Is paramiko safe to use?

paramiko has 1 known vulnerabilities on the latest version (4.0.0). DepScope rates its health at 63/100 (moderate risk).

What is the latest version of paramiko?

The latest version of paramiko is 4.0.0, released 2025-08-13.

Does paramiko have known vulnerabilities?

Yes. paramiko has 1 known vulnerabilities. See depscope.dev/pkg/conda/paramiko for details.

Is paramiko deprecated?

No, paramiko is actively maintained. Latest release: 4.0.0 (2025-08-13).

What are alternatives to paramiko?

DepScope has no curated alternatives for paramiko at this time.

What license does paramiko use?

paramiko is licensed under LGPL-2.1-or-later.

paramiko

condav4.0.0

SSH2 protocol library

License LGPL-2.1-or-later34 versions1 maintainers0 deps26,515 weekly dl

paramiko/paramiko/

/ 100

Health

safe to use

[email protected] is safe to use (health: 63/100)

Update to >= 0.0.0-20231218163308-9d2ee975ef9f to fix known vulnerabilities

Health breakdown0 – 100

10/25

maintenance

10/20

popularity

23/25

security

12/15

maturity

8/15

community

Vulnerabilities

1 medium

Advisories (1)

Severity	ID	Summary	Fixed in
medium	CVE-2023-48795	Prefix Truncation Attack against ChaCha20-Poly1305 and Encrypt-then-MAC aka Terrapin	0.0.0-20231218163308-9d2ee975ef9f

Threat intelligence

1 likely exploited (EPSS ≥ 0.5)

Threat tier per vulnerability derived from CISA KEV catalog + FIRST.org EPSS scores.

OSS Scorecard

OpenSSF security posture score

4.2/10

weak

Maintainer trust

Active maintainers (3m)

1

Contributors (12m)

1

Primary author dominance

100%

GitHub stars

9,731

single active maintainer 3msingle author dominance

Health History

Dependency Tree

License Audit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/conda/paramiko

First published · 2020-07-28 15:33:43.557000+00:00

Last updated · 2025-08-13 16:23:01.875000+00:00