{"package":"github.com/jackc/pgx/v5","ecosystem":"go","latest_version":"v5.9.2","description":"PostgreSQL driver and toolkit for Go","license":"MIT","license_risk":"permissive","commercial_use_notes":"Permissive: commercial closed-source use OK; preserve the copyright notice.","homepage":"https://pkg.go.dev/github.com/jackc/pgx/v5","repository":"https://github.com/jackc/pgx/v5","downloads_weekly":13712,"health":{"score":85,"risk":"low","breakdown":{"maintenance":25,"popularity":10,"security":25,"maturity":12,"community":13},"deprecated":false,"max_score":100},"vulnerabilities":{"count":0,"critical":0,"high":0,"medium":0,"low":0,"details":[]},"versions":{"latest":"v5.9.2","total_count":42,"recent":["v5.3.1","v5.0.0","v5.3.0","v5.5.2","v5.4.3","v5.0.0-beta.2","v5.1.1","v5.5.4","v5.7.6","v5.8.0","v5.9.1","v5.5.0","v5.0.4","v5.0.0-alpha.1","v5.0.0-alpha.2","v5.0.0-alpha.3","v5.7.0","v5.0.3","v5.0.1","v5.6.0"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":383,"first_published":null,"last_published":"2026-04-19T00:37:23Z","dependencies_count":0,"dependencies":[]},"github_stats":{"stars":13718,"forks":1019,"open_issues":248,"is_archived":false,"pushed_at":"2026-04-25T19:26:52Z","subscribers_count":99},"bundle":null,"typescript":null,"known_issues":{"bugs_count":6,"bugs_severity":{"high":1,"medium":4,"critical":1},"status_breakdown":{"fixed":6},"link":"/api/bugs/go/github.com/jackc/pgx/v5?version=v5.9.2","scope":"version","details":[{"title":"pgx SQL Injection via Protocol Message Size Overflow","severity":"high","status":"fixed","affected_version":null,"fixed_version":"4.18.2","url":"https://github.com/jackc/pgproto3/security/advisories/GHSA-7jwh-3vrq-q3m8"},{"title":"CVE-2026-33816 in github.com/jackc/pgx","severity":"medium","status":"fixed","affected_version":null,"fixed_version":"5.9.0","url":"https://osv.dev/vulnerability/GO-2026-4772"},{"title":"CVE-2026-33815 in github.com/jackc/pgx","severity":"medium","status":"fixed","affected_version":null,"fixed_version":"5.9.0","url":"https://osv.dev/vulnerability/GO-2026-4771"},{"title":"SQL injection in github.com/jackc/pgproto3 and github.com/jackc/pgx","severity":"medium","status":"fixed","affected_version":null,"fixed_version":"2.3.3","url":"https://github.com/jackc/pgx/security/advisories/GHSA-mrww-27vc-gghv"},{"title":"Panic in Pipeline when PgConn is busy or closed in github.com/jackc/pgx","severity":"medium","status":"fixed","affected_version":null,"fixed_version":"5.5.2","url":"https://github.com/jackc/pgx/commit/dfd198003a03dbb96e4607b0d3a0bb9a7398ccb7"}]},"historical_compromise":null,"recommendation":{"action":"safe_to_use","issues":[],"use_version":"v5.9.2","version_hint":null,"summary":"github.com/jackc/pgx/v5@v5.9.2 is safe to use (health: 85/100)"},"version_scoped":null,"requested_version":null,"_cache":"hit","_response_ms":0,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":false},"scorecard":{"available":false},"quality":{"available":false},"co_used_with":[{"package":"@csstools/postcss-color-mix-function","occurrences":8},{"package":"ibis-framework","occurrences":8},{"package":"MarkupSafe","occurrences":8},{"package":"agenda-batch","occurrences":8},{"package":"hanami-cli","occurrences":8}],"version_history_summary":{"total_versions":20,"first_release_age_days":null,"last_release_days_ago":10,"avg_days_between_releases":null,"release_velocity":"active"}}