Is PyJWT safe to use?

PyJWT has no known vulnerabilities on the latest version (2.12.1). DepScope rates its health at 60/100 (moderate risk).

What is the latest version of PyJWT?

The latest version of PyJWT is 2.12.1, released 2026-03-13.

Does PyJWT have known vulnerabilities?

No known vulnerabilities on the latest version of PyJWT.

No, PyJWT is actively maintained. Latest release: 2.12.1 (2026-03-13).

What are alternatives to PyJWT?

Popular alternatives to PyJWT in PyPI include: boto3, boto3/, packaging, urllib3/, certifi.

PyJWT

pypiv2.12.1

JSON Web Token implementation in Python

License MITpermissive54 versions14 deps

jpadilla/pyjwt

/ 100

Health

safe to use

[email protected] is safe to use (health: 60/100)

Health breakdown0 – 100

20/25

maintenance

0/20

popularity

25/25

security

15/15

maturity

0/15

community

Vulnerabilities

none known

OSS Scorecard

OpenSSF security posture score

7.8/10

strong

Maintainer trust

Active maintainers (3m)

Contributors (12m)

GitHub stars

0

Quality signals

OSS Criticality

0.53high

Download trend

stable(-3.3%)

Publish security

API token

Health History

Dependency Tree

License Audit

Dependencies (14)

typing_extensions cryptography coverage[toml]cryptography pre-commit;pytest sphinx;sphinx-rtd-theme;zope.interface;sphinx;sphinx-rtd-theme;zope.interface;coverage[toml]pytest

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/pypi/PyJWT