Is flask-wtf safe to use?

flask-wtf has no known vulnerabilities on the latest version (1.3.0). DepScope rates its health at 65/100 (moderate risk).

What is the latest version of flask-wtf?

The latest version of flask-wtf is 1.3.0, released 2026-04-23.

Does flask-wtf have known vulnerabilities?

No known vulnerabilities on the latest version of flask-wtf.

Is flask-wtf deprecated?

No, flask-wtf is actively maintained. Latest release: 1.3.0 (2026-04-23).

What are alternatives to flask-wtf?

Popular alternatives to flask-wtf in PyPI include: boto3, packaging, idna, urllib3, requests.

What license does flask-wtf use?

flask-wtf is licensed under BSD-3-Clause.

flask-wtf

pypiv1.3.0

Form rendering, validation, and CSRF protection for Flask with WTForms.

License BSD-3-Clausepermissive52 versions4 deps

/ 100

Health

safe to use

[email protected] is safe to use (health: 65/100)

Health breakdown0 – 100

25/25

maintenance

0/20

popularity

25/25

security

15/15

maturity

0/15

community

Vulnerabilities

none known

Quality signals

Publish security

API token

Health History

Dependency Tree

License Audit

Dependencies (4)

flask itsdangerous wtforms email-validator;

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/pypi/flask-wtf

flask-wtf

pypiv1.3.0

Form rendering, validation, and CSRF protection for Flask with WTForms.

License BSD-3-Clausepermissive52 versions4 deps

/ 100

Health

safe to use

[email protected] is safe to use (health: 65/100)

Health breakdown0 – 100

25/25

maintenance

0/20

popularity

25/25

security

15/15

maturity

0/15

community

Vulnerabilities

none known

Quality signals

Publish security

API token

Health History

Dependency Tree

License Audit

Dependencies (4)

flask itsdangerous wtforms email-validator;

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/pypi/flask-wtf