Is risc0-zkvm-platform safe to use?

risc0-zkvm-platform has 1 known vulnerabilities on the latest version (2.2.2). DepScope rates its health at 74/100 (moderate risk).

What is the latest version of risc0-zkvm-platform?

The latest version of risc0-zkvm-platform is 2.2.2, released 2026-02-03.

Does risc0-zkvm-platform have known vulnerabilities?

Yes. risc0-zkvm-platform has 1 known vulnerabilities. See depscope.dev/pkg/cargo/risc0-zkvm-platform for details.

Is risc0-zkvm-platform deprecated?

No, risc0-zkvm-platform is actively maintained. Latest release: 2.2.2 (2026-02-03).

What are alternatives to risc0-zkvm-platform?

Popular alternatives to risc0-zkvm-platform in Cargo include: hashbrown, getrandom, windows-sys, syn.

What license does risc0-zkvm-platform use?

risc0-zkvm-platform is licensed under Apache-2.0.

risc0-zkvm-platform

cargov2.2.2

RISC Zero zero-knowledge VM

License Apache-2.0permissive92 versions0 deps203,855 weekly dl

risc0/risc0/

/ 100

Health

do not use

risc0-zkvm-platform has critical vulnerabilities — do not use

Update to >= 3.0.3 to fix known vulnerabilities

1 critical vulnerabilities

Health breakdown0 – 100

25/25

maintenance

14/20

popularity

15/25

security

15/15

maturity

5/15

community

Vulnerabilities

1 critical

Advisories (1)

Severity	ID	Summary	Fixed in
critical	CVE-2025-61588	risc0 vulnerable to arbitrary code execution in guest via memory safety failure in `sys_read`	3.0.3

Health History

Dependency Tree

License Audit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/cargo/risc0-zkvm-platform