Sounds interesting! But I work with Rust, so your project is outside of my direct area of interest.
If I am to suggest something, I think you should consider opening some parts of your product, e.g. you could publish your package reviews with an N-months delay and accept public reviews from the community with some vetting process on top.
That's a great point. We've been thinking through how we work with open source maintainers and the community to crowdsource reviews or usage information.
