{"package":"PyPDF2","ecosystem":"pypi","latest_version":"3.0.1","description":"A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files","license":"BSD-3-Clause","license_risk":"permissive","commercial_use_notes":"Permissive: commercial closed-source use OK; preserve the copyright notice.","homepage":"https://pypi.org/project/PyPDF2/","repository":"https://github.com/py-pdf/PyPDF2","downloads_weekly":6012006,"health":{"score":61,"risk":"moderate","breakdown":{"maintenance":0,"popularity":17,"security":23,"maturity":15,"community":6},"deprecated":false,"max_score":100},"vulnerabilities":{"count":1,"critical":0,"high":0,"medium":1,"low":0,"details":[{"vuln_id":"CVE-2023-36464","severity":"medium","summary":"pypdf and PyPDF2 possible Infinite Loop when a comment isn't followed by a character","affected_versions":">=3.1.0,<3.9.0|>=2.2.0,<=3.0.1|=3.1.0|=3.2.0|=3.2.1|=3.3.0|=3.4.0|=3.4.1|=3.5.0|=3.5.1|=3.5.2|=3.6.0|=3.7.0|=3.7.1|=3.8.0|=3.8.1|=2.10.0|=2.10.1|=2.10.2|=2.10.3|=2.10.4|=2.10.5|=2.10.6|=2.10.7|=2.10.8|=2.10.9|=2.11.0|=2.11.1|=2.11.2|=2.12.0|=2.12.1|=2.2.0|=2.2.1|=2.3.0|=2.3.1|=2.4.0|=2.4.1|=2.4.2|=2.5.0|=2.6.0|=2.7.0|=2.8.0|=2.8.1|=2.9.0|=3.0.0|=3.0.1","fixed_version":"3.9.0","source":"osv","published_at":"2023-06-30T20:33:57Z","in_kev":false,"epss_prob":0.00036,"epss_percentile":0.1072,"threat_tier":"theoretical"}],"actively_exploited_count":0,"likely_exploited_count":0},"versions":{"latest":"3.0.1","total_count":66,"recent":["2.8.0","2.8.1","2.9.0","2.10.0","2.10.1","2.10.2","2.10.3","2.10.4","2.10.5","2.10.6","2.10.7","2.10.8","2.10.9","2.11.0","2.11.1","2.11.2","2.12.0","2.12.1","3.0.0","3.0.1"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":0,"first_published":null,"last_published":"2022-12-31T10:36:10.327589Z","dependencies_count":15,"dependencies":["typing_extensions >= 3.10.0.0; python_version < '3.10'","dataclasses; python_version < '3.7'","PyCryptodome ; extra == \"crypto\"","black ; extra == \"dev\"","pip-tools ; extra == \"dev\"","pre-commit<2.18.0 ; extra == \"dev\"","pytest-cov ; extra == \"dev\"","flit ; extra == \"dev\"","wheel ; extra == \"dev\"","sphinx ; extra == \"docs\"","sphinx_rtd_theme ; extra == \"docs\"","myst_parser ; extra == \"docs\"","PyCryptodome ; extra == \"full\"","Pillow ; extra == \"full\"","Pillow ; extra == \"image\""]},"bundle":null,"typescript":null,"known_issues":{"bugs_count":0,"bugs_severity":{},"status_breakdown":{},"link":null,"scope":"none"},"historical_compromise":null,"recommendation":{"action":"safe_to_use","issues":[],"use_version":"3.0.1","version_hint":"Update to >= 3.9.0 to fix known vulnerabilities","summary":"PyPDF2@3.0.1 is safe to use (health: 61/100)"},"version_scoped":null,"requested_version":null,"_cache":"hit","_response_ms":0,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":false},"scorecard":{"available":false},"quality":{"available":true,"criticality_score":null,"criticality_tier":null,"velocity_pct":null,"velocity_trend":null,"publish_security":"api_token"}}