Is github.com/imroc/req/v2 safe to use?

github.com/imroc/req/v2 has 2 known vulnerabilities on the latest version (v2.1.0). DepScope rates its health at 46/100 (high risk).

What is the latest version of github.com/imroc/req/v2?

The latest version of github.com/imroc/req/v2 is v2.1.0, released 2022-02-01.

Does github.com/imroc/req/v2 have known vulnerabilities?

Yes. github.com/imroc/req/v2 has 2 known vulnerabilities. See depscope.dev/pkg/go/github.com/imroc/req/v2 for details.

Is github.com/imroc/req/v2 deprecated?

No, github.com/imroc/req/v2 is actively maintained. Latest release: v2.1.0 (2022-02-01).

What are alternatives to github.com/imroc/req/v2?

DepScope has no curated alternatives for github.com/imroc/req/v2 at this time.

What license does github.com/imroc/req/v2 use?

github.com/imroc/req/v2 is licensed under MIT.

github.com/imroc/req/v2

govv2.1.0

Simple Go HTTP client with Black Magic

License MITpermissive25 versions42 maintainers0 deps4,791 weekly dl

imroc/req/v2

/ 100

Health

safe to use

github.com/imroc/req/[email protected] is safe to use (health: 46/100)

Update to >= 3.43.4 to fix known vulnerabilities

Health breakdown0 – 100

0/25

maintenance

6/20

popularity

23/25

security

12/15

maturity

5/15

community

Vulnerabilities

1 medium1 low

Advisories (2)

Severity	ID	Summary	Fixed in
medium	CVE-2024-45258	req may send an unintended request when a malformed URL is provided	3.43.4
unknown	CVE-2024-45258	The req library may send an unintended request when a malformed URL is provided in github.com/imroc/req	3.43.4

Health History

Dependency Tree

License Audit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/go/github.com/imroc/req/v2

Last updated · 2022-02-01T01:59:02Z