stanfordnlp/dspy

https://github.com/stanfordnlp/dspy

Scanned on Mar 16, 2026

2 Critical

39 High

60 Medium

73 Low

Base 500+230 bonuses−50 penalties=680C

Bonuses earned

+230

Clean Security+70

Clean Secrets & Credentials+50

Has tests+40

Has CI/CD+30

Has LICENSE+20

Has quality README+15

Has .gitignore+5

Clean Dependencies+40

Clean Code Quality+30

Low complexity+15

Has lock file+10

Has SECURITY.md+10

No duplication+10

Has CODEOWNERS+5

Penalties

−50

dependenciesDependencies−40

qualityCode Quality−10

Grade caps applied

2 critical findingsCapped to C

AI Assessment

VERDICT

Not production-ready. The repository has 2 critical dependency vulnerabilities and 39 high-severity CVEs across lock files, plus 91 code quality issues including functions with cyclomatic complexity exceeding 70. Dependency hygiene is severely degraded.

TOP RISKS

→ CVE-2025-43859 in h11@0.14.0 flagged in docs/Pipfile.lock — critical vulnerability in HTTP library

→ CVE-2025-68664 in langchain-core@1.0.4 flagged in uv.lock — critical vulnerability in core dependency

→ Multiple high-severity CVEs in urllib3@1.26.6 detected across docs/Pipfile.lock, docs/requirements.txt, and uv.lock (CVE-2025-66418, CVE-2025-66471, CVE-2026-21441, CVE-2023-43804, CVE-2025-50181, CVE-2023-45803, CVE-2024-37891)

→ High cyclomatic complexity flagged in dspy/teleprompt/grpo.py, dspy/teleprompt/simba.py, and dspy/teleprompt/gepa/gepa_utils.py with compile functions reaching CCN 74

→ Duplicated code blocks (41 lines) detected across test files including tests/predict/test_react.py:358 and tests/teleprompt/test_gepa_instruction_proposer.py:305

WHAT TO FIX FIRST

Upgrade urllib3 across all lock files (docs/Pipfile.lock, docs/requirements.txt, uv.lock). The scanner detected 7 distinct CVEs in version 1.26.6. This single dependency appears in multiple manifests and fixing it would eliminate roughly 15-20 findings immediately.

Note: Verify these CVE findings against actual code usage—some may be false positives if the vulnerable code paths are not exercised. The cyclomatic complexity findings warrant manual review to confirm they reflect actual maintainability issues.

fix-prompt.md

Category Breakdown

300/300

Security

200/200

Secrets & Credentials

0/150

Dependencies80 findings

60/100

Code Quality91 findings

100/100

Best Practices3 findings

Findings(174 in 67 groups)

h11: h11 accepts some malformed Chunked-Encoding bodies | Fix available: 0.16.0 | Package: h11 (pipenv) | https://avd.aquasec.com/nvd/cve-2025-43859

Affected files

docs/Pipfile.lock

langchain-core: LangChain: Arbitrary code execution via serialization injection | Fix available: 1.2.5, 0.3.81 | Package: langchain-core (uv) | https://avd.aquasec.com/nvd/cve-2025-68664

Affected files

uv.lock

Function "compile( self" has a cyclomatic complexity of 74 (255 lines, 6 parameters). This function is extremely complex and should be refactored into smaller functions.

Affected files

dspy/teleprompt/grpo.py0

dspy/teleprompt/simba.py0

dspy/teleprompt/gepa/gepa_utils.py0

dspy/predict/predict.py0

dspy/signatures/signature.py0

dspy/teleprompt/copro_optimizer.py0

dspy/streaming/streaming_listener.py0

dspy/teleprompt/mipro_optimizer_v2.py0

dspy/signatures/signature.py0

dspy/adapters/utils.py0

dspy/evaluate/evaluate.py0

dspy/adapters/baml_adapter.py0

dspy/teleprompt/grpo.py0

dspy/signatures/signature.pyL54

dspy/retrievers/databricks_rm.py0

urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion | Fix available: 2.6.0 | Package: urllib3 (pipenv) | https://avd.aquasec.com/nvd/cve-2025-66418

Affected files

docs/Pipfile.lock

docs/requirements.txt

uv.lock

urllib3: urllib3 Streaming API improperly handles highly compressed data | Fix available: 2.6.0 | Package: urllib3 (pipenv) | https://avd.aquasec.com/nvd/cve-2025-66471

Affected files

docs/Pipfile.lock

docs/requirements.txt

uv.lock

urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API) | Fix available: 2.6.3 | Package: urllib3 (pipenv) | https://avd.aquasec.com/nvd/cve-2026-21441

Affected files

docs/Pipfile.lock

docs/requirements.txt

uv.lock

aiohttp: AIOHTTP's HTTP Parser auto_decompress feature is vulnerable to zip bomb | Fix available: 3.13.3 | Package: aiohttp (pipenv) | https://avd.aquasec.com/nvd/cve-2025-69223

Affected files

docs/Pipfile.lock

uv.lock

pillow: Pillow: Out-of-bounds Write via Specially Crafted PSD Image | Fix available: 12.1.1 | Package: pillow (pipenv) | https://avd.aquasec.com/nvd/cve-2026-25990

Affected files

docs/Pipfile.lock

uv.lock

python-urllib3: Cookie request header isn't stripped during cross-origin redirects | Fix available: 2.0.6, 1.26.17 | Package: urllib3 (pipenv) | https://avd.aquasec.com/nvd/cve-2023-43804

Affected files

docs/Pipfile.lock

docs/requirements.txt

cryptography: cryptography Subgroup Attack Due to Missing Subgroup Validation for SECT Curves | Fix available: 46.0.5 | Package: cryptography (uv) | https://avd.aquasec.com/nvd/cve-2026-26007

Affected files

uv.lock

Share your ShipScanner

Show the world your code quality. Your report has a beautiful preview image built in.

LinkedIn Twitter / X

Embed Trust Badge

Show your code quality score in your README. The badge updates automatically every time you re-scan.

README.md

[![ShipScanner: B 680](https://shipscanner.dev/api/badge/cmmt8i52k0005k004d0vz60s4)](https://shipscanner.dev/report/cmmt8i52k0005k004d0vz60s4)