Comprehensive NPM package safety report combining npm registry metadata, OSV vulnerability database, npms.io quality scores, and GitHub repo health. Returns risk_summary (low/medium/high/critical), CVE breakdown by severity, maintainer info, dependency counts, last-commit recency, archival status. Use ?package=react or ?package=react and version=18.2.0. Built for AI code-review agents and supply-chain auditors.