Skip to content

Security & trust

Reporting abuse.

Registry trust is also operational. A package ecosystem needs a clear path for reporting impersonation, malicious packages, or misleading metadata.

01 · section

What to report

Report impersonation, malicious source, misleading package metadata, or packages that misrepresent authorship or trust signals.

  • Namespace impersonation
  • Malicious or misleading source
  • Broken or deceptive metadata
  • Abuse of trust indicators

related guides

Keep going

Vulnerability disclosureTrust modelBack to docs
Back to docsCompiler source
Reporting abuse · axint docs · axint registry