{"package":"python-socketio","ecosystem":"pypi","latest_version":"5.16.1","description":"Socket.IO server and client for Python","license":"MIT","homepage":"https://pypi.org/project/python-socketio/","repository":"https://github.com/miguelgrinberg/python-socketio","downloads_weekly":0,"health":{"score":60,"risk":"moderate","breakdown":{"maintenance":20,"popularity":0,"security":25,"maturity":15,"community":0},"deprecated":false,"max_score":100},"vulnerabilities":{"count":0,"critical":0,"high":0,"medium":0,"low":0,"details":[]},"versions":{"latest":"5.16.1","total_count":107,"recent":["5.7.2","5.8.0","5.9.0","5.10.0","5.11.0","5.11.1","5.11.2","5.11.3","5.11.4","5.12.0","5.12.1","5.13.0","5.14.0","5.14.1","5.14.2","5.14.3","5.15.0","5.15.1","5.16.0","5.16.1"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":0,"first_published":null,"last_published":"2026-02-06T23:42:05.772040Z","dependencies_count":8,"dependencies":["bidict>=0.21.0","python-engineio>=4.11.0","requests>=2.21.0; extra == \"client\"","websocket-client>=0.54.0; extra == \"client\"","aiohttp>=3.4; extra == \"asyncio-client\"","tox; extra == \"dev\"","sphinx; extra == \"docs\"","furo; extra == \"docs\""]},"bundle":null,"typescript":null,"known_issues":{"bugs_count":0,"bugs_severity":{},"status_breakdown":{},"link":null,"scope":"none"},"recommendation":{"action":"do_not_use","summary":"Do not install. Package is flagged as malicious (advisory GHSA-g8c6-8fjj-2r4m).","version_hint":null},"requested_version":null,"_cache":"miss","_response_ms":804,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":true,"advisory_id":"GHSA-g8c6-8fjj-2r4m","summary":"python-socketio vulnerable to arbitrary Python code execution (RCE) through malicious pickle deserialization in certain multi-server deployments","action":"do_not_install","downloads_weekly_at_check":0},"scorecard":{"available":false},"quality":{"available":false}}