bcrypt - dependency health snapshot - depmedic

bcrypt v5.1.0

A bcrypt library for NodeJS.

85/100 depmedic health score

snapshot taken 2026-04-28T07:20:37.569Z

Score breakdown

Popularity	53/100
Maintenance	99/100
Quality	96/100
Risk (penalty for deprecated)	100/100

Snapshot

Weekly downloads

177K

Monthly downloads

npm dependents

GitHub stars

6.6K

Open issues

License

MIT

TypeScript types

Maintainers (top 5)

jfirebaugh, tootallnate, ncb000gt, defunctzombie, amitosh

Embed the badge

Drop one of these into your README. Updates whenever depmedic re-runs the snapshot.

![depmedic health](https://depmedicdev-byte.github.io/health/badge/bcrypt.svg)

Use depmedic locally on this package

# In your project that depends on bcrypt:
npm install bcrypt
npx depmedic                    # vulnerability triage on your install
npx depmedic --severity=high    # CI-friendly: exits 1 on high+critical

Want a deep audit of bcrypt for vendor review?

The Vendor Dossier PDF goes deeper than this snapshot: full advisory list (resolved + open), maintainer drift, release cadence, transitive risk, license tree. $9 one-time per package.

Order Vendor Dossier ($9) More tools

Org-wide monitoring

Track every package across your repos. Get an email when any one slips below your minimum grade. $19/mo.

Org Dep Health Monitor ($19/mo)