{"package":"badsecrets","ecosystem":"pypi","latest_version":"1.0.170","description":"About","license":"GPL-3.0","license_risk":"strong_copyleft","commercial_use_notes":"GPL-3.0: derivative works must release source under GPL; includes explicit patent grant.","homepage":"https://pypi.org/project/badsecrets/","repository":"","downloads_weekly":0,"health":{"score":62,"risk":"moderate","breakdown":{"maintenance":20,"popularity":0,"security":25,"maturity":15,"community":2},"deprecated":false,"max_score":100},"vulnerabilities":{"count":0,"critical":0,"high":0,"medium":0,"low":0,"details":[]},"versions":{"latest":"1.0.170","total_count":59,"recent":["0.4.484","0.4.486","0.4.488","0.4.490","0.4.493","0.5.2","0.5.10","0.5.506","0.5.509","0.6.21","0.7.14","0.8.25","0.9.28","0.9.29","0.9.30","0.10.35","0.11.118","0.12.12","0.13.47","1.0.170"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":1,"first_published":null,"last_published":"2026-03-20T19:32:57.407865Z","dependencies_count":7,"dependencies":["Django<6.0.0,>=4.1.2","colorama<0.5.0,>=0.4.6","flask-unsign<2.0.0,>=1.2.1","httpx<1.0,>=0.27","pycryptodome<4.0.0,>=3.21.0","pyjwt[crypto]<3.0.0,>=2.6.0","yara-python>=4.2.0"]},"github_stats":null,"bundle":null,"typescript":null,"known_issues":{"bugs_count":0,"bugs_severity":{},"status_breakdown":{},"link":null,"scope":"none"},"historical_compromise":null,"recommendation":{"action":"safe_to_use","issues":[],"use_version":"1.0.170","version_hint":null,"summary":"badsecrets@1.0.170 is safe to use (health: 62/100)"},"version_scoped":null,"requested_version":null,"_cache":"hit","_response_ms":0,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":false},"scorecard":{"available":false},"quality":{"available":false},"version_history_summary":{"total_versions":20,"first_release_age_days":null,"last_release_days_ago":39,"avg_days_between_releases":null,"release_velocity":"active"}}