{"package":"pqc_kyber","ecosystem":"cargo","latest_version":"0.7.1","description":"A rust implementation of the post-quantum Kyber KEM algorithm","license":"MIT/Apache-2.0","license_risk":"permissive","commercial_use_notes":"Permissive: commercial closed-source use OK; preserve the copyright notice.","homepage":null,"repository":"https://github.com/Argyle-Software/kyber","downloads_weekly":16730,"health":{"score":34,"risk":"critical","breakdown":{"maintenance":0,"popularity":10,"security":15,"maturity":9,"community":0},"deprecated":false,"max_score":100},"vulnerabilities":{"count":2,"critical":0,"high":2,"medium":0,"low":0,"details":[{"vuln_id":"RUSTSEC-2023-0079","severity":"high","summary":"pqc_kyber KyberSlash: division timings depending on secrets","affected_versions":"<=0.7.1","fixed_version":null,"source":"osv","published_at":"2024-02-09T16:19:53Z"},{"vuln_id":"GHSA-x5j2-g63m-f8g4","severity":"high","summary":"KyberSlash: division timings depending on secrets","affected_versions":">=0.0.0-0","fixed_version":null,"source":"osv","published_at":"2023-12-01T12:00:00Z"}],"actively_exploited_count":0,"likely_exploited_count":0},"versions":{"latest":"0.7.1","total_count":8,"recent":["0.7.1","0.7.0","0.6.0","0.5.0","0.4.0","0.3.0","0.2.1","0.2.0"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":0,"first_published":"2021-05-24T02:42:45.511800Z","last_published":"2023-08-23T02:22:23.045863Z","dependencies_count":0,"dependencies":[]},"github_stats":null,"bundle":null,"typescript":null,"known_issues":{"bugs_count":0,"bugs_severity":{},"status_breakdown":{},"link":null,"scope":"none"},"historical_compromise":null,"recommendation":{"action":"update_required","issues":["Moderate health score (34/100) — verify manually","2 high severity vulnerabilities"],"use_version":"0.7.1","version_hint":null,"summary":"pqc_kyber@0.7.1 has vulnerabilities — update to latest"},"version_scoped":null,"requested_version":null,"_cache":"miss","_response_ms":347,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":false},"scorecard":{"available":false},"quality":{"available":false},"version_history_summary":{"total_versions":8,"first_release_age_days":1804,"last_release_days_ago":983,"avg_days_between_releases":258,"release_velocity":"stale"}}