@duckdb/node-bindings

Version 1.4.4-r.1 • License MIT

One-Line Verdict

"Stable for production use."

npm install @duckdb/node-bindings

View Alternatives

75% Healy Score

Maintenance

Caution

Actively Maintained

Security

2 CVE History

Historical vulnerabilities found.

Performance

74.1 KB

Light footprint.

Community

Niche adoption.

How much does @duckdb/node-bindings slow down your app?

74.1 KB

Package Payload

0 Direct

Clean dependency structure.

Cold-Start Impact

+1 ms

Estimated execution overhead on standard hardware.

Security Intelligence

Current Threat Level

Risk Detected

Our audit detected 2 active or historical security flags. Critical CVEs have been mapped to this library.

Accuracy Protocol

Scanned against OSV.dev (Google Open Source) databases. Last Deep-Scan: 2026.

Alternatives Hub

Is @duckdb/node-bindings too heavy? Compare it with these industry standards:

@duckdb/node-bindings vs @duckdb/node-api →

What is @duckdb/node-bindings?

"[Node](https://nodejs.org/) bindings to the [DuckDB C API](https://duckdb.org/docs/api/c/overview)."

@duckdb/node-bindings is used to facilitate high-performance Node.js workflows. It provides a slim footprint of 74.1 KB on disk.

Installation Guide

# Install via NPM

npm install @duckdb/node-bindings

# Install via Yarn

yarn add @duckdb/node-bindings

Knowledge Base

Where can I find security audits for @duckdb/node-bindings?

You are currently viewing a proprietary security audit for @duckdb/node-bindings on PAudit. We aggregate global databases to provide a safety rating of 75/100.

How to use Node Package Manager to install @duckdb/node-bindings?

Run npm install @duckdb/node-bindings. This installs version 1.4.4-r.1 and adds 0 direct dependencies to your project.

Is @duckdb/node-bindings popular among Node developers?

Yes, @duckdb/node-bindings records 0 weekly downloads, making it a Niche adoption. part of the ecosystem.