Reporte público de escaneoRepositorio
jpadilla/pyjwt
Escaneado el 13 may 2026
Puntuación de riesgo/ 100
Riesgo alto
Resumen
PyJWT library extensively uses quantum-vulnerable cryptographic algorithms including RSA, ECDSA (NIST P-256/384/521, secp256k1), and EdDSA across 95 identified instances. As a JWT implementation library, its core functionality relies entirely on classical public-key cryptography that will become insecure against quantum attacks, requiring comprehensive algorithm migration to maintain long-term security guarantees.
0
95
0
2
Hallazgos principales
- AltoECDSA
tests/test_utils.py:55
ML-DSA (CRYSTALS-Dilithium) or SLH-DSA (SPHINCS+)
- AltoECDSA
jwt/algorithms.py:159
ML-DSA (CRYSTALS-Dilithium) or SLH-DSA (SPHINCS+)
- AltoRSA
jwt/algorithms.py:115
ML-KEM (CRYSTALS-Kyber) for key encapsulation
- AltoECDSA
tests/test_utils.py:56
ML-DSA (CRYSTALS-Dilithium) or SLH-DSA (SPHINCS+)
- AltoECDSA
tests/test_utils.py:57
ML-DSA (CRYSTALS-Dilithium) or SLH-DSA (SPHINCS+)
+ 92 hallazgos más en el reporte completo
Escanea tu propio repositorio
Gratis. Resultados en ~90 segundos. CBOM + PDF DORA/NIS2 incluidos.