c2pa has no known vulnerabilities on the latest version (0.80.2). DepScope rates its health at 82/100 (low risk).

What is the latest version of c2pa?

The latest version of c2pa is 0.80.2, released 2026-04-28.

Does c2pa have known vulnerabilities?

No known vulnerabilities on the latest version of c2pa.

No, c2pa is actively maintained. Latest release: 0.80.2 (2026-04-28).

Popular alternatives to c2pa in Cargo include: hashbrown, getrandom, windows-sys, syn.

c2pa is licensed under MIT OR Apache-2.0.

cargov0.80.2

Rust SDK for C2PA (Coalition for Content Provenance and Authenticity) implementors

License MIT OR Apache-2.0permissive203 versions0 deps499,452 weekly dl

/ 100

Health

safe to use

[email protected] is safe to use (health: 82/100)

Health breakdown0 – 100

25/25

maintenance

14/20

popularity

25/25

security

15/15

maturity

3/15

community

Vulnerabilities

none known

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/cargo/c2pa