Security Deep Dive
helicone
Security posture and CVE patch evidence from tracked releases.
8 critical dependency CVEs affects v2025.08.21-1.
Audit transitive dependencies; consider upgrading or pinning replacements.
— Signed
— SLSA
✓ SBOM
✗ Security policy
Weekly cadence · 1d median
Active maintainer
Trust Signals — 3 of 9 Present
Evidence already collected from releases and repository metadata.
3/9
Present
Signed releases
Unknown
Latest release artifact signature
Latest release
—
SLSA provenance
Unknown
Attestation predicate level
Latest release
—
SBOM published
Present
GitHub SBOM API
Latest release
Last verified: 28d ago
SECURITY.md
Absent
GitHub repository metadata
Repository policy
Checked: 17d ago
Release cadence: weekly
Present
1d median over recent releases
Release history
Latest release: 9mo ago
Maintainer active
Present
Recent commit activity
Repository
Last commit: 16d ago
Checksums (SHA256SUMS)
Not active yet
SHA256SUMS or equivalent
Release asset
Latest release: 9mo ago
GitHub Actions attestation
Not active yet
actions/attest-build-provenance
Workflow file
Latest release: 9mo ago
Signing assets
Not active yet
.sig, .crt, cosign.pub, or similar
Release asset
Latest release: 9mo ago
3.8/10
Security Score
Dependency Exposure
196 transitive dependency
CVEs found in the latest SBOM.
8 critical.
Security Score
A composite score aggregating Scorecard performance, CVE patch history, OpenSSF badge tier, and dependency vulnerability exposure. Score ≥ 7.0 is healthy; < 4.0 warrants attention.
epss
0.25 / 0.5
No EPSS data
freshness
1.00 / 1.0
16d stale
scorecard
2.00 / 4.0
⚠ Estimated — not yet collected
cve health
0.00 / 2.5
No open CVEs
patch speed
0.50 / 0.5
⚠ Estimated — no CVE patch history
kev exposure
1.50 / 1.5
No KEV exposure
supply chain risk
-1.50 / 10.0
Risk 100.0/100
Score breakdown
schema v2Vulnerability posture
vulnerability posture
0.0
25%
direct cves: clear
cve scan: available
Release responsiveness
release responsiveness
10.0
5%
patch speed days: no_history
Dependency exposure
dependency exposure
0.0
10%
supply chain risk: 100.0
transitive cves: 8c/81h
Provenance trust
provenance trust
5.0
40%
scorecard score: estimated
openssf badge: none
Maintainer health
maintainer health
10.0
10%
activity freshness: 16d
Operational risk
operational risk
8.5
10%
kev exposure: clear
epss max: none
How is this calculated?
The six dimensions group the legacy score signals into weighted categories: direct vulnerability status, patch responsiveness, dependency exposure, provenance checks, maintainer activity, and exploitability risk. The flat component values above remain available for compatibility.
Supply Chain Risk
Risk 100.0/100
8
Transitive critical CVEs
0
KEV-transitive CVEs
42%
Dependency freshness
OpenSSF Badge
OpenSSF none
Badge indicates adherence to open-source best practices.
Dependency Vulnerabilities
5688 dependencies scanned
View full dependency list →
Scanning the SBOM (Software Bill of Materials) of the latest release for known vulnerabilities in transitive dependencies.
