{"package":"websockets","ecosystem":"pypi","latest_version":"16.0","description":"An implementation of the WebSocket Protocol (RFC 6455 & 7692)","license":"BSD-3-Clause","license_risk":"permissive","commercial_use_notes":"Permissive: commercial closed-source use OK; preserve the copyright notice.","homepage":"https://pypi.org/project/websockets/","repository":"https://github.com/python-websockets/websockets","downloads_weekly":0,"health":{"score":52,"risk":"high","breakdown":{"maintenance":15,"popularity":0,"security":25,"maturity":12,"community":0},"deprecated":false,"max_score":100},"vulnerabilities":{"count":0,"critical":0,"high":0,"medium":0,"low":0,"details":[]},"versions":{"latest":"16.0","total_count":48,"recent":["9.1","10.0","10.1","10.2","10.3","10.4","11.0","11.0.1","11.0.2","11.0.3","12.0","13.0","13.0.1","13.1","14.0","14.1","14.2","15.0","15.0.1","16.0"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":0,"first_published":null,"last_published":"2026-01-10T09:22:21.280709Z","dependencies_count":0,"dependencies":[]},"github_stats":null,"bundle":null,"typescript":null,"known_issues":{"bugs_count":3,"bugs_severity":{"high":1,"medium":2},"status_breakdown":{"fixed":3},"link":"/api/bugs/pypi/websockets?version=16.0","scope":"version","details":[{"title":"Observable Timing Discrepancy in aaugustin websockets library","severity":"high","status":"fixed","affected_version":null,"fixed_version":"9.1","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-33880"},{"title":"PYSEC-2021-95: advisory","severity":"medium","status":"fixed","affected_version":null,"fixed_version":"547a26b685d08cac0aa64e5e65f7867ac0ea9bc0","url":"https://github.com/aaugustin/websockets/commit/547a26b685d08cac0aa64e5e65f7867ac0ea9bc0"},{"title":"PYSEC-2018-79: advisory","severity":"medium","status":"fixed","affected_version":null,"fixed_version":"5.0","url":"https://github.com/aaugustin/websockets/pull/407"}]},"historical_compromise":null,"recommendation":{"action":"safe_to_use","issues":[],"use_version":"16.0","version_hint":null,"summary":"websockets@16.0 is safe to use (health: 52/100)"},"version_scoped":null,"requested_version":null,"_cache":"miss","_response_ms":814,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":true,"bus_factor_3m":4,"active_contributors_12m":6,"primary_author_ratio":0.7529411764705882,"owner_account_age_days":1110,"is_archived":false,"stars":5669,"alerts":["recent_ownership_change_suspected"]},"malicious":{"is_malicious":false},"scorecard":{"available":false},"quality":{"available":true,"criticality_score":0.52,"criticality_tier":"high","velocity_pct":1.4,"velocity_trend":"stable","publish_security":"api_token"},"version_history_summary":{"total_versions":20,"first_release_age_days":null,"last_release_days_ago":108,"avg_days_between_releases":null,"release_velocity":"moderate"}}