npm
| Public repositories of contributors | 2,570 |
| Followers of contributors | 162,000 |
| Repository forks | 1,190 |
| Open issues | 31 |
| Repository watchers | 57 |
| Number of contributors | 296 |
| Repository stars | 3,950 |
Package has a historical provenance match, confirming its source of origin.
Typosquatting is the risk of installing a malicious package that uses a name similar to a legitimate one.
Starjacking can mislead users into trusting a package, hiding malicious code behind inflated popularity.