wisp has 2 known vulnerabilities on the latest version (2.2.2). DepScope rates its health at 29/100 (critical risk).

What is the latest version of wisp?

The latest version of wisp is 2.2.2, released 2026-03-27.

Does wisp have known vulnerabilities?

Yes. wisp has 2 known vulnerabilities. See depscope.dev/pkg/hex/wisp for details.

What are alternatives to wisp?

DepScope has no curated alternatives for wisp at this time.

What license does wisp use?

wisp is licensed under Apache-2.0.

wisp

hexv2.2.2deprecated

A practical web framework for Gleam

License Apache-2.0permissive35 versions1 maintainers0 deps3,918 weekly dl

gleam-wisp/wisp

/ 100

Health

find alternative

wisp is deprecated — find an alternative

Update to >= 7a978748e12ab29db232c222254465890e1a4a90 to fix known vulnerabilities

Moderate health score (29/100) — verify manually
2 high severity vulnerabilities
Package is deprecated

Health breakdown0 – 100

20/25

maintenance

6/20

popularity

15/25

security

12/15

maturity

6/15

community

Vulnerabilities

2 high

Advisories (2)

Severity	ID	Summary	Fixed in
high	CVE-2026-28807	Path Traversal in wisp.serve_static allows arbitrary file read	161118c431047f7ef1ff7cabfcc38981877fdd93
high	CVE-2026-32145	Multipart form body parser bypasses body size limits in wisp	7a978748e12ab29db232c222254465890e1a4a90

Health History

Dependency Tree

License Audit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/hex/wisp

First published · 2023-07-18T18:17:34.314185Z

Last updated · 2026-03-27T12:33:07.554662Z