Loading npm security reports…
Offline speech-to-text for Node.js — pipe any PCM stream into whisper.cpp. Same core for WebSocket SaaS, desktop apps, and VS Code extensions.
No malicious install-time behavior is confirmed. An explicit setup command has a shell-injection flaw through `WISPR_MODEL_NAME`.
Package defines install-time lifecycle scripts.
package.jsonView on unpkgPackage defines install-time lifecycle scripts.
package.jsonView on unpkg · L15