Is paragonie/sodium_compat safe to use?

paragonie/sodium_compat has 1 known vulnerabilities on the latest version (v2.5.0). DepScope rates its health at 58/100 (high risk).

What is the latest version of paragonie/sodium_compat?

The latest version of paragonie/sodium_compat is v2.5.0, released 2025-12-30.

Does paragonie/sodium_compat have known vulnerabilities?

Yes. paragonie/sodium_compat has 1 known vulnerabilities. See depscope.dev/pkg/composer/paragonie/sodium_compat for details.

Is paragonie/sodium_compat deprecated?

No, paragonie/sodium_compat is actively maintained. Latest release: v2.5.0 (2025-12-30).

What are alternatives to paragonie/sodium_compat?

DepScope has no curated alternatives for paragonie/sodium_compat at this time.

What license does paragonie/sodium_compat use?

paragonie/sodium_compat is licensed under ISC.

paragonie/sodium_compat

composervv2.5.0

Pure PHP implementation of libsodium; uses the PHP extension if it exists

License ISCpermissive81 versions2 maintainers2 deps

/ 100

Health

use with caution

paragonie/[email protected] low health (58/100) — consider alternatives

Update to >= 3.6.1 to fix known vulnerabilities

Moderate health score (58/100) — verify manually

Health breakdown0 – 100

15/25

maintenance

0/20

popularity

23/25

security

15/15

maturity

5/15

community

Vulnerabilities

1 medium

Advisories (1)

Severity	ID	Summary	Fixed in
medium	CVE-2025-69277	libsodium has Incomplete List of Disallowed Inputs	3.6.1

Maintainer trust

Active maintainers (3m)

1

Contributors (12m)

3

Primary author dominance

98%

GitHub stars

931

single active maintainer 3msingle author dominance

Health History

Dependency Tree

License Audit

Dependencies (2)

php php-64bit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/composer/paragonie/sodium_compat

Last updated · 2025-12-30T16:12:18+00:00

paragonie/sodium_compat

composervv2.5.0

Pure PHP implementation of libsodium; uses the PHP extension if it exists

License ISCpermissive81 versions2 maintainers2 deps

paragonie/sodium_compat

/ 100

Health

use with caution

paragonie/[email protected] low health (58/100) — consider alternatives

Update to >= 3.6.1 to fix known vulnerabilities

Moderate health score (58/100) — verify manually

Health breakdown0 – 100

15/25

maintenance

0/20

popularity

23/25

security

15/15

maturity

5/15

community

Vulnerabilities

1 medium

Advisories (1)

Severity	ID	Summary	Fixed in
medium	CVE-2025-69277	libsodium has Incomplete List of Disallowed Inputs	3.6.1

Maintainer trust

Active maintainers (3m)

1

Contributors (12m)

3

Primary author dominance

98%

GitHub stars

931

single active maintainer 3msingle author dominance

Health History

Dependency Tree

License Audit

Dependencies (2)

php php-64bit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/composer/paragonie/sodium_compat

Last updated · 2025-12-30T16:12:18+00:00