← Rankings

@aws-sdk/client-s3

npm · Rank #68 of 116

92 / 100 A
2
npm publishers
Distributed credential risk
26M
downloads/week
Blast radius if compromised
6.3y
package age
Established package
2 days ago
last release
Active maintenance
growing
download trend
Week-over-week trajectory

Risk analysis

@aws-sdk/client-s3 shows healthy behavioral signals: multiple publishers distribute the credential risk, and the package is actively maintained.

What the score measures

  • Publisher depth — How many people can push to npm? Single-publisher packages are the #1 structural risk.
  • Longevity — Older packages have track records. New packages with high adoption are higher risk.
  • Release consistency — Regular releases signal active oversight. Long gaps mean unpatched vulnerabilities.
  • Download trend — Growing packages attract more scrutiny (and more attacks).
  • OpenSSF Scorecard — Process security: branch protection, code review, CI/CD safety.

@aws-sdk/client-s3 is one package. Score them all.

You came looking for @aws-sdk/client-s3. Your node_modules has hundreds more. Run one command to score every dependency you ship:

npx proof-of-commitment

Auto-detects your lockfile. Scores every dependency. Zero install.

Try online audit → Quickstart → Free API key →

Add the badge to your README

Commit trust score for @aws-sdk/client-s3
![Commit Trust](https://getcommit.dev/badge/npm/@aws-sdk/client-s3)

Related packages

pino
90
29M/wk · 4 pubs
winston
93
22M/wk · 8 pubs
underscore
79
22M/wk · 2 pubs
@reduxjs/toolkit
95
21M/wk · 6 pubs
openai
90
20M/wk · 17 pubs
moment
84
32M/wk · 5 pubs
View all 116 ranked packages →

npm registry → Live score card →