{"package":"barrelstrength/sprout-base-email","ecosystem":"composer","latest_version":"1.3.10","description":"Common email libraries for Sprout Plugins for Craft CMS","license":"proprietary","license_risk":"proprietary","commercial_use_notes":"Proprietary / custom license — do NOT use in commercial products without reviewing terms.","homepage":"","repository":"https://github.com/barrelstrength/sprout-base-email","downloads_weekly":0,"health":{"score":29,"risk":"critical","breakdown":{"maintenance":0,"popularity":0,"security":15,"maturity":12,"community":2},"deprecated":false,"max_score":100},"vulnerabilities":{"count":1,"critical":1,"high":0,"medium":0,"low":0,"details":[{"vuln_id":"CVE-2020-11056","severity":"critical","summary":"Potential Code Injection in Sprout Forms","affected_versions":"<1.2.7|<3.9.0|=1.0.0|=1.0.1|=1.0.3|=1.0.4|=1.0.5|=1.0.6|=1.0.7|=1.0.8|=1.0.9|=1.1.0|=1.1.1|=1.1.2|=1.1.3|=1.1.5|=1.1.6|=1.2.0|=1.2.1|=1.2.2|=1.2.3|=1.2.4|=1.2.5|=1.2.6|=3.0.0|=3.0.0-beta.1|=3.0.0-beta.10|=3.0.0-beta.12|=3.0.0-beta.13|=3.0.0-beta.14|=3.0.0-beta.15|=3.0.0-beta.16|=3.0.0-beta.17|=3.0.0-beta.18|=3.0.0-beta.2|=3.0.0-beta.20|=3.0.0-beta.21|=3.0.0-beta.22|=3.0.0-beta.24|=3.0.0-beta.25|=3.0.0-beta.26|=3.0.0-beta.27|=3.0.0-beta.28|=3.0.0-beta.29|=3.0.0-beta.3|=3.0.0-beta.30|=3.0.0-beta.31|=3.0.0-beta.32|=3.0.0-beta.33|=3.0.0-beta.34|=3.0.0-beta.35|=3.0.0-beta.36|=3.0.0-beta.37|=3.0.0-beta.38|=3.0.0-beta.39|=3.0.0-beta.4|=3.0.0-beta.40|=3.0.0-beta.41|=3.0.0-beta.42|=3.0.0-beta.43|=3.0.0-beta.44|=3.0.0-beta.45|=3.0.0-beta.46|=3.0.0-beta.47|=3.0.0-beta.48|=3.0.0-beta.49|=3.0.0-beta.5|=3.0.0-beta.50|=3.0.0-beta.51|=3.0.0-beta.52|=3.0.0-beta.53|=3.0.0-beta.54|=3.0.0-beta.55|=3.0.0-beta.56|=3.0.0-beta.57|=3.0.0-beta.6|=3.0.0-beta.7|=3.0.0-beta.8|=3.0.0-beta.9|=3.0.1|=3.0.2|=3.1.0|=3.2.0|=3.2.1|=3.2.2|=3.2.3|=3.2.4|=3.3.0|=3.3.1|=3.3.2|=3.3.3|=3.3.4|=3.3.5|=3.3.6|=3.3.7|=3.3.9|=3.4.0|=3.4.1|=3.4.2|=3.4.3|=3.5.0|=3.5.1|=3.6.0|=3.6.1|=3.6.10|=3.6.2|=3.6.4|=3.6.5|=3.6.6|=3.6.7|=3.6.8|=3.6.9|=3.7.0|=3.7.1.1|=3.7.2|=3.8.0|=3.8.0.1|=3.8.0.2|=3.8.1|=3.8.2|=3.8.3|=3.8.4|=3.8.5|=3.8.6|=3.8.7|=3.8.8|=v0.7.1","fixed_version":"3.9.0","source":"osv","published_at":"2020-05-08T21:00:02Z","in_kev":false,"epss_prob":0.00557,"epss_percentile":0.68262,"threat_tier":"theoretical"}],"actively_exploited_count":0,"likely_exploited_count":0},"versions":{"latest":"1.3.10","total_count":36,"recent":["1.3.10","1.3.9","1.3.8","1.3.7","1.3.6","1.3.5","1.3.4.1","1.3.4","1.3.3","1.3.2","1.3.1","1.3.0","1.2.8","1.2.7","1.2.6","1.2.5","1.2.4","1.2.3","1.2.2","1.2.1"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":1,"first_published":null,"last_published":"2023-01-21T04:05:17+00:00","dependencies_count":4,"dependencies":["craftcms/cms","barrelstrength/sprout-base","barrelstrength/sprout-base-sent-email","league/html-to-markdown"]},"github_stats":null,"bundle":null,"typescript":null,"known_issues":{"bugs_count":0,"bugs_severity":{},"status_breakdown":{},"link":null,"scope":"none"},"historical_compromise":null,"recommendation":{"action":"do_not_use","issues":["Low health score (29/100)","1 critical vulnerabilities"],"use_version":"1.3.10","version_hint":"Update to >= 3.9.0 to fix known vulnerabilities","summary":"barrelstrength/sprout-base-email has critical vulnerabilities — do not use"},"version_scoped":null,"requested_version":null,"_cache":"miss","_response_ms":357,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":false},"scorecard":{"available":false},"quality":{"available":false},"version_history_summary":{"total_versions":20,"first_release_age_days":null,"last_release_days_ago":1197,"avg_days_between_releases":null,"release_velocity":"stale"}}