Is @openzeppelin/contracts safe to use?

@openzeppelin/contracts has no known vulnerabilities on the latest version (5.6.1). DepScope rates its health at 87/100 (low risk).

What is the latest version of @openzeppelin/contracts?

The latest version of @openzeppelin/contracts is 5.6.1, released 2026-02-27.

No known vulnerabilities on the latest version of @openzeppelin/contracts.

No, @openzeppelin/contracts is actively maintained. Latest release: 5.6.1 (2026-02-27).

Popular alternatives to @openzeppelin/contracts in npm include: ?., ansi-styles, brace-expansion, strip-ansi, ms.

@openzeppelin/contracts is licensed under MIT.

npmv5.6.1

Secure Smart Contract library for Solidity

License MITpermissive102 versions7 maintainers0 deps706,932 weekly dl

/ 100

Health

safe to use

@openzeppelin/[email protected] is safe to use (health: 87/100)

Health breakdown0 – 100

20/25

maintenance

14/20

popularity

25/25

security

15/15

maturity

13/15

community

Vulnerabilities

none known

🌟

0/10untyped

No type definitions available

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/@openzeppelin/contracts