Is devise-secure_password safe to use?

devise-secure_password has no known vulnerabilities on the latest version (2.2.3). DepScope rates its health at 61/100 (moderate risk).

What is the latest version of devise-secure_password?

The latest version of devise-secure_password is 2.2.3, released 2026-03-18.

No known vulnerabilities on the latest version of devise-secure_password.

No, devise-secure_password is actively maintained. Latest release: 2.2.3 (2026-03-18).

Popular alternatives to devise-secure_password in RubyGems include: jmespath, netrc, thread_safe, crass, tzinfo.

devise-secure_password is licensed under MIT.

rubygemsv2.2.3

Adds configurable password policy enforcement to devise.

License MITpermissive16 versions2 deps3,551 weekly dl

/ 100

Health

safe to use

[email protected] is safe to use (health: 61/100)

Health breakdown0 – 100

20/25

maintenance

6/20

popularity

25/25

security

9/15

maturity

1/15

community

Vulnerabilities

none known

Dependencies (2)

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/rubygems/devise-secure_password