{"package":"starlite","ecosystem":"pypi","latest_version":"1.51.16","description":"Performant, light and flexible ASGI API Framework","license":"MIT","license_risk":"permissive","commercial_use_notes":"Permissive: commercial closed-source use OK; preserve the copyright notice.","homepage":"https://litestar.dev","repository":"https://github.com/litestar-org/litestar","downloads_weekly":0,"health":{"score":42,"risk":"high","breakdown":{"maintenance":5,"popularity":0,"security":20,"maturity":15,"community":2},"deprecated":false,"max_score":100},"vulnerabilities":{"count":1,"critical":0,"high":1,"medium":0,"low":0,"details":[{"vuln_id":"CVE-2024-52581","severity":"high","summary":"Litestar allows unbounded resource consumption (DoS vulnerability) ","affected_versions":"<2.13.0|<=1.51.16|=1.0.0a0|=2.0.0|=2.0.0a3|=2.0.0a4|=2.0.0a5|=2.0.0a6|=2.0.0a7|=2.0.0b1|=2.0.0b2|=2.0.0b3|=2.0.0b4|=2.0.0rc1|=2.0.1|=2.1.0|=2.1.1|=2.10.0|=2.11.0|=2.12.0|=2.12.1|=2.2.0|=2.2.1|=2.3.0|=2.3.1|=2.3.2|=2.4.0|=2.4.1|=2.4.2|=2.4.3|=2.4.4|=2.4.5|=2.5.0|=2.5.1|=2.5.2|=2.5.3|=2.5.4|=2.5.5|=2.6.0|=2.6.1|=2.6.2|=2.6.3|=2.6.4|=2.7.0|=2.7.1|=2.7.2|=2.8.0|=2.8.1|=2.8.2|=2.8.3|=2.9.0|=2.9.1|=0.0.1a0|=0.1.0|=0.1.0b1|=0.1.1|=0.1.2|=0.1.3|=0.1.4|=0.1.5|=0.1.6|=0.2.0|=0.2.1|=0.3.0|=0.4.0|=0.4.1|=0.4.2|=0.4.3|=0.5.0|=0.6.0|=0.7.0|=0.7.1|=0.7.2|=1.0.0|=1.0.1|=1.0.2|=1.0.3|=1.0.4|=1.0.5|=1.1.0|=1.1.1|=1.10.0|=1.10.1|=1.11.0|=1.11.1|=1.12.0|=1.13.0|=1.13.1|=1.14.0|=1.14.1|=1.14.2|=1.15.0|=1.16.0|=1.16.1|=1.16.2|=1.17.0|=1.17.1|=1.17.2|=1.18.0|=1.18.1|=1.19.0|=1.2.0|=1.2.2|=1.2.3|=1.2.4|=1.2.5|=1.20.0|=1.21.0|=1.21.1|=1.21.2|=1.23.0|=1.23.1|=1.24.0|=1.25.0|=1.26.0|=1.26.1|=1.27.0|=1.28.0|=1.28.1|=1.29.0|=1.3.0|=1.3.1|=1.3.2|=1.3.3|=1.3.4|=1.3.5|=1.3.6|=1.3.7|=1.3.8|=1.3.9|=1.30.0|=1.31.0|=1.32.0|=1.33.0|=1.34.0|=1.35.0|=1.35.1|=1.36.0|=1.37.0|=1.38.0|=1.39.0|=1.4.0|=1.4.1|=1.4.2|=1.40.0|=1.40.1|=1.41.0|=1.42.0|=1.43.0|=1.43.1|=1.44.0|=1.45.0|=1.45.1|=1.46.0|=1.47.0|=1.48.0|=1.48.1|=1.49.0|=1.5.0|=1.5.1|=1.5.2|=1.5.3|=1.5.4|=1.50.0|=1.50.1|=1.50.2|=1.51.0|=1.51.1|=1.51.10|=1.51.11|=1.51.12|=1.51.13|=1.51.14|=1.51.15|=1.51.16|=1.51.2|=1.51.3|=1.51.4|=1.51.5|=1.51.6|=1.51.7|=1.51.8|=1.51.9|=1.6.0|=1.6.1|=1.6.2|=1.7.0|=1.7.1|=1.7.2|=1.7.3|=1.8.0|=1.8.1|=1.9.0|=1.9.1","fixed_version":"2.13.0","source":"osv","published_at":"2024-11-20T21:38:58Z","in_kev":false,"epss_prob":0.00445,"epss_percentile":0.63481,"threat_tier":"theoretical"}],"actively_exploited_count":0,"likely_exploited_count":0},"versions":{"latest":"1.51.16","total_count":144,"recent":["1.50.2","1.51.0","1.51.1","1.51.2","1.51.3","1.51.4","1.51.5","1.51.6","1.51.7","1.51.8","1.51.9","1.51.10","1.51.11","1.51.12","1.51.13","1.51.14","1.51.15","1.51.16","2.0.0a1","2.0.0a2"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":1,"first_published":null,"last_published":"2024-05-06T07:18:14.979329Z","dependencies_count":24,"dependencies":["aiomcache; extra == \"memcached\" or extra == \"full\"","anyio<4,>=3","brotli; extra == \"brotli\" or extra == \"full\"","click; extra == \"cli\" or extra == \"standard\" or extra == \"full\"","cryptography; extra == \"cryptography\" or extra == \"jwt\" or extra == \"full\"","fast-query-parsers","httpx>=0.22","importlib-metadata; python_version < \"3.10\"","jinja2>=3.1.2; extra == \"jinja\" or extra == \"standard\" or extra == \"full\"","jsbeautifier; extra == \"cli\" or extra == \"standard\"","mako>=1.2.4","msgspec>=0.11.0","multidict>=6.0.2","opentelemetry-instrumentation-asgi; extra == \"opentelemetry\" or extra == \"full\"","picologging; extra == \"picologging\" or extra == \"standard\" or extra == \"full\"","pydantic<2","pydantic-factories","pydantic-openapi-schema>=1.5.0","python-jose; extra == \"jwt\" or extra == \"full\"","pyyaml","redis[hiredis]; extra == \"redis\" or extra == \"full\"","rich>=13.0.0; extra == \"cli\" or extra == \"standard\" or extra == \"full\"","structlog; extra == \"structlog\" or extra == \"full\"","typing-extensions"]},"github_stats":null,"bundle":null,"typescript":null,"known_issues":{"bugs_count":0,"bugs_severity":{},"status_breakdown":{},"link":null,"scope":"none"},"historical_compromise":null,"recommendation":{"action":"update_required","issues":["1 high severity vulnerabilities"],"use_version":"1.51.16","version_hint":"Update to >= 2.13.0 to fix known vulnerabilities","summary":"starlite@1.51.16 has vulnerabilities — update to latest"},"version_scoped":null,"requested_version":null,"_cache":"hit","_response_ms":0,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":false},"scorecard":{"available":false},"quality":{"available":false},"version_history_summary":{"total_versions":20,"first_release_age_days":null,"last_release_days_ago":723,"avg_days_between_releases":null,"release_velocity":"stale"}}