motor

Artifact:

Top 10k

Non-blocking MongoDB driver for Tornado or asyncio

License: unknown

Published:

Visit Github

See on PyPI

SAFE Assessment

Compliance

Licenses

No license compliance issues

Secrets

No sensitive information found

Security

Vulnerabilities

1 high severity vulnerabilities

Hardening

No application hardening issues

Threats

Tampering

No evidence of software tampering

Malware

No evidence of malware inclusion

IMPORTANT: This package had 4 removal incidents in the last 2 years

Latest removal incident detected:

Version: 10.10.10.10

INCIDENTS:

List of software quality issues with the number of affected components.

Policies

Info

Count

Problem

Software composition analysis has identified a component with one or more known vulnerabilities. Based on the CVSS scoring, these vulnerabilities have been marked as high severity.

Prevalence in PyPI community

50 packages

found in

Top 100

352 packages

found in

Top 1k

2858 packages

found in

Top 10k

108771 packages

in community

Next steps

Perform impact analysis for the reported CVEs.

Update the component to the latest version.

If the update can't resolve the issue, create a plan to isolate or replace the affected component.

Did you know...

... that you can use ReversingLabs’ Spectra Assure platform to perform regular risk assessments of packages you develop in-house?

We recommend continuous software safeness monitoring through CI/CD integrations and pre-release/deployment checks. In addition to basic package information found on this page our platform offers rich reports for developers and DevSecOps that help them remediate all reported issues.