Is io.netty:netty-all safe to use?

io.netty:netty-all has 2 known vulnerabilities on the latest version (5.0.0.Alpha2). DepScope rates its health at 47/100 (high risk).

What is the latest version of io.netty:netty-all?

The latest version of io.netty:netty-all is 5.0.0.Alpha2, released 2015-03-03.

Does io.netty:netty-all have known vulnerabilities?

Yes. io.netty:netty-all has 2 known vulnerabilities. See depscope.dev/pkg/maven/io.netty:netty-all for details.

Is io.netty:netty-all deprecated?

No, io.netty:netty-all is actively maintained. Latest release: 5.0.0.Alpha2 (2015-03-03).

What are alternatives to io.netty:netty-all?

DepScope has no curated alternatives for io.netty:netty-all at this time.

What license does io.netty:netty-all use?

io.netty:netty-all is licensed under Apache-2.0.

io.netty:netty-all

mavenv5.0.0.Alpha2

Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers and clients.

License Apache-2.0permissive221 versions0 deps321,464 weekly dl

netty/netty

/ 100

Health

update required

io.netty:[email protected] has vulnerabilities — update to latest

Update to >= 4.1.42.Final to fix known vulnerabilities

1 high severity vulnerabilities

Health breakdown0 – 100

0/25

maintenance

14/20

popularity

18/25

security

15/15

maturity

0/15

community

Vulnerabilities

1 high1 medium

Advisories (2)

Severity	ID	Summary	Fixed in
medium	CVE-2014-0193	Netty denial of service vulnerability	4.0.19.Final
high	CVE-2019-16869	HTTP Request Smuggling in Netty	4.1.42.Final

Maintainer trust

Active maintainers (3m)

21

Contributors (12m)

21

Primary author dominance

45%

GitHub stars

34,919

Health History

Dependency Tree

License Audit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/maven/io.netty:netty-all

Last updated · 2015-03-03T16:19:00+00:00