{"package":"fonttools","ecosystem":"pypi","latest_version":"4.62.1","description":"Tools to manipulate font files","license":"MIT","license_risk":"permissive","commercial_use_notes":"Permissive: commercial closed-source use OK; preserve the copyright notice.","homepage":"http://github.com/fonttools/fonttools","repository":"http://github.com/fonttools/fonttools","downloads_weekly":56261715,"health":{"score":87,"risk":"low","breakdown":{"maintenance":20,"popularity":20,"security":25,"maturity":15,"community":7},"deprecated":false,"max_score":100},"vulnerabilities":{"count":0,"critical":0,"high":0,"medium":0,"low":0,"details":[]},"versions":{"latest":"4.62.1","total_count":233,"recent":["4.55.7","4.55.8","4.56.0","4.57.0","4.58.0","4.58.1","4.58.2","4.58.3","4.58.4","4.58.5","4.59.0","4.59.1","4.59.2","4.60.0","4.60.1","4.60.2","4.61.0","4.61.1","4.62.0","4.62.1"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":1,"first_published":null,"last_published":"2026-03-13T13:52:11.822617Z","dependencies_count":28,"dependencies":["lxml>=4.0; extra == \"lxml\"","brotli>=1.0.1; platform_python_implementation == \"CPython\" and extra == \"woff\"","brotlicffi>=0.8.0; platform_python_implementation != \"CPython\" and extra == \"woff\"","zopfli>=0.1.4; extra == \"woff\"","unicodedata2>=17.0.0; python_version <= \"3.14\" and extra == \"unicode\"","lz4>=1.7.4.2; extra == \"graphite\"","scipy; platform_python_implementation != \"PyPy\" and extra == \"interpolatable\"","munkres; platform_python_implementation == \"PyPy\" and extra == \"interpolatable\"","pycairo; extra == \"interpolatable\"","matplotlib; extra == \"plot\"","sympy; extra == \"symfont\"","xattr; sys_platform == \"darwin\" and extra == \"type1\"","skia-pathops>=0.5.0; extra == \"pathops\"","uharfbuzz>=0.45.0; extra == \"repacker\"","lxml>=4.0; extra == \"all\"","brotli>=1.0.1; platform_python_implementation == \"CPython\" and extra == \"all\"","brotlicffi>=0.8.0; platform_python_implementation != \"CPython\" and extra == \"all\"","zopfli>=0.1.4; extra == \"all\"","unicodedata2>=17.0.0; python_version <= \"3.14\" and extra == \"all\"","lz4>=1.7.4.2; extra == \"all\"","scipy; platform_python_implementation != \"PyPy\" and extra == \"all\"","munkres; platform_python_implementation == \"PyPy\" and extra == \"all\"","pycairo; extra == \"all\"","matplotlib; extra == \"all\"","sympy; extra == \"all\"","xattr; sys_platform == \"darwin\" and extra == \"all\"","skia-pathops>=0.5.0; extra == \"all\"","uharfbuzz>=0.45.0; extra == \"all\""]},"github_stats":{"stars":5085,"forks":515,"open_issues":406,"is_archived":false,"pushed_at":"2026-04-22T17:22:55Z","subscribers_count":117},"bundle":null,"typescript":null,"known_issues":{"bugs_count":2,"bugs_severity":{"high":1,"medium":1},"status_breakdown":{"fixed":2},"link":"/api/bugs/pypi/fonttools","scope":"all","details":[{"title":"fonttools XML External Entity Injection (XXE) Vulnerability","severity":"high","status":"fixed","affected_version":"4.28.2","fixed_version":"4.43.0","url":"https://github.com/fonttools/fonttools/security/advisories/GHSA-6673-4983-2vx5"},{"title":"fontTools is Vulnerable to Arbitrary File Write and XML injection in fontTools.varLib","severity":"medium","status":"fixed","affected_version":"4.33.0","fixed_version":"4.60.2","url":"https://github.com/fonttools/fonttools/security/advisories/GHSA-768j-98cg-p3fv"}]},"historical_compromise":null,"recommendation":{"action":"safe_to_use","issues":[],"use_version":"4.62.1","version_hint":null,"summary":"fonttools@4.62.1 is safe to use (health: 87/100)"},"version_scoped":null,"requested_version":null,"_cache":"hit","_response_ms":0,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":true,"bus_factor_3m":7,"active_contributors_12m":7,"primary_author_ratio":0.52,"owner_account_age_days":3562,"is_archived":false,"stars":5081,"alerts":[]},"malicious":{"is_malicious":false},"scorecard":{"available":true,"score":5.7,"tier":"moderate"},"quality":{"available":true,"criticality_score":0.506,"criticality_tier":"high","velocity_pct":9.9,"velocity_trend":"stable","publish_security":"api_token"},"version_history_summary":{"total_versions":20,"first_release_age_days":null,"last_release_days_ago":47,"avg_days_between_releases":null,"release_velocity":"active"}}