Spectra Assure
Community
Docs
failRisk: Vulnerabilities
Scanned: about 1 month ago

lxml

Artifact:
Top 100
Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.
License: Permissive (BSD-3-Clause)
Published: 2 months ago
Visit Github
See on PyPI

SAFE Assessment

Compliance

Licenses
No license compliance issues
Secrets
No sensitive information found

Security

Vulnerabilities
2 severe vulnerabilities exploited
Hardening
14 low priority mitigations absent

Threats

Tampering
No evidence of software tampering
Malware
No evidence of malware inclusion

INCIDENTS:

List of software behaviors discovered with static code analysis.
Info
Count
Category

Prevalence in PyPI community

Behavior often found in this community (Common)
3 packages
found in
Top 100
8 packages
found in
Top 1k
48 packages
found in
Top 10k
821 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
75 packages
found in
Top 100
451 packages
found in
Top 1k
3488 packages
found in
Top 10k
109392 packages
in community

Prevalence in PyPI community

Behavior uncommon for this community (Uncommon)
2 packages
found in
Top 100
7 packages
found in
Top 1k
23 packages
found in
Top 10k
434 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
67 packages
found in
Top 100
520 packages
found in
Top 1k
3993 packages
found in
Top 10k
158349 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
5 packages
found in
Top 100
30 packages
found in
Top 1k
161 packages
found in
Top 10k
3367 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
68 packages
found in
Top 100
540 packages
found in
Top 1k
3644 packages
found in
Top 10k
154572 packages
in community

Prevalence in PyPI community

Behavior uncommon for this community (Uncommon)
2 packages
found in
Top 100
7 packages
found in
Top 1k
28 packages
found in
Top 10k
514 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
44 packages
found in
Top 100
296 packages
found in
Top 1k
2049 packages
found in
Top 10k
48374 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
49 packages
found in
Top 100
364 packages
found in
Top 1k
2374 packages
found in
Top 10k
87567 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
6 packages
found in
Top 100
29 packages
found in
Top 1k
161 packages
found in
Top 10k
3445 packages
in community

Did you know...

... that you can use ReversingLabs’ Spectra Assure platform to perform regular risk assessments of packages you develop in-house?

We recommend continuous software safeness monitoring through CI/CD integrations and pre-release/deployment checks. In addition to basic package information found on this page our platform offers rich reports for developers and DevSecOps that help them remediate all reported issues.