---
title: "ix trust report"
type: "trust-report"
slug: "kreneskyp-ix"
canonical_url: "https://www.graphcanon.com/tools/kreneskyp-ix/trust"
computed_at: "2026-07-11T10:46:53.273Z"
maintenance_label: "Slowing"
security_status: "findings"
---

# ix trust report

_Sourced [trust signals](/glossary/trust-and-signals/trust-signal) from public GitHub metadata and optional dependency [security scans](/glossary/trust-and-signals/security-scan). Not a security guarantee._

## Maintenance

- Label: Slowing (36% recency signal)
- Days since last push: 191
- Last release: 2024-02-08T17:24:17Z
- Methodology: github_public_v1

## Provenance

- GitHub repo id: 623760713
- Not a fork
- Owner type: User
- Computed at: 2026-07-11T10:46:53.273Z
- Methodology: github_public_v1

## Security scan

- Status: Findings present (0 critical, 0 high, 0 medium, 159 low) · last scan 2026-07-11T10:46:55.010Z

### Findings

- **low**: GHSA-3936-cmfr-pm3m (black@23.9.1 · requirements.txt)
- **low**: GHSA-fj7x-q9j7-g6q6 (black@23.9.1 · requirements.txt)
- **low**: PYSEC-2024-48 (black@23.9.1 · requirements.txt)
- **low**: PYSEC-2026-213 (daphne@4.0.0 · requirements.txt)
- **low**: PYSEC-2026-214 (daphne@4.0.0 · requirements.txt)
- **low**: GHSA-2mcm-79hx-8fxw (django@4.2.7 · requirements.txt)
- **low**: GHSA-33mw-q7rj-mjwj (django@4.2.7 · requirements.txt)
- **low**: GHSA-4rrr-2h4v-f3j9 (django@4.2.7 · requirements.txt)
- **low**: GHSA-5hgc-2vfp-mqvc (django@4.2.7 · requirements.txt)
- **low**: GHSA-5mf9-h53q-7mhq (django@4.2.7 · requirements.txt)
- **low**: GHSA-6426-9fv3-65x8 (django@4.2.7 · requirements.txt)
- **low**: GHSA-6w2r-r2m5-xq5w (django@4.2.7 · requirements.txt)
- **low**: GHSA-795c-9xpc-xw6g (django@4.2.7 · requirements.txt)
- **low**: GHSA-7xr5-9hcq-chf9 (django@4.2.7 · requirements.txt)
- **low**: GHSA-8498-2h75-472j (django@4.2.7 · requirements.txt)
- **low**: GHSA-8j24-cjrq-gr2m (django@4.2.7 · requirements.txt)
- **low**: GHSA-8p8v-wh79-9r56 (django@4.2.7 · requirements.txt)
- **low**: GHSA-933h-hp56-hf7m (django@4.2.7 · requirements.txt)
- **low**: GHSA-9jmf-237g-qf46 (django@4.2.7 · requirements.txt)
- **low**: GHSA-f6f8-9mx6-9mx2 (django@4.2.7 · requirements.txt)
- **low**: GHSA-frmv-pr5f-9mcr (django@4.2.7 · requirements.txt)
- **low**: GHSA-gvg8-93h5-g6qq (django@4.2.7 · requirements.txt)
- **low**: GHSA-hpr9-3m2g-3j9p (django@4.2.7 · requirements.txt)
- **low**: GHSA-jh75-99hh-qvx9 (django@4.2.7 · requirements.txt)
- **low**: GHSA-m9g8-fxxm-xg86 (django@4.2.7 · requirements.txt)
- **low**: GHSA-mjgh-79qc-68w3 (django@4.2.7 · requirements.txt)
- **low**: GHSA-mmwr-2jhp-mc7j (django@4.2.7 · requirements.txt)
- **low**: GHSA-mvfq-ggxm-9mc5 (django@4.2.7 · requirements.txt)
- **low**: GHSA-mwm9-4648-f68q (django@4.2.7 · requirements.txt)
- **low**: GHSA-p3fp-8748-vqfq (django@4.2.7 · requirements.txt)
- **low**: GHSA-pv4p-cwwg-4rph (django@4.2.7 · requirements.txt)
- **low**: GHSA-pwjp-ccjc-ghwg (django@4.2.7 · requirements.txt)
- **low**: GHSA-q95w-c7qg-hrff (django@4.2.7 · requirements.txt)
- **low**: GHSA-qcgg-j2x8-h9g8 (django@4.2.7 · requirements.txt)
- **low**: GHSA-qg2p-9jwr-mmqf (django@4.2.7 · requirements.txt)
- **low**: GHSA-qw25-v68c-qjf3 (django@4.2.7 · requirements.txt)
- **low**: GHSA-r836-hh6v-rg5g (django@4.2.7 · requirements.txt)
- **low**: GHSA-rqw2-ghq9-44m7 (django@4.2.7 · requirements.txt)
- **low**: GHSA-rrqc-c2jx-6jgv (django@4.2.7 · requirements.txt)
- **low**: GHSA-vm8q-m57g-pff3 (django@4.2.7 · requirements.txt)
- **low**: GHSA-vrcr-9hj9-jcg6 (django@4.2.7 · requirements.txt)
- **low**: GHSA-x7q2-wr7g-xqmf (django@4.2.7 · requirements.txt)
- **low**: GHSA-xxj9-f6rv-m3x4 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2024-102 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2024-156 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2024-157 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2024-28 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2024-47 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2024-56 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2024-57 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2024-58 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2024-59 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2024-67 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2024-68 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2024-69 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2024-70 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2025-1 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2025-104 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2025-105 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2025-106 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2025-107 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2025-108 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2025-109 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2025-13 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2025-37 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2025-47 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2026-1296 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2026-1297 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2026-42 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2026-43 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2026-44 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2026-45 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2026-46 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2026-47 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2026-48 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2026-49 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2026-51 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2026-52 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2026-53 (django@4.2.7 · requirements.txt)
