axios
📦 npm PackageMatt Zabriskie
Promise based HTTP client for the browser and node.js
Scanned June 5, 2026
·Risk Flags
AI Risk Assessment
Axios is a JavaScript library that helps web applications and software communicate with servers over the internet. It's widely used by developers to send and receive data between websites, mobile apps, and backend systems.
This tool has broad access to make network requests, which means it can potentially send data anywhere on the internet when integrated into applications. The developer's identity isn't verified by the platform, which reduces accountability. However, no external data flows were detected in the package itself, and it has an extremely large user base of nearly 473 million downloads, suggesting extensive community vetting.
This appears to be a moderate-risk tool primarily due to unverified developer identity, though its massive adoption suggests broad community acceptance. The 7.7/10 score reflects that while the tool itself shows no concerning behaviors, its network capabilities require careful implementation.
Permissions (1)
Developer
Data Flows
No external data transmission detected
This tool does not appear to send data to external servers.
Privacy Policy Analysis
Higher-Scored Alternatives
Other npm Packages with stronger security profiles
Responsive and accessible React UI components built with React and Emotion
Material UI is an open-source React component library that implements Google's Material Design. It's comprehensive and can be used in production out of the box.
Terminal string styling done right. Keywords: color, colour, colors, terminal, console. 1.9B monthly downloads. License: MIT
> Simple styling in React. 74M monthly downloads. License: MIT
Know what your tools are really doing.