Critical
8
High
81
Medium
80
Low
26
Unknown
1
Critical
8
High
81
Medium
80
Low
26
Unknown
1
| CVE | Severity | KEV | Dependency | Affected version | Cleared in release |
|---|---|---|---|---|---|
| CVE-2023-7080 | critical | — | wrangler | 3.0.0 | — |
| CVE-2026-25896 | critical | — | fast-xml-parser | 5.2.5 | — |
| CVE-2026-33863 | critical | — | convict | 6.2.4 | — |
| CVE-2026-33864 | critical | — | convict | 6.2.4 | — |
| CVE-2026-33937 | critical | — | handlebars | 4.7.8 | — |
| CVE-2026-41242 | critical | — | protobufjs | 7.5.3 | — |
| GHSA-9qr9-h5gf-34mp | critical | — | next | 15.2.4 | — |
| GHSA-xg6x-h9c9-2m83 | critical | — | better-auth | 1.3.6 | — |
| CVE-2023-30533 | high | — | xlsx | 0.18.5 | — |
| CVE-2024-22363 | high | — | xlsx | 0.18.5 | — |
| CVE-2025-14874 | high | — | nodemailer | 6.10.1 | — |
| CVE-2025-4565 | high | — | protobuf | 5.28.3 | — |
| CVE-2025-58754 | high | — | axios | 1.11.0 | — |
| CVE-2025-59343 | high | — | tar-fs | 2.1.3 | — |
| CVE-2025-61928 | high | — | better-auth | 1.3.6 | — |
| CVE-2025-62727 | high | — | starlette | 0.47.2 | — |
| CVE-2025-64756 | high | — | glob | 10.3.10 | — |
| CVE-2025-65945 | high | — | jws | 3.2.2 | — |
| CVE-2025-66414 | high | — | @modelcontextprotocol/sdk | 1.20.2 | — |
| CVE-2025-66418 | high | — | urllib3 | 2.5.0 | — |
| CVE-2025-66471 | high | — | urllib3 | 2.5.0 | — |
| CVE-2025-68665 | high | — | langchain | 0.3.30 | — |
| CVE-2025-68665 | high | — | @langchain/core | 0.3.67 | — |
| CVE-2025-69223 | high | — | aiohttp | 3.12.14 | — |
| CVE-2026-0621 | high | — | @modelcontextprotocol/sdk | 1.20.2 | — |
| CVE-2026-0933 | high | — | wrangler | 4.35.0 | — |
| CVE-2026-0969 | high | — | next-mdx-remote | 4.4.1 | — |
| CVE-2026-0994 | high | — | protobuf | 4.25.8 | — |
| CVE-2026-1526 | high | — | undici | 5.29.0 | — |
| CVE-2026-1528 | high | — | undici | 7.16.0 | — |
| CVE-2026-21441 | high | — | urllib3 | 2.5.0 | — |
| CVE-2026-22028 | high | — | preact | 10.27.0 | — |
| CVE-2026-2229 | high | — | undici | 5.29.0 | — |
| CVE-2026-22774 | high | — | devalue | 5.6.0 | — |
| CVE-2026-22775 | high | — | devalue | 5.6.0 | — |
| CVE-2026-23490 | high | — | pyasn1 | 0.6.1 | — |
| CVE-2026-23745 | high | — | tar | 6.2.1 | — |
| CVE-2026-23950 | high | — | tar | 6.2.1 | — |
| CVE-2026-2473 | high | — | google-cloud-aiplatform | 1.36.0 | — |
| CVE-2026-24842 | high | — | tar | 6.2.1 | — |
| CVE-2026-25128 | high | — | fast-xml-parser | 5.2.5 | — |
| CVE-2026-25223 | high | — | fastify | 4.29.1 | — |
| CVE-2026-25536 | high | — | @modelcontextprotocol/sdk | 1.20.2 | — |
| CVE-2026-25547 | high | — | @isaacs/brace-expansion | 5.0.0 | — |
| CVE-2026-25639 | high | — | axios | 1.13.2 | — |
| CVE-2026-25990 | high | — | pillow | 11.1.0 | — |
