Is backend-ai safe to use?

backend-ai has 3 known vulnerabilities on the latest version (22.3.0). DepScope rates its health at 16/100 (critical risk).

What is the latest version of backend-ai?

The latest version of backend-ai is 22.3.0, released 2022-04-25.

Does backend-ai have known vulnerabilities?

Yes. backend-ai has 3 known vulnerabilities. See depscope.dev/pkg/pypi/backend-ai for details.

Is backend-ai deprecated?

No, backend-ai is actively maintained. Latest release: 22.3.0 (2022-04-25).

What are alternatives to backend-ai?

Popular alternatives to backend-ai in PyPI include: boto3, packaging, urllib3, idna, requests.

What license does backend-ai use?

backend-ai is licensed under LGPLv3.

backend-ai

pypiv22.3.0

Lablup Backend.AI Meta-package

License LGPLv3weak copyleft17 versions1 maintainers12 deps9 weekly dl

lablup/backend.ai

/ 100

Health

do not use

backend-ai has critical vulnerabilities — do not use

Update to >= 25.19.0rc1 to fix known vulnerabilities

Low health score (16/100)
2 high severity vulnerabilities
1 critical vulnerabilities

Health breakdown0 – 100

0/25

maintenance

0/20

popularity

5/25

security

9/15

maturity

2/15

community

Vulnerabilities

1 critical2 high

Advisories (3)

Severity	ID	Summary	Fixed in
high	CVE-2025-49651	Backend.AI Missing Authorization vulnerability	—
high	CVE-2025-49653	BackendAI vulnerable to Exposure of Sensitive Information to an Unauthorized Actor	—
critical	CVE-2025-49652	BackendAI Missing Authentication for Critical Function	25.19.0rc1

Health History

Dependency Tree

License Audit

Dependencies (12)

backend.ai-client backend.ai-agent wheel twine setuptools sphinx sphinx-rtd-theme pygments flake8 backend.ai-manager pytest mypy

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/pypi/backend-ai