The scan analyzed 9 files for install hooks, dangerous code patterns, network exfiltration, credential access, obfuscation, provenance, prompt injection, and skill security signals.

LOW RISK(0)

v2026.3.10

25 March 2026, 00:20 UTC

by Sigil Bot

Risk Score

Findings

Files Scanned

Provenance

Registry

https://www.npmjs.com/package/@csmith/release-it-calver-plugin/v/2026.3.10

Scanned From

https://registry.npmjs.org/@csmith/release-it-calver-plugin/-/release-it-calver-plugin-2026.3.10.tgz

No findings detected. This package passed all 9 file scans with a verdict of LOW RISK.

Badge

Markdown

[![Sigil Scan](https://sigilsec.ai/badge/npm/@csmith/release-it-calver-plugin)](https://sigilsec.ai/scans/EC67BFBA-321F-4E33-8023-7DCC85EB26D3)

HTML

<a href="https://sigilsec.ai/scans/EC67BFBA-321F-4E33-8023-7DCC85EB26D3"><img src="https://sigilsec.ai/badge/npm/@csmith/release-it-calver-plugin" alt="Sigil Scan"></a>

Run This Scan Yourself