- **low**: PYSEC-2024-38 (fastapi@0.103.2 · requirements.txt)
- **low**: GHSA-3644-q5cj-c5c7 (langchain@0.1.9 · requirements.txt)
- **low**: GHSA-3hjh-jh2h-vrg6 (langchain@0.1.9 · requirements.txt)
- **low**: GHSA-45pg-36p6-83v9 (langchain@0.1.9 · requirements.txt)
- **low**: GHSA-gr75-jv2w-4656 (langchain@0.1.9 · requirements.txt)
- **low**: PYSEC-2024-118 (langchain@0.1.9 · requirements.txt)
- **low**: PYSEC-2024-43 (langchain@0.1.9 · requirements.txt)
- **low**: PYSEC-2026-1507 (langchain@0.1.9 · requirements.txt)
- **low**: GHSA-f2jm-rw3h-6phg (langchain-community@0.0.24 · requirements.txt)
- **low**: GHSA-h5gc-rm8j-5gpr (langchain-community@0.0.24 · requirements.txt)
- **low**: GHSA-pc6w-59fv-rh23 (langchain-community@0.0.24 · requirements.txt)
- **low**: GHSA-q25c-c977-4cmh (langchain-community@0.0.24 · requirements.txt)
- **low**: PYSEC-2024-278 (langchain-community@0.0.24 · requirements.txt)
- **low**: PYSEC-2025-70 (langchain-community@0.0.24 · requirements.txt)
- **low**: PYSEC-2026-1514 (langchain-community@0.0.24 · requirements.txt)
- **low**: PYSEC-2026-1515 (langchain-community@0.0.24 · requirements.txt)
- **low**: PYSEC-2026-1516 (langchain-community@0.0.24 · requirements.txt)
- **low**: GHSA-wmvm-9vqv-5qpp (langchain-experimental@0.0.52 · requirements.txt)
- **low**: PYSEC-2024-53 (langchain-experimental@0.0.52 · requirements.txt)
- **low**: GHSA-248m-82v9-q6g6 (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-2q4j-m29v-hq73 (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-2rw7-x74f-jg35 (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-3crg-w4f6-42mx (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-4f6g-68pf-7vhv (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-4pxv-j86v-mhcw (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-4xc4-762w-m6cg (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-52x6-gq3r-vpf4 (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-5hgr-hg42-57jg (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-7gw9-cf7v-778f (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-7hfw-26vp-jp8m (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-87mj-5ggw-8qc3 (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-996q-pr4m-cvgq (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-9m86-7pmv-2852 (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-9mvc-8737-8j8h (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-cj93-chg6-vgv8 (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-f2v5-7jq9-h8cg (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-g9xf-7f8q-9mcj (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-hqmh-ppp3-xvm7 (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-j543-4vmf-qm7v (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-jfx9-29x2-rv3j (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-jj6c-8h6c-hppx (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-jm82-fx9c-mx94 (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-m2v9-299j-rv96 (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-m449-cwjh-6pw7 (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-qpxp-75px-xjcp (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-vr63-x8vc-m265 (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-wgvp-vg3v-2xq3 (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-wjqc-6w8f-h24c (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-x284-j5p8-9c5p (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-x7hp-r3qg-r3cj (pypdf@3.17.0 · requirements.txt)
- **low**: PYSEC-2026-1827 (pypdf@3.17.0 · requirements.txt)
- **low**: PYSEC-2026-1828 (pypdf@3.17.0 · requirements.txt)
- **low**: PYSEC-2026-1829 (pypdf@3.17.0 · requirements.txt)
- **low**: PYSEC-2026-1830 (pypdf@3.17.0 · requirements.txt)
- **low**: PYSEC-2026-1831 (pypdf@3.17.0 · requirements.txt)
- **low**: PYSEC-2026-1832 (pypdf@3.17.0 · requirements.txt)
- **low**: PYSEC-2026-1833 (pypdf@3.17.0 · requirements.txt)
- **low**: GHSA-6w46-j5rx-g56g (pytest@7.4.2 · requirements.txt)
- **low**: PYSEC-2026-1845 (pytest@7.4.2 · requirements.txt)
- **low**: GHSA-2jv5-9r88-3w3p (python-multipart@0.0.6 · requirements.txt)
- **low**: GHSA-59g5-xgcq-4qw3 (python-multipart@0.0.6 · requirements.txt)
- **low**: GHSA-5rvq-cxj2-64vf (python-multipart@0.0.6 · requirements.txt)
- **low**: GHSA-6jv3-5f52-599m (python-multipart@0.0.6 · requirements.txt)
- **low**: GHSA-mj87-hwqh-73pj (python-multipart@0.0.6 · requirements.txt)
- **low**: GHSA-pp6c-gr5w-3c5g (python-multipart@0.0.6 · requirements.txt)
- **low**: GHSA-v9pg-7xvm-68hf (python-multipart@0.0.6 · requirements.txt)
- **low**: GHSA-vffw-93wf-4j4q (python-multipart@0.0.6 · requirements.txt)
- **low**: GHSA-wp53-j4wj-2cfg (python-multipart@0.0.6 · requirements.txt)
- **low**: PYSEC-2026-1850 (python-multipart@0.0.6 · requirements.txt)
- **low**: PYSEC-2026-1851 (python-multipart@0.0.6 · requirements.txt)
- **low**: PYSEC-2026-1852 (python-multipart@0.0.6 · requirements.txt)
- **low**: GHSA-9hjg-9r4m-mvj7 (requests@2.31.0 · requirements.txt)
- **low**: GHSA-9wx4-h78v-vm56 (requests@2.31.0 · requirements.txt)
- **low**: GHSA-gc5v-m9x4-r6x2 (requests@2.31.0 · requirements.txt)
- **low**: PYSEC-2026-1872 (requests@2.31.0 · requirements.txt)
- **low**: PYSEC-2026-1873 (requests@2.31.0 · requirements.txt)
- **low**: GHSA-32r8-54hf-c9p3 (unstructured@0.12.3 · requirements.txt)
- **low**: GHSA-gm8q-m8mv-jj5m (unstructured@0.12.3 · requirements.txt)
- **low**: PYSEC-2026-1993 (unstructured@0.12.3 · requirements.txt)
- **low**: PYSEC-2026-558 (unstructured@0.12.3 · requirements.txt)

