{"package":"cabot","ecosystem":"pypi","latest_version":"0.11.12","description":"Self-hosted, easily-deployable monitoring and alerts service - like a lightweight PagerDuty","license":"MIT","license_risk":"permissive","commercial_use_notes":"Permissive: commercial closed-source use OK; preserve the copyright notice.","homepage":"http://cabotapp.com","repository":"","downloads_weekly":115,"health":{"score":40,"risk":"high","breakdown":{"maintenance":0,"popularity":3,"security":23,"maturity":12,"community":2},"deprecated":false,"max_score":100},"vulnerabilities":{"count":4,"critical":0,"high":0,"medium":1,"low":3,"details":[{"vuln_id":"CVE-2020-25449","severity":"medium","summary":"Cabot Cross Site Scripting (XSS) vulnerability via Address column","affected_versions":"<=0.11.12|=0.10.0|=0.10.1|=0.10.2|=0.10.3|=0.10.4|=0.10.5|=0.10.6|=0.10.7|=0.10.8|=0.11.1|=0.11.10|=0.11.12|=0.11.2|=0.11.3|=0.11.4|=0.11.5|=0.11.6|=0.11.7|=0.11.8|=0.11.9|=0.6.0|=0.8.4|=0.8.5|=0.8.6|=0.8.7|=0.9.0|=0.9.1|=0.9.2","fixed_version":null,"source":"osv","published_at":"2022-05-24T17:35:22Z","in_kev":false,"epss_prob":0.00522,"epss_percentile":0.66946,"threat_tier":"theoretical"},{"vuln_id":"CVE-2020-7734","severity":"low","summary":"Cabot Cross Site Scripting (XSS) vulnerability via Endpoint column","affected_versions":"<=0.11.16|=0.10.0|=0.10.1|=0.10.2|=0.10.3|=0.10.4|=0.10.5|=0.10.6|=0.10.7|=0.10.8|=0.11.1|=0.11.10|=0.11.12|=0.11.2|=0.11.3|=0.11.4|=0.11.5|=0.11.6|=0.11.7|=0.11.8|=0.11.9|=0.6.0|=0.8.4|=0.8.5|=0.8.6|=0.8.7|=0.9.0|=0.9.1|=0.9.2","fixed_version":null,"source":"osv","published_at":"2022-05-24T17:29:11Z","in_kev":false,"epss_prob":0.01413,"epss_percentile":0.8061,"threat_tier":"theoretical"},{"vuln_id":"CVE-2020-25449","severity":"unknown","summary":"Cross Site Scripting (XSS) vulnerability in Arachnys Cabot 0.11.12 can be exploited via the Address column.","affected_versions":"=0.10.0|=0.10.1|=0.10.2|=0.10.3|=0.10.4|=0.10.5|=0.10.6|=0.10.7|=0.10.8|=0.11.1|=0.11.10|=0.11.12|=0.11.2|=0.11.3|=0.11.4|=0.11.5|=0.11.6|=0.11.7|=0.11.8|=0.11.9|=0.6.0|=0.8.4|=0.8.5|=0.8.6|=0.8.7|=0.9.0|=0.9.1|=0.9.2","fixed_version":null,"source":"osv","published_at":"2020-12-04T20:15:00Z","in_kev":false,"epss_prob":0.00522,"epss_percentile":0.66946,"threat_tier":"theoretical"},{"vuln_id":"CVE-2020-7734","severity":"unknown","summary":"All versions of package cabot are vulnerable to Cross-site Scripting (XSS) via the Endpoint column.","affected_versions":"=0.10.0|=0.10.1|=0.10.2|=0.10.3|=0.10.4|=0.10.5|=0.10.6|=0.10.7|=0.10.8|=0.11.1|=0.11.10|=0.11.12|=0.11.2|=0.11.3|=0.11.4|=0.11.5|=0.11.6|=0.11.7|=0.11.8|=0.11.9|=0.6.0|=0.8.4|=0.8.5|=0.8.6|=0.8.7|=0.9.0|=0.9.1|=0.9.2","fixed_version":null,"source":"osv","published_at":"2020-09-22T08:15:00Z","in_kev":false,"epss_prob":0.01413,"epss_percentile":0.8061,"threat_tier":"theoretical"}],"actively_exploited_count":0,"likely_exploited_count":0},"versions":{"latest":"0.11.12","total_count":28,"recent":["0.10.0","0.10.1","0.10.2","0.10.3","0.10.4","0.10.5","0.10.6","0.10.7","0.10.8","0.11.1","0.11.2","0.11.3","0.11.4","0.11.5","0.11.6","0.11.7","0.11.8","0.11.9","0.11.10","0.11.12"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":1,"first_published":null,"last_published":"2018-03-21T12:02:52.005168Z","dependencies_count":50,"dependencies":["amqp (==2.1.4)","anyjson (==0.3.3)","appdirs (==1.4.3)","billiard (==3.5.0.2)","celery (==4.0.2)","coreapi (==2.3.0)","coreschema (==0.0.4)","dj-database-url (==0.4.2)","Django (==1.11.11)","django-appconf (==1.0.2)","django-auth-ldap (==1.2.16)","django-autocomplete-light (==3.2.10)","django-compressor (==2.2)","django-filter (==1.0.4)","django-jsonify (==0.3.0)","django-polymorphic (==1.3)","djangorestframework (==3.6.2)","gevent (==1.2.1)","greenlet (==0.4.12)","gunicorn (==19.7.1)","httplib2 (==0.10.3)","icalendar (==3.11.3)","itypes (==1.1.0)","python-jenkins (==0.4.15)","Jinja2 (==2.9.6)","kombu (==4.0.2)","Markdown (==2.6.8)","MarkupSafe (==1.0)","packaging (==16.8)","psycopg2 (==2.7.1)","Pygments (==2.2.0)","pyparsing (==2.2.0)","PySocks (==1.6.7)","python-dateutil (==2.6.0)","pytz (==2017.2)","rcssmin (==1.0.6)","redis (==2.10.5)","requests (==2.13.0)","rjsmin (==1.0.12)","six (==1.10.0)","social-auth-app-django (==1.1.0)","twilio (==5.7.0)","uritemplate (==3.0.0)","vine (==1.1.3)","whitenoise (==3.3.0)","cabot-alert-email (==1.4.3)","cabot-alert-hipchat (==2.0.3)","cabot-alert-twilio (==1.3.3)","cabot-alert-slack (==0.8.3)","cabot-check-cloudwatch (==0.1.2)"]},"github_stats":null,"bundle":null,"typescript":null,"known_issues":{"bugs_count":0,"bugs_severity":{},"status_breakdown":{},"link":null,"scope":"none"},"historical_compromise":null,"recommendation":{"action":"safe_to_use","issues":[],"use_version":"0.11.12","version_hint":null,"summary":"cabot@0.11.12 is safe to use (health: 40/100)"},"version_scoped":null,"requested_version":null,"_cache":"miss","_response_ms":696,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":false},"scorecard":{"available":false},"quality":{"available":false},"version_history_summary":{"total_versions":20,"first_release_age_days":null,"last_release_days_ago":2961,"avg_days_between_releases":null,"release_velocity":"stale"}}