According to Nerq's independent analysis of google-auth-library, this npm has a trust score of 84.5 out of 100, earning a A- grade. With 0 stars on npm, it is recommended for production use. Security score: 90/100. Data sourced from 13+ independent signals including GitHub, NVD, OSV.dev, and OpenSSF Scorecard. Last updated: 2026-03-21. Machine-readable data (JSON).
Is Google Auth Library safe?
YES — Google Auth Library has a Nerq Trust Score of 84.5/100 (A-). It meets Nerq's trust threshold with strong signals across security, maintenance, and community adoption. Recommended for production use — review the full report below for specific considerations.
Trust Score Breakdown
Security
90
Popularity
100
Key Findings
✓Security score: 90/100 (strong)
⚠Popularity: 100/100 — 0 stars on npm
Details
Author
google-wombot
Category
npm
Stars
0
Source
N/A
Safety Guide: Google Auth Library
What is Google Auth Library?
Google Auth Library is a Node.js package — Google APIs Authentication Client Library for Node.js.
How to Verify Safety
Run npm audit to check for vulnerabilities. Review the package's GitHub repository for recent commits.
You can also check the trust score via API: GET /v1/preflight?target=google-auth-library
Key Safety Concerns for Node.js packages
When evaluating any Node.js package, watch for: dependency vulnerabilities, malicious packages, typosquatting.
Trust Assessment
Google Auth Library has a Nerq Trust Score of 84/100 (A-) and meets Nerq trust threshold.
This score is based on automated analysis of security, maintenance, community, and quality signals.
Key Takeaways
Google Auth Library has a Trust Score of 84/100 (A-).
google-auth-library has a Nerq Trust Score of 84.5/100, earning a A- grade. Trusted — google-auth-library demonstrates strong trust signals. It meets the threshold for Nerq Verified status, indicating solid security practices, active maintenance, and a healthy ecosystem presence. Its strongest signal is popularity (100/100). It is Nerq Verified, meaning it meets the 70+ trust threshold. Always review the full KYA report before using any tool in production.
What is google-auth-library's trust score?
Nerq assigns google-auth-library a trust score of 84.5 out of 100, with a grade of A-. This score is computed from multiple dimensions including security, compliance, maintenance activity, documentation quality, and community adoption (0 stars). Scores are updated daily based on the latest publicly available signals.
Are there safer alternatives to google-auth-library?
In the npm category, no higher-rated alternatives were found — this is among the top-rated agents. google-auth-library scores 84.5/100. When choosing between agents, consider your specific requirements for security (90), maintenance activity (N/A), and documentation (N/A). Use Nerq's comparison tools or the KYA endpoint for detailed side-by-side analysis.
How often is Google Auth Library's safety score updated?
Nerq continuously monitors Google Auth Library and updates its trust score as new data becomes available. The system ingests signals from 13+ independent sources including GitHub, NVD (National Vulnerability Database), OSV.dev, OpenSSF Scorecard, and major package registries (npm, PyPI). When a new CVE is disclosed, a dependency is updated, or commit activity changes, the score adjusts automatically. For the most current score, query the Nerq API: GET nerq.ai/v1/preflight?target=google-auth-library. The current assessment (84.5/100, A-) was last verified on 2026-03-21.
Can I use Google Auth Library in a regulated environment?
Yes — Google Auth Library meets the Nerq Verified threshold (70+), indicating it has passed automated trust checks across security, compliance, and maintenance dimensions. Nerq assesses regulatory alignment across 52 jurisdictions including the EU AI Act, GDPR, CCPA, and sector-specific frameworks. For organizations in regulated industries (healthcare, finance, government), we recommend combining the Nerq Trust Score with your internal security review process, vendor risk assessment, and legal compliance check before deployment.
Disclaimer: Nerq trust scores are automated assessments based on publicly available signals. They are not endorsements or guarantees. Always conduct your own due diligence.