Ecosyste.ms: Packages

An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.

Top 0.2% on pypi.org
Top 0.1% downloads on pypi.org
Top 0.1% dependent packages on pypi.org
Top 0.2% dependent repos on pypi.org
Top 0.6% forks on pypi.org
Top 0.3% docker downloads on pypi.org

pypi.org : poetry

Python dependency management and packaging made easy.

Registry - Source - Homepage - Documentation - JSON
purl: pkg:pypi/poetry
Keywords: packaging, dependency, poetry, dependency-manager, package-manager, python
License: MIT
Latest release: about 7 hours ago
First release: about 6 years ago
Dependent packages: 225
Dependent repositories: 1,968
Downloads: 35,514,595 last month
Stars: 29,611 on GitHub
Forks: 2,208 on GitHub
Docker dependents: 915
Docker downloads: 495,654,739
Total Commits: 2689
Committers: 475
Average commits per author: 5.661
Development Distribution Score (DDS): 0.592
More commit stats: commits.ecosyste.ms
See more repository details: repos.ecosyste.ms
Last synced: about 7 hours ago

Critical

GSA_kwCzR0hTQS14cjJjLTV3ODktNjNwds01MA

Poetry before v1.1.9 contains Untrusted Search Path
Ecosystems: pypi
Packages: poetry
Source: github
Published: about 2 years ago

High

GSA_kwCzR0hTQS1qNGo5LTdoZzktOTdnNs4AAvPb

Poetry vulnerable to Untrusted Search Path leading to Local Code Execution on Windows
Ecosystems: pypi
Packages: poetry
Source: github
Published: over 1 year ago

High

GSA_kwCzR0hTQS05eGdqLWZjZ2YteDZtd84AAu1v

Poetry Argument Injection can lead to Local Code Execution
Ecosystems: pypi
Packages: poetry
Source: github
Published: over 1 year ago