RepoPilot

n8n-io/n8n · Security & risks

Authoritative risk signals for n8n-io/n8n — dependency CVEs (deps.dev), OpenSSF Scorecard, and GitHub Code Scanning. Not a substitute for your own security review.

ArchitectureSecurity & risksDependenciesLicenseMaintenanceAlternativesVsFull analysis →

Dependency CVEs (deps.dev)

0
Critical
0 direct
0
High
0 direct
0
Moderate
25
Deps scanned
25 direct

OpenSSF Scorecard · 6.6/10

  • CII-Best-Practices0/10
  • Token-Permissions0/10
  • Signed-Releases0/10
  • SAST1/10
  • Branch-Protection4/10
  • Pinned-Dependencies7/10
  • Code-Review9/10
  • License9/10

Ask AI about n8n-io/n8n

Grounded in the actual source code. Pick a starter question or write your own.

What does this repo do, in one paragraph?How would I get started using it?What are the main alternatives?Show me the entry point.
Or write your own question →

Informational only. RepoPilot summarises public signals at the time of analysis; they can be incomplete or stale. Not professional, security, or legal advice.