Is flask-unsign safe to use?

flask-unsign has no known vulnerabilities on the latest version (1.2.1). DepScope rates its health at 45/100 (high risk).

What is the latest version of flask-unsign?

The latest version of flask-unsign is 1.2.1, released 2024-12-03.

Does flask-unsign have known vulnerabilities?

No known vulnerabilities on the latest version of flask-unsign.

Is flask-unsign deprecated?

No, flask-unsign is actively maintained. Latest release: 1.2.1 (2024-12-03).

What are alternatives to flask-unsign?

Popular alternatives to flask-unsign in PyPI include: boto3, packaging, urllib3, idna, requests.

What license does flask-unsign use?

flask-unsign is licensed under MIT.

flask-unsign

pypiv1.2.1

Flask Unsign is a penetration testing utility that attempts to uncover a Flask server's secret key by taking a signed session verifying it against a wordlist of commonly used and publicly known secret keys (sourced from books, GitHub, StackOverflow and various other sources).

License MITpermissive8 versions1 maintainers11 deps12,265 weekly dl

Paradoxis/Flask-Unsign

/ 100

Health

use with caution

[email protected] low health (45/100) — consider alternatives

Moderate health score (45/100) — verify manually

Health breakdown0 – 100

0/25

maintenance

10/20

popularity

25/25

security

6/15

maturity

4/15

community

Vulnerabilities

none known

Health History

Dependency Tree

License Audit

Dependencies (11)

flask requests itsdangerous markupsafe werkzeug flask-unsign-wordlist;coverage;codecov;twine;wheel;setuptools

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/pypi/flask-unsign