| CVE-2026-26278 | high | — | fast-xml-parser | 5.2.5 | — |
| CVE-2026-26960 | high | — | tar | 6.2.1 | — |
| CVE-2026-26996 | high | — | minimatch | 3.1.2 | — |
| CVE-2026-27606 | high | — | rollup | 4.53.3 | — |
| CVE-2026-27903 | high | — | minimatch | 3.1.2 | — |
| CVE-2026-27904 | high | — | minimatch | 3.1.2 | — |
| CVE-2026-29786 | high | — | tar | 6.2.1 | — |
| CVE-2026-30922 | high | — | pyasn1 | 0.6.1 | — |
| CVE-2026-31802 | high | — | tar | 6.2.1 | — |
| CVE-2026-32141 | high | — | flatted | 3.3.3 | — |
| CVE-2026-32763 | high | — | kysely | 0.28.5 | — |
| CVE-2026-33036 | high | — | fast-xml-parser | 5.2.5 | — |
| CVE-2026-33228 | high | — | flatted | 3.3.3 | — |
| CVE-2026-33468 | high | — | kysely | 0.28.5 | — |
| CVE-2026-33671 | high | — | picomatch | 4.0.3 | — |
| CVE-2026-33938 | high | — | handlebars | 4.7.8 | — |
| CVE-2026-33939 | high | — | handlebars | 4.7.8 | — |
| CVE-2026-33940 | high | — | handlebars | 4.7.8 | — |
| CVE-2026-33941 | high | — | handlebars | 4.7.8 | — |
| CVE-2026-35209 | high | — | defu | 6.1.4 | — |
| CVE-2026-35213 | high | — | @hapi/content | 6.0.0 | — |
| CVE-2026-39356 | high | — | drizzle-orm | 0.33.0 | — |
| CVE-2026-39363 | high | — | vite | 7.2.7 | — |
| CVE-2026-39364 | high | — | vite | 7.2.7 | — |
| CVE-2026-40192 | high | — | pillow | 11.1.0 | — |
| CVE-2026-41636 | high | — | thrift | 0.11.0 | — |
| CVE-2026-42033 | high | — | axios | 1.13.2 | — |
| CVE-2026-42035 | high | — | axios | 1.13.2 | — |
| CVE-2026-42043 | high | — | axios | 1.13.2 | — |
| CVE-2026-42264 | high | — | axios | 1.13.2 | — |
| CVE-2026-42311 | high | — | pillow | 11.1.0 | — |
| CVE-2026-43870 | high | — | thrift | 0.11.0 | — |
| CVE-2026-4800 | high | — | lodash-es | 4.17.21 | — |
| CVE-2026-4800 | high | — | lodash | 4.17.21 | — |
| CVE-2026-4867 | high | — | path-to-regexp | 0.1.12 | — |
| CVE-2026-4926 | high | — | path-to-regexp | 8.2.0 | — |
| CVE-2026-6321 | high | — | fast-uri | 2.4.0 | — |
| CVE-2026-6322 | high | — | fast-uri | 2.4.0 | — |
| GHSA-5j59-xgg2-r9c4 | high | — | next | 14.2.31 | — |
| GHSA-h25m-26qc-wcjf | high | — | next | 14.2.31 | — |
| GHSA-mwv6-3258-q52c | high | — | next | 14.2.31 | — |
| GHSA-q4gf-8mx6-v5v3 | high | — | next | 14.2.31 | — |
| GHSA-x732-6j76-qmhm | high | — | better-auth | 1.3.6 | — |
| CVE-2021-23368 | medium | — | postcss | 8 | — |
| CVE-2021-23382 | medium | — | postcss | 8 | — |
| CVE-2023-44270 | medium | — | postcss | 8 | — |
| CVE-2024-3772 | medium | — | pydantic | 2.0.0 | — |
| CVE-2024-47081 | medium | — | requests | 2.32.3 | — |
| CVE-2024-53382 | medium | — | prismjs | 1.29.0 | — |
| CVE-2025-13033 | medium | — | nodemailer | 6.10.1 | — |
| CVE-2025-13465 | medium | — | lodash | 4.17.21 | — |
