{"package":"intake","ecosystem":"conda","latest_version":"2.0.9","description":"Data load and catalog system","license":"BSD-2-Clause","license_risk":"permissive","commercial_use_notes":"Permissive: commercial closed-source use OK; preserve the copyright notice.","homepage":"https://github.com/ContinuumIO/intake","repository":"","downloads_weekly":2830,"health":{"score":60,"risk":"moderate","breakdown":{"maintenance":20,"popularity":6,"security":20,"maturity":12,"community":2},"deprecated":false,"max_score":100},"vulnerabilities":{"count":1,"critical":0,"high":1,"medium":0,"low":0,"details":[{"vuln_id":"CVE-2026-33310","severity":"high","summary":"Intake has a Command Injection via shell() Expansion in Parameter Defaults","affected_versions":"<=2.0.9|=0.1.2|=0.1.3|=0.2.3|=0.2.8|=0.2.9|=0.3.0|=0.3.1|=0.4.0|=0.4.1|=0.4.2|=0.4.3|=0.4.4|=0.5.0|=0.5.1|=0.5.2|=0.5.3|=0.5.4|=0.5.5|=0.6.0|=0.6.1|=0.6.2|=0.6.3|=0.6.4|=0.6.5|=0.6.6|=0.6.7|=0.6.8|=0.7.0|=2.0.0|=2.0.0a1|=2.0.0a2|=2.0.1|=2.0.3|=2.0.4|=2.0.5|=2.0.6|=2.0.7|=2.0.8|=2.0.9","fixed_version":null,"source":"osv","published_at":"2026-03-19T17:46:54Z","in_kev":false,"epss_prob":0.00022,"epss_percentile":0.06077,"threat_tier":"theoretical"}],"actively_exploited_count":0,"likely_exploited_count":0},"versions":{"latest":"2.0.9","total_count":31,"recent":["0.5.5","0.6.0","0.6.1","0.6.2","0.6.3","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.7.0","2.0.0","2.0.1","2.0.3","2.0.4","2.0.5","2.0.6","2.0.7","2.0.8","2.0.9"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":1,"first_published":"2020-06-03 19:49:48.480000+00:00","last_published":"2026-03-09 16:27:13.233000+00:00","dependencies_count":0,"dependencies":[]},"bundle":null,"typescript":null,"known_issues":{"bugs_count":0,"bugs_severity":{},"status_breakdown":{},"link":null,"scope":"none"},"historical_compromise":null,"recommendation":{"action":"update_required","issues":["1 high severity vulnerabilities"],"use_version":"2.0.9","version_hint":null,"summary":"intake@2.0.9 has vulnerabilities — update to latest"},"version_scoped":null,"requested_version":null,"_cache":"hit","_response_ms":0,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":false},"scorecard":{"available":false},"quality":{"available":false}}