QuantumScan
jpadilla/pyjwt
PyJWT library extensively uses quantum-vulnerable cryptographic algorithms including RSA, ECDSA (NIST P-256/384/521, secp256k1), and EdDSA across 95 identified instances. As a JWT implementation library, its core functionality relies entirely on classical public-key cryptography that will become insecure against quantum attacks, requiring comprehensive algorithm migration to maintain long-term security guarantees.
| File | Algorithm | Severity |
|---|---|---|
| jwt/algorithms.py:45 | NIST P-521 curve | high |
| jwt/algorithms.py:115 | RSA | high |
| jwt/algorithms.py:159 | ECDSA | high |
| jwt/algorithms.py:160 | NIST P-521 curve | high |
| jwt/algorithms.py:161 | ECDSA | high |
| jwt/algorithms.py:162 | NIST P-521 curve | high |
| jwt/algorithms.py:167 | Ed25519 / EdDSA | high |
| jwt/algorithms.py:43 | NIST P-256 curve | high |
| jwt/algorithms.py:44 | NIST P-384 curve | high |
| jwt/algorithms.py:46 | Elliptic Curve Cryptography | high |
Anyone with this link can view the risk score and top findings — no sign-in required. Source code stays private.
https://quantumscan.io/en/share/742a3c3b-c6ad-4cbe-ba9a-56a5c2812a3fShow your project's post-quantum readiness in the README. The badge updates automatically after every new scan.
Preview
[](https://github.com/jpadilla/pyjwt)<a href="https://github.com/jpadilla/pyjwt"><img src="https://quantumscan.io/api/badge/jpadilla/pyjwt.svg" alt="Post-Quantum Readiness" /></a>Add badge to your README
Show your quantum-safety score directly on GitHub.
[](https://quantumscan.io/en/scan/742a3c3b-c6ad-4cbe-ba9a-56a5c2812a3f)Save your results & track future changes
Create a free account to get drift alerts, compliance PDF exports, and scan history.
- Weekly drift alerts when new vulnerabilities appear
- Track risk score over time across all your repos
- Export DORA / NIS2 compliance PDF for auditors
Free forever for design partners · No credit card