| CVE-2025-13465 | medium | — | lodash-es | 4.17.21 | — |
| CVE-2025-13466 | medium | — | body-parser | 2.2.0 | — |
| CVE-2025-15284 | medium | — | qs | 6.13.0 | — |
| CVE-2025-15599 | medium | — | dompurify | 3.2.6 | — |
| CVE-2025-3730 | medium | — | torch | 2.6.0 | — |
| CVE-2025-55173 | medium | — | next | 14.2.30 | — |
| CVE-2025-57752 | medium | — | next | 14.2.30 | — |
| CVE-2025-57822 | medium | — | next | 14.2.31 | — |
| CVE-2025-59471 | medium | — | next | 14.2.31 | — |
| CVE-2025-62522 | medium | — | vite | 7.1.5 | — |
| CVE-2025-62718 | medium | — | axios | 1.13.2 | — |
| CVE-2025-64718 | medium | — | js-yaml | 4.1.0 | — |
| CVE-2025-66400 | medium | — | mdast-util-to-hast | 13.2.0 | — |
| CVE-2025-68146 | medium | — | filelock | 3.16.1 | — |
| CVE-2025-69227 | medium | — | aiohttp | 3.12.14 | — |
| CVE-2025-69228 | medium | — | aiohttp | 3.12.14 | — |
| CVE-2025-69229 | medium | — | aiohttp | 3.12.14 | — |
| CVE-2025-69873 | medium | — | ajv | 6.12.6 | — |
| CVE-2025-71176 | medium | — | pytest | 8.3.4 | — |
| CVE-2026-0540 | medium | — | dompurify | 3.2.6 | — |
| CVE-2026-1525 | medium | — | undici | 5.29.0 | — |
| CVE-2026-1527 | medium | — | undici | 5.29.0 | — |
| CVE-2026-1839 | medium | — | transformers | 4.55.0 | — |
| CVE-2026-22036 | medium | — | undici | 5.29.0 | — |
| CVE-2026-22701 | medium | — | filelock | 3.16.1 | — |
| CVE-2026-22815 | medium | — | aiohttp | 3.12.14 | — |
| CVE-2026-25528 | medium | — | langsmith | 0.3.54 | — |
| CVE-2026-25645 | medium | — | requests | 2.32.4 | — |
| CVE-2026-27980 | medium | — | next | 14.2.31 | — |
| CVE-2026-28684 | medium | — | python-dotenv | 1.0.1 | — |
| CVE-2026-29057 | medium | — | next | 14.2.31 | — |
| CVE-2026-2950 | medium | — | lodash-es | 4.17.21 | — |
| CVE-2026-2950 | medium | — | lodash | 4.17.21 | — |
| CVE-2026-30226 | medium | — | devalue | 5.6.0 | — |
| CVE-2026-33349 | medium | — | fast-xml-parser | 5.2.5 | — |
| CVE-2026-33532 | medium | — | yaml | 2.8.2 | — |
| CVE-2026-33672 | medium | — | picomatch | 4.0.3 | — |
| CVE-2026-33750 | medium | — | brace-expansion | 2.0.2 | — |
| CVE-2026-33916 | medium | — | handlebars | 4.7.8 | — |
| CVE-2026-34515 | medium | — | aiohttp | 3.12.14 | — |
| CVE-2026-34516 | medium | — | aiohttp | 3.12.14 | — |
| CVE-2026-34525 | medium | — | aiohttp | 3.12.14 | — |
| CVE-2026-3635 | medium | — | fastify | 4.29.1 | — |
| CVE-2026-39365 | medium | — | vite | 7.2.7 | — |
| CVE-2026-40175 | medium | — | axios | 1.13.2 | — |
| CVE-2026-40190 | medium | — | langsmith | 0.3.54 | — |
| CVE-2026-41182 | medium | — | langsmith | 0.3.54 | — |
| CVE-2026-41238 | medium | — | dompurify | 3.2.6 | — |
| CVE-2026-41239 | medium | — | dompurify | 3.2.6 | — |
| CVE-2026-41240 | medium | — | dompurify | 3.2.6 | — |
