lxml

Artifact:

Top 100

Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.

License: Permissive (BSD-3-Clause)

Published:

Visit Github

See on PyPI

SAFE Assessment

Compliance

Licenses

No license compliance issues

Secrets

No sensitive information found

Security

Vulnerabilities

2 severe vulnerabilities exploited

Hardening

14 low priority mitigations absent

Threats

Tampering

No evidence of software tampering

Malware

No evidence of malware inclusion

IMPORTANT: This package had 4 removal incidents in the last 2 years

Latest removal incident detected:

Version: 5.3.2

INCIDENTS:

Spectra Assure analysis detects 6 more components

Learn more about Spectra Assure

Below is the list of direct dependencies declared by the software package through its manifest.

Name

Version

N/A

>=0.7

N/A

N/A

Did you know...

... that you can use ReversingLabs’ Spectra Assure platform to perform regular risk assessments of packages you develop in-house?

We recommend continuous software safeness monitoring through CI/CD integrations and pre-release/deployment checks. In addition to basic package information found on this page our platform offers rich reports for developers and DevSecOps that help them remediate all reported issues.