## Method and caveats

These are heuristics from public GitHub data and optional dependency scans, sourced and dated. 
"No criticals found on 2026-07-11" is not a guarantee of safety.
See the full methodology: [/trust-methodology](/trust-methodology.md).

## Common questions

### Is ix maintained?

GraphCanon rates ix "Slowing" (36% maintenance signal from public GitHub metadata, computed today). Last push was 191 days ago. This is a recency heuristic, not a guarantee the project will stay maintained.

### Is ix safe to use?

Last scanned today (deps profile). Status: 159 low - 159 low finding(s) in the latest scan. GraphCanon does not claim the project is safe or vulnerability-free; review findings on the trust report. GraphCanon does not certify ix as safe - review maintenance, provenance, and scan findings on this page before adopting.

### Is ix a fork?

No. ix is not flagged as a fork in GitHub metadata at the time of the last refresh.

### Does ix have known security vulnerabilities?

Last scanned today (deps profile). Status: 159 low - 159 low finding(s) in the latest scan. GraphCanon does not claim the project is safe or vulnerability-free; review findings on the trust report.

### How often is the ix trust report updated?

Trust signals refresh on GitHub ingest/refresh cycles and optional dependency/MCP scans. This report was computed today (methodology github_public_v1).

### What does GraphCanon never claim about ix?

We never publish a composite safety grade, pen-test endorsement, or "verified secure" label for ix. Signals are sourced heuristics with explicit limits - see [trust methodology](/trust-methodology).

### How does GraphCanon assess trust for ix?

Signals are sourced from public GitHub metadata and optional dependency/MCP manifest scans, each tagged with methodology version and computed date. GraphCanon does not publish a composite safety grade. Read [trust methodology](/trust-methodology) for full scope and limits.

---

**Machine-readable endpoints**

- JSON: [`/api/graphcanon/tools/kreneskyp-ix/trust`](/api/graphcanon/tools/kreneskyp-ix/trust)
- LLM index: [/llms.txt](/llms.txt)
- Full corpus: [/llms-full.txt](/llms-full.txt)

_GraphCanon - The knowledge graph for AI development. https://www.graphcanon.com/_
