{"package":"weasyprint","ecosystem":"conda","latest_version":"67.0","description":"WeasyPrint converts web documents (HTML with CSS, SVG, etc.) to PDF","license":"BSD-3-Clause","license_risk":"permissive","commercial_use_notes":"Permissive: commercial closed-source use OK; preserve the copyright notice.","homepage":"https://github.com/Kozea/WeasyPrint","repository":"https://github.com/Kozea/WeasyPrint","downloads_weekly":1200,"health":{"score":55,"risk":"high","breakdown":{"maintenance":15,"popularity":6,"security":20,"maturity":12,"community":2},"deprecated":false,"max_score":100},"vulnerabilities":{"count":1,"critical":0,"high":1,"medium":0,"low":0,"details":[{"vuln_id":"CVE-2025-68616","severity":"high","summary":"WeasyPrint has a Server-Side Request Forgery (SSRF) Protection Bypass via HTTP Redirect","affected_versions":"<68.0|=0.1|=0.10|=0.11|=0.12|=0.13|=0.14|=0.15|=0.16|=0.17|=0.17.1|=0.18|=0.19|=0.19.1|=0.19.2|=0.2|=0.2.1|=0.2.2|=0.20|=0.20.1|=0.20.2|=0.21|=0.22|=0.23|=0.24|=0.25|=0.26|=0.27|=0.28|=0.29|=0.3|=0.3.1|=0.30|=0.31|=0.32|=0.33|=0.34|=0.35|=0.36|=0.37|=0.38|=0.39|=0.4|=0.40|=0.41|=0.42|=0.42.1|=0.42.2|=0.42.3|=0.5|=0.6|=0.6.1|=0.7|=0.7.1|=0.8|=0.9|=43|=43rc1|=43rc2|=44|=45|=46|=47|=48|=49|=50|=51|=52|=52.1|=52.2|=52.3|=52.4|=52.5|=53.0|=53.0b1|=53.0b2|=53.1|=53.2|=53.3|=53.4|=54.0|=54.0b1|=54.1|=54.2|=54.3|=55.0|=55.0b1|=56.0|=56.0b1|=56.1|=57.0|=57.0b1|=57.1|=57.2|=58.0|=58.0b1|=58.1|=59.0|=59.0b1|=60.0|=60.1|=60.2|=61.0|=61.1|=61.2|=62.0|=62.1|=62.2|=62.3|=63.0|=63.1|=64.0|=64.1|=65.0|=65.1|=66.0|=67.0","fixed_version":"68.0","source":"osv","published_at":"2026-01-20T16:29:53Z","in_kev":false,"epss_prob":0.0002,"epss_percentile":0.05437,"threat_tier":"theoretical"}],"actively_exploited_count":0,"likely_exploited_count":0},"versions":{"latest":"67.0","total_count":39,"recent":["56.1","57.0","57.1","57.2","58.0","58.1","59.0","60.0","60.1","60.2","61.0","61.1","61.2","62.0","62.1","62.2","62.3","65.1","66.0","67.0"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":1,"first_published":"2020-08-14 12:09:37.294000+00:00","last_published":"2025-12-02 21:50:39.338000+00:00","dependencies_count":0,"dependencies":[]},"github_stats":null,"bundle":null,"typescript":null,"known_issues":{"bugs_count":0,"bugs_severity":{},"status_breakdown":{},"link":null,"scope":"none"},"historical_compromise":null,"recommendation":{"action":"update_required","issues":["1 high severity vulnerabilities"],"use_version":"67.0","version_hint":"Update to >= 68.0 to fix known vulnerabilities","summary":"weasyprint@67.0 has vulnerabilities — update to latest"},"version_scoped":null,"requested_version":null,"_cache":"miss","_response_ms":768,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":false},"scorecard":{"available":false},"quality":{"available":false},"version_history_summary":{"total_versions":20,"first_release_age_days":2085,"last_release_days_ago":148,"avg_days_between_releases":110,"release_velocity":"moderate"},"popularity_warning":{"this_ecosystem_downloads":1200,"more_popular_in":{"ecosystem":"pypi","downloads_weekly":6283003},"hint":"This is the conda package 'weasyprint' (1,200 dl/week). A much more popular package with the same name exists in pypi (6,283,003 dl/week). Confirm you queried the right ecosystem."}}