Screen recent repository signals
Use fast mode to compare many dependencies and identify cases that deserve closer structural attention.
CVEs, advisories, and posture checks remain important, but they do not capture maintainership concentration, knowledge redundancy, contributor continuity, or historical dependency on a narrow contributor base.
Use fast mode to compare many dependencies and identify cases that deserve closer structural attention.
Read traffic-light output as signal quality and interpretive confidence, not as repository safety.
Move critical, unusual, or high-impact cases into full-history review before making trust decisions.
Structural metrics help identify when responsibility appears concentrated in a narrow contributor base.
Contributor redundancy and bus factor provide context about how distributed project knowledge appears to be.
Historical participation and churn help distinguish durable structure from a favorable recent snapshot.
Biguá Analyzer should not be used as a vulnerability scanner, an absolute risk score, an AI-authorship detector, or a system that labels repositories as safe or unsafe.