100OUT OF 100
TrustedHigh trustStatic read

sindresorhus/execa

The repository is maintained by a highly reputable and established developer. Static analysis of the codebase revealed no malicious patterns, obfuscation, or suspicious network activity. While no malicious behavior was observed in our static read, full runtime behavior was not executed in a sandbox on this pass.

Repository size
2815 KB
Packages
0
Stars
7524
Created
16 yr 6 mo
Reputation signals
sindresorhus avatar
Sindre Sorhus
@sindresorhus
Account age16 yr 6 mo
Public repos1.1K
Forks257
Community sentiment95

Positive

Code & behavior signals
No risky items found

No signatures, install hooks, obfuscation, or embedded secrets were found in the code.

Per-package scoring
Final verdict

No malicious behavior in our static read, and reputation is strong. Runtime was not executed in a sandbox on this pass, so this is a static-read clearance, not a guarantee.

What we could not verify
Full runtime behavior (this repo was not executed in a sandbox on this pass)
Every conditional and time-triggered branch
Behavior under real credentials (no sandbox was run on this pass)
End-to-end logs
Clone
Cloned repository sindresorhus/execa at commit 97dc613c65c641b977af834b4554a2b4d1883167
Static scan
Scanned 15 files for malicious patterns.
No flagged regions or suspicious code detected.
Reputation
Owner sindresorhus is a highly established contributor.
Account age: 16+ years.
High community trust score.
Read
Codebase appears clean and follows standard practices for process execution utilities.
Score
Score computed by formula: 100/100 (deterministic, code-driven)
+8 [reputation] established_owner: Owner account is established (older than a year with multiple public repos).
+6 [reputation] many_stars: Strong community signal (7,524 stars).
+4 [reputation] good_sentiment: Positive community sentiment (95/100).
Auto-published at clauderabbit.in/sindresorhus/execa · re-checked when the repo changes