Skip to main content

Find an alternative package

Finding an alternative package to replace one you're already familiar with can be challenging. Trusty uses generative AI to suggest a list of related packages to help you find and assess alternative dependencies.

Why look for alternative packages?​

The need to locate a suitable alternative might be driven by:

  • Security concerns or vulnerabilities
  • Compatibility or dependency challenges
  • Searching for better performance or features
  • Seeking more actively maintained packages
  • Evolving project requirements

Exploring alternatives

Suggested alternative packages are listed at the bottom of the Package Insights tab on the package details page.

For packages not previously queried by Trusty, you might experience a brief delay before alternatives appear. This is due to Trusty's real-time assessment, ensuring the presentation of precise and reliable alternatives.

If a suggested alternative doesn't align with your needs or seems off the mark, please share your feedback. We greatly appreciate user feedback and are constantly fine-tuning our system to increase the relevance and accuracy of Trusty's recommendations.

Disclaimer

Trusty utilizes large language models (LLMs) to identify potential alternative packages. While LLMs are powerful, they might occasionally produce unintended or unexpected results, sometimes known as "hallucinations". Trusty gates hallucinations by passing all LLM package recommendations through the Trusty assessment engine. This way package alternatives recommended by the LLM are verified as existing and assessed for security risks and malicious behavior. This helps negate LLM poisoning attacks.

Always double-check the suggested packages to ensure they meet your requirements before integrating them into your projects.