Spectra Assure
Community
Docs
failRisk: Vulnerabilities
Scanned: 1 day ago

uv

Artifact:
Top 1k
An extremely fast Python package and project manager, written in Rust.
License: Permissive (MIT)
Published: 5 months ago
Visit Github
See on PyPI

SAFE Assessment

Compliance

Licenses
No license compliance issues
Secrets
2 plaintext private keys found

Security

Vulnerabilities
2 severe vulnerabilities exploited
Hardening
2 modern mitigations missing

Threats

Tampering
No evidence of software tampering
Malware
No evidence of malware inclusion

INCIDENTS:

List of software behaviors discovered with static code analysis.
Info
Count
Category

Prevalence in PyPI community

Behavior often found in this community (Common)
11 packages
found in
Top 100
37 packages
found in
Top 1k
141 packages
found in
Top 10k
2530 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
11 packages
found in
Top 100
37 packages
found in
Top 1k
136 packages
found in
Top 10k
2494 packages
in community

Prevalence in PyPI community

Behavior uncommon for this community (Uncommon)
0 packages
found in
Top 100
4 packages
found in
Top 1k
24 packages
found in
Top 10k
532 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
2 packages
found in
Top 100
20 packages
found in
Top 1k
125 packages
found in
Top 10k
2532 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
11 packages
found in
Top 100
39 packages
found in
Top 1k
166 packages
found in
Top 10k
3468 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
16 packages
found in
Top 100
128 packages
found in
Top 1k
776 packages
found in
Top 10k
25965 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
33 packages
found in
Top 100
207 packages
found in
Top 1k
1634 packages
found in
Top 10k
63910 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
75 packages
found in
Top 100
451 packages
found in
Top 1k
3488 packages
found in
Top 10k
109392 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
34 packages
found in
Top 100
169 packages
found in
Top 1k
1256 packages
found in
Top 10k
55955 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
68 packages
found in
Top 100
508 packages
found in
Top 1k
3570 packages
found in
Top 10k
165477 packages
in community

Did you know...

... that you can use ReversingLabs’ Spectra Assure platform to perform regular risk assessments of packages you develop in-house?

We recommend continuous software safeness monitoring through CI/CD integrations and pre-release/deployment checks. In addition to basic package information found on this page our platform offers rich reports for developers and DevSecOps that help them remediate all reported issues.

This website uses cookies to ensure the best website experience. By continuing to use this website you are giving your consent to cookies being used. Detailed information about our use of cookies is here.