Reporte público de escaneoRepositorio
jpadilla/pyjwt
Escaneado el 11 may 2026
Puntuación de riesgo/ 100
Riesgo alto
Resumen
PyJWT library exhibits high quantum vulnerability with 95 instances of quantum-susceptible algorithms including RSA, ECDSA (NIST P-256/384/521), and Ed25519. As a widely-used JWT implementation library, migration to post-quantum cryptography is critical to protect token integrity against future quantum attacks. The library's core cryptographic infrastructure requires comprehensive redesign to support NIST-approved PQC algorithms.
0
95
0
2
Hallazgos principales
- AltoNIST P-521 curve
jwt/algorithms.py:162
- AltoECDSA
jwt/api_jwk.py:45
ML-DSA (CRYSTALS-Dilithium) or SLH-DSA (SPHINCS+)
- AltoRSA
tests/keys/__init__.py:48
ML-KEM (CRYSTALS-Kyber) for key encapsulation
- AltoECDSA
tests/test_api_jws.py:218
ML-DSA (CRYSTALS-Dilithium) or SLH-DSA (SPHINCS+)
- AltoPKCS#1 (RSA-based)
tests/test_algorithms.py:80
+ 92 hallazgos más en el reporte completo
Escanea tu propio repositorio
Gratis. Resultados en ~90 segundos. CBOM + PDF DORA/NIS2 incluidos.