Is web-token/jwt-framework safe to use?

web-token/jwt-framework has no known vulnerabilities on the latest version (4.1.6). DepScope rates its health at 71/100 (moderate risk).

What is the latest version of web-token/jwt-framework?

The latest version of web-token/jwt-framework is 4.1.6, released 2026-04-14.

No known vulnerabilities on the latest version of web-token/jwt-framework.

No, web-token/jwt-framework is actively maintained. Latest release: 4.1.6 (2026-04-14).

DepScope has no curated alternatives for web-token/jwt-framework at this time.

web-token/jwt-framework is licensed under MIT.

composerv4.1.6

JSON Object Signing and Encryption library for PHP and Symfony Bundle.

License MITpermissive145 versions2 maintainers12 deps

/ 100

Health

safe to use

web-token/[email protected] is safe to use (health: 71/100)

Health breakdown0 – 100

25/25

maintenance

0/20

popularity

25/25

security

15/15

maturity

6/15

community

Vulnerabilities

none known

Maintainer trust

Active maintainers (3m)

1

Contributors (12m)

5

Primary author dominance

79%

GitHub stars

947

single active maintainer 3m

Dependencies (12)

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/composer/web-token/jwt-framework

Last updated · 2026-04-14T07:44:20+00:00