LangChain

pypiv1.2.15

Building applications with LLMs through composability

License MITpermissive486 versions20 deps
langchain-ai/langchain
65
/ 100
Health
do not use

LangChain has critical vulnerabilities — do not use

Update to >= 2.8.5 to fix known vulnerabilities

  • 1 critical vulnerabilities
Health breakdown0 – 100
25/25
maintenance
0/20
popularity
15/25
security
15/15
maturity
10/15
community
Vulnerabilities
1
1 critical
Advisories (1)
SeverityIDSummaryFixed in
criticalCVE-2023-39631Langchain vulnerable to arbitrary code execution via the evaluate function in the numexpr library2.8.5
Quality signals
OSS Criticality
0.51high
Download trend
stable(0%)

Health History

Dependency Tree

License Audit

Dependencies (20)
langchain-corelanggraphpydanticlangchain-anthropic;langchain-aws;langchain-azure-ai;langchain-basetenlangchain-community;langchain-deepseek;langchain-fireworks;langchain-google-genai;langchain-google-vertexai;langchain-groq;langchain-huggingface;langchain-mistralai;langchain-ollama;langchain-openai;langchain-perplexity;langchain-together;langchain-xai;
API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/pypi/LangChain
More from pypi
boto3boto3/packagingurllib3/certifiurllib3
Browse all pypi packages →

Last updated · 2026-04-03T14:26:02.557339Z