Is brotli safe to use?

brotli has 1 known vulnerabilities on the latest version (1.2.0). DepScope rates its health at 63/100 (moderate risk).

What is the latest version of brotli?

The latest version of brotli is 1.2.0, released 2025-11-24.

Does brotli have known vulnerabilities?

Yes. brotli has 1 known vulnerabilities. See depscope.dev/pkg/conda/brotli for details.

Is brotli deprecated?

No, brotli is actively maintained. Latest release: 1.2.0 (2025-11-24).

What are alternatives to brotli?

DepScope has no curated alternatives for brotli at this time.

brotli

condav1.2.0

Brotli compression format

License MITpermissive10 versions1 maintainers0 deps125,472 weekly dl

http://github.com/google/brotli

/ 100

Health

update required

[email protected] has vulnerabilities — update to latest

Update to >= 2.13.4 to fix known vulnerabilities

1 high severity vulnerabilities

Health breakdown0 – 100

15/25

maintenance

14/20

popularity

20/25

security

12/15

maturity

2/15

community

Vulnerabilities

1 high

Advisories (1)

Severity	ID	Summary	Fixed in
high	CVE-2025-6176	Scrapy is vulnerable to a denial of service (DoS) attack due to flaws in brotli decompression implementation	2.13.4

OSS Scorecard

OpenSSF security posture score

8.1/10

strong

Maintainer trust

Active maintainers (3m)

9

Contributors (12m)

14

Primary author dominance

37%

GitHub stars

14,673

Health History

Dependency Tree

License Audit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/conda/brotli

First published · 2020-05-28 00:07:06.264000+00:00

Last updated · 2025-11-24 21:18:39.842000+00:00