Is http-cookie safe to use?

http-cookie has no known vulnerabilities on the latest version (1.1.6). DepScope rates its health at 75/100 (moderate risk).

What is the latest version of http-cookie?

The latest version of http-cookie is 1.1.6, released 2026-04-19.

Does http-cookie have known vulnerabilities?

No known vulnerabilities on the latest version of http-cookie.

Is http-cookie deprecated?

No, http-cookie is actively maintained. Latest release: 1.1.6 (2026-04-19).

What are alternatives to http-cookie?

Popular alternatives to http-cookie in RubyGems include: jmespath, netrc, thread_safe, crass, tzinfo.

What license does http-cookie use?

http-cookie is licensed under MIT.

http-cookie

rubygemsv1.1.6

HTTP::Cookie is a Ruby library to handle HTTP Cookies based on RFC 6265. It has with security, standards compliance and compatibility in mind, to behave just the same as today's major web browsers. It has builtin support for the legacy cookies.txt and the latest cookies.sqlite formats of Mozilla Firefox, and its modular API makes it easy to add support for a new backend store.

License MITpermissive20 versions1 deps702,857 weekly dl

sparklemotion/http-cookie

/ 100

Health

safe to use

[email protected] is safe to use (health: 75/100)

Health breakdown0 – 100

25/25

maintenance

14/20

popularity

25/25

security

9/15

maturity

2/15

community

Vulnerabilities

none known

Health History

Dependency Tree

License Audit

Dependencies (1)

domain_name

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/rubygems/http-cookie