{"package":"py","ecosystem":"pypi","latest_version":"1.11.0","description":"library with cross-python path, ini-parsing, io, code, log facilities","license":"MIT license","homepage":"https://py.readthedocs.io/","repository":"","downloads_weekly":0,"health":{"score":42,"risk":"high","breakdown":{"maintenance":0,"popularity":0,"security":25,"maturity":15,"community":2},"deprecated":false,"max_score":100},"vulnerabilities":{"count":1,"critical":0,"high":0,"medium":0,"low":1,"details":[{"vuln_id":"CVE-2022-42969","severity":"unknown","summary":"The py library through 1.11.0 for Python allows remote attackers to conduct a ReDoS (Regular expression Denial of Service) attack via a Subversion repository with crafted info data, because the InfoSvnCommand argument is mishandled.","affected_versions":">=0","fixed_version":null,"source":"osv","published_at":"2022-11-04T11:00:00Z"}]},"versions":{"latest":"1.11.0","total_count":65,"recent":["1.4.28","1.4.29","1.4.30","1.4.31","1.4.32.dev1","1.4.32","1.4.33","1.4.34","1.5.1","1.5.2","1.5.3","1.5.4","1.6.0","1.7.0","1.8.0","1.8.1","1.8.2","1.9.0","1.10.0","1.11.0"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":1,"first_published":null,"last_published":"2021-11-04T17:17:00.152107Z","dependencies_count":0,"dependencies":[]},"recommendation":{"action":"safe_to_use","issues":[],"use_version":"1.11.0","version_hint":null,"summary":"py@1.11.0 is safe to use (health: 42/100)"},"requested_version":null,"_cache":"miss","_response_ms":419,"_powered_by":"depscope.dev — free package intelligence for AI agents"}