{"package":"express","version":"5.2.1","verdict":"SAFE","score":0,"findings":[{"id":"deps","severity":"info","title":"28 runtime dependencies","detail":"Each dependency can itself run install scripts. A clean package can still pull in a malicious transitive dependency."}],"summary":"SAFE — no significant supply-chain red flags found for express@5.2.1.","meta":{"publishedAgeDays":203,"maintainers":5,"latestVersion":"5.2.1","hasInstallScripts":false,"deprecated":false,"repository":"git+https://github.com/expressjs/express.git","deepInspected":false,"knownVulns":0},"knownVulns":[],"checkedAt":"2026-06-23T16:08:36.971Z"}