{"package":"appthreat-depscan","ecosystem":"pypi","latest_version":"4.2.3","description":"Fully open-source security audit for project dependencies based on known vulnerabilities and advisories.","license":"MIT","license_risk":"permissive","commercial_use_notes":"Permissive: commercial closed-source use OK; preserve the copyright notice.","homepage":"https://pypi.org/project/appthreat-depscan/","repository":"https://github.com/appthreat/dep-scan","downloads_weekly":209,"health":{"score":43,"risk":"high","breakdown":{"maintenance":0,"popularity":3,"security":25,"maturity":15,"community":0},"deprecated":false,"max_score":100},"vulnerabilities":{"count":0,"critical":0,"high":0,"medium":0,"low":0,"details":[]},"versions":{"latest":"4.2.3","total_count":123,"recent":["3.2.6","3.2.7","3.3.0","3.4.0","3.5.0","3.5.1","3.5.2","3.5.3","3.6.0","4.0.0","4.0.1","4.0.2","4.0.3","4.1.0","4.1.1","4.1.2","4.2.0","4.2.1","4.2.2","4.2.3"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":0,"first_published":null,"last_published":"2023-08-31T12:17:23.129370Z","dependencies_count":9,"dependencies":["appthreat-vulnerability-db >=5.2.5","defusedxml","PyYAML","rich","quart","black ; extra == 'dev'","flake8 ; extra == 'dev'","pytest ; extra == 'dev'","pytest-cov ; extra == 'dev'"]},"github_stats":null,"bundle":null,"typescript":null,"known_issues":{"bugs_count":0,"bugs_severity":{},"status_breakdown":{},"link":null,"scope":"none"},"historical_compromise":null,"recommendation":{"action":"use_with_caution","issues":["Moderate health score (43/100) — verify manually"],"use_version":"4.2.3","version_hint":null,"summary":"appthreat-depscan@4.2.3 low health (43/100) — consider alternatives"},"version_scoped":null,"_meta":{"endpoint":"check","tier":"full","philosophy":"DepScope is free. Use the cheapest endpoint that answers your real question.","cheaper_alternatives":[{"endpoint":"/api/exists/pypi/appthreat-depscan","tokens_estimated":12,"use_when":"you only need to know if the package exists (hallucination guard)"},{"endpoint":"/api/health/pypi/appthreat-depscan","tokens_estimated":80,"use_when":"you only need a 0-100 score for go/no-go (>=70 = safe)"},{"endpoint":"/api/prompt/pypi/appthreat-depscan","tokens_estimated":280,"use_when":"you want a plain-text LLM-friendly brief instead of JSON"},{"endpoint":"POST /api/check_bulk","tokens_estimated":60,"use_when":"you have 5+ packages to check; sends one round-trip instead of N"}],"docs":"https://depscope.dev/integrate","hint_bulk":"You've called /api/check 26 times in 60s. Save bandwidth + tokens with POST /api/check_bulk (1 round-trip for N pkgs)."},"requested_version":null,"_cache":"miss","_response_ms":847,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":false},"scorecard":{"available":false},"quality":{"available":false},"version_history_summary":{"total_versions":20,"first_release_age_days":null,"last_release_days_ago":976,"avg_days_between_releases":null,"release_velocity":"stale"}}