| CVE-2026-41305 | medium | — | postcss | 8.4.31 | — |
| CVE-2026-41650 | medium | — | fast-xml-parser | 5.2.5 | — |
| CVE-2026-41907 | medium | — | uuid | 11.1.0 | — |
| CVE-2026-42034 | medium | — | axios | 1.13.2 | — |
| CVE-2026-42036 | medium | — | axios | 1.13.2 | — |
| CVE-2026-42037 | medium | — | axios | 1.13.2 | — |
| CVE-2026-42038 | medium | — | axios | 1.13.2 | — |
| CVE-2026-42039 | medium | — | axios | 1.13.2 | — |
| CVE-2026-42041 | medium | — | axios | 1.13.2 | — |
| CVE-2026-42042 | medium | — | axios | 1.13.2 | — |
| CVE-2026-42044 | medium | — | axios | 1.13.2 | — |
| CVE-2026-42308 | medium | — | pillow | 11.1.0 | — |
| CVE-2026-42310 | medium | — | pillow | 11.1.0 | — |
| CVE-2026-4923 | medium | — | path-to-regexp | 8.2.0 | — |
| GHSA-39q2-94rc-95cp | medium | — | dompurify | 3.2.6 | — |
| GHSA-7rx3-28cr-v5wh | medium | — | handlebars | 4.7.8 | — |
| GHSA-cj63-jhhr-wcxv | medium | — | dompurify | 3.2.6 | — |
| GHSA-cjmm-f4jc-qw8r | medium | — | dompurify | 3.2.6 | — |
| GHSA-h8r8-wccr-v5f2 | medium | — | dompurify | 3.2.6 | — |
| GHSA-r4q5-vmmm-2653 | medium | — | follow-redirects | 1.15.11 | — |
| GHSA-vvjj-xcjg-gr5g | medium | — | nodemailer | 6.10.1 | — |
| GHSA-w37m-7fhw-fmv9 | medium | — | next | 15.2.4 | — |
| CVE-2025-2953 | low | — | torch | 2.6.0 | — |
| CVE-2025-48985 | low | — | ai | 4.3.19 | — |
| CVE-2025-53535 | low | — | better-auth | 1.2.7 | — |
| CVE-2025-69224 | low | — | aiohttp | 3.12.14 | — |
| CVE-2025-69225 | low | — | aiohttp | 3.12.14 | — |
| CVE-2025-69226 | low | — | aiohttp | 3.12.14 | — |
| CVE-2025-69230 | low | — | aiohttp | 3.12.14 | — |
| CVE-2026-2391 | low | — | qs | 6.13.0 | — |
| CVE-2026-24001 | low | — | diff | 4.0.2 | — |
| CVE-2026-25224 | low | — | fastify | 4.29.1 | — |
| CVE-2026-27942 | low | — | fast-xml-parser | 5.2.5 | — |
| CVE-2026-3449 | low | — | @tootallnate/once | 2.0.0 | — |
| CVE-2026-34513 | low | — | aiohttp | 3.12.14 | — |
| CVE-2026-34514 | low | — | aiohttp | 3.12.14 | — |
| CVE-2026-34517 | low | — | aiohttp | 3.12.14 | — |
| CVE-2026-34518 | low | — | aiohttp | 3.12.14 | — |
| CVE-2026-34519 | low | — | aiohttp | 3.12.14 | — |
| CVE-2026-34520 | low | — | aiohttp | 3.12.14 | — |
| CVE-2026-42040 | low | — | axios | 1.13.2 | — |
| GHSA-33hq-fvwr-56pm | low | — | devalue | 5.6.0 | — |
| GHSA-442j-39wm-28r2 | low | — | handlebars | 4.7.8 | — |
| GHSA-569q-mpph-wgww | low | — | better-auth | 1.3.6 | — |
| GHSA-6475-r3vj-m8vf | low | — | @smithy/config-resolver | 4.1.5 | — |
| GHSA-8qm3-746x-r74r | low | — | devalue | 5.6.0 | — |
| GHSA-c7w3-x93f-qmm8 | low | — | nodemailer | 6.10.1 | — |
| GHSA-mwv9-gp5h-frr4 | low | — | devalue | 5.6.0 | — |
| MAL-2025-21003 | unknown | — | fs | 0.0.1-security | — |
Showing 196 of 196