Trust and health report
pinferencia - trust report
Sourced, dated trust signals - maintenance label posture, repository provenance, and security scan status. Not a composite safety grade.
GraphCanon updated today · GitHub synced today
Maintenance
Recency and activity heuristics from public GitHub metadata (maintenance label, momentum); methodology: github_public_v1.
last push 1242d ago · last release 3y
Provenance
Repository identity and fork provenance (github_public_v1).
- GitHub repo id: 477769513
- Not a fork
- Verified publisher: organization account
- Computed today
Security scan
Dependency advisory security scan when a lockfile is present. Not a full code audit.
- Status
- 160 low
- Last scan
- today
- Scanner
- osv@v1
Findings
GHSA-8rfp-98v4-mmr6
bleach@5.0.0 · poetry.lock
GHSA-gj48-438w-jh9v
bleach@5.0.0 · poetry.lock
GHSA-248v-346w-9cwc
certifi@2022.5.18.1 · poetry.lock
GHSA-43fp-rhv2-5gv8
certifi@2022.5.18.1 · poetry.lock
GHSA-xqr8-7jwr-rhp7
certifi@2022.5.18.1 · poetry.lock
PYSEC-2022-42986
certifi@2022.5.18.1 · poetry.lock
PYSEC-2023-135
certifi@2022.5.18.1 · poetry.lock
PYSEC-2024-230
certifi@2022.5.18.1 · poetry.lock
PYSEC-2024-38
fastapi@0.75.2 · poetry.lock
GHSA-2mqj-m65w-jghx
gitpython@3.1.27 · poetry.lock
GHSA-7545-fcxq-7j24
gitpython@3.1.27 · poetry.lock
GHSA-cwvm-v4w8-q58c
gitpython@3.1.27 · poetry.lock
GHSA-hcpj-qp55-gfph
gitpython@3.1.27 · poetry.lock
GHSA-mv93-w799-cj2w
gitpython@3.1.27 · poetry.lock
GHSA-pr76-5cm5-w9cj
gitpython@3.1.27 · poetry.lock
GHSA-v87r-6q3f-2j67
gitpython@3.1.27 · poetry.lock
GHSA-wfm5-v35h-vwf4
gitpython@3.1.27 · poetry.lock
GHSA-x2qx-6953-8485
gitpython@3.1.27 · poetry.lock
PYSEC-2022-42992
gitpython@3.1.27 · poetry.lock
PYSEC-2023-137
gitpython@3.1.27 · poetry.lock
PYSEC-2023-161
gitpython@3.1.27 · poetry.lock
PYSEC-2023-165
gitpython@3.1.27 · poetry.lock
PYSEC-2024-4
gitpython@3.1.27 · poetry.lock
GHSA-vqfr-h8mv-ghfj
h11@0.13.0 · poetry.lock
PYSEC-2026-348
h11@0.13.0 · poetry.lock
GHSA-65pc-fj4g-8rjx
idna@3.3 · poetry.lock
GHSA-jjg7-2v4v-x38h
idna@3.3 · poetry.lock
PYSEC-2024-60
idna@3.3 · poetry.lock
PYSEC-2026-215
idna@3.3 · poetry.lock
GHSA-29gw-9793-fvw7
ipython@7.34.0 · poetry.lock
PYSEC-2023-17
ipython@7.34.0 · poetry.lock
GHSA-cpwx-vrp4-4pq7
jinja2@3.1.2 · poetry.lock
GHSA-gmj6-6f8f-6699
jinja2@3.1.2 · poetry.lock
GHSA-h5c8-rqwp-cp95
jinja2@3.1.2 · poetry.lock
GHSA-h75v-3vvj-5mfj
jinja2@3.1.2 · poetry.lock
GHSA-q2x7-8rv6-6q7h
jinja2@3.1.2 · poetry.lock
PYSEC-2026-1471
jinja2@3.1.2 · poetry.lock
PYSEC-2026-1472
jinja2@3.1.2 · poetry.lock
PYSEC-2026-1473
jinja2@3.1.2 · poetry.lock
PYSEC-2026-1474
jinja2@3.1.2 · poetry.lock
PYSEC-2026-1475
jinja2@3.1.2 · poetry.lock
GHSA-6hrg-qmvc-2xh8
joblib@1.1.0 · poetry.lock
PYSEC-2022-288
joblib@1.1.0 · poetry.lock
GHSA-33p9-3p43-82vq
jupyter-core@4.10.0 · poetry.lock
GHSA-m678-f26j-3hrp
jupyter-core@4.10.0 · poetry.lock
PYSEC-2022-42974
jupyter-core@4.10.0 · poetry.lock
PYSEC-2026-1477
jupyter-core@4.10.0 · poetry.lock
GHSA-58cw-g322-p94v
mistune@0.8.4 · poetry.lock
GHSA-8g87-j6q8-g93x
mistune@0.8.4 · poetry.lock
GHSA-qcq2-496w-v96p
mistune@0.8.4 · poetry.lock
GHSA-v87v-83h2-53w7
mistune@0.8.4 · poetry.lock
PYSEC-2026-168
mistune@0.8.4 · poetry.lock
GHSA-4c99-qj7h-p3vg
nbconvert@6.5.0 · poetry.lock
GHSA-7jqv-fw35-gmx9
nbconvert@6.5.0 · poetry.lock
GHSA-9jmq-rx5f-8jwq
nbconvert@6.5.0 · poetry.lock
GHSA-xm59-rqc7-hhvf
nbconvert@6.5.0 · poetry.lock
PYSEC-2026-1691
nbconvert@6.5.0 · poetry.lock
GHSA-v7vq-3x77-87vg
notebook@6.4.11 · poetry.lock
PYSEC-2022-212
notebook@6.4.11 · poetry.lock
GHSA-fpfv-jqm9-f5jm
numpy@1.21.6 · poetry.lock
GHSA-3f63-hfp8-52jq
pillow@9.1.1 · poetry.lock
GHSA-44wm-f244-xhp3
pillow@9.1.1 · poetry.lock
GHSA-8ghj-p4vj-mr35
pillow@9.1.1 · poetry.lock
GHSA-j7hp-h8jx-5ppr
pillow@9.1.1 · poetry.lock
GHSA-m2vv-5vj5-2hm7
pillow@9.1.1 · poetry.lock
GHSA-r73j-pqj5-w3x7
pillow@9.1.1 · poetry.lock
GHSA-wjx4-4jcj-g98j
pillow@9.1.1 · poetry.lock
OSV-2022-1074
pillow@9.1.1 · poetry.lock
OSV-2022-715
pillow@9.1.1 · poetry.lock
PYSEC-2022-42979
pillow@9.1.1 · poetry.lock
PYSEC-2023-175
pillow@9.1.1 · poetry.lock
PYSEC-2023-227
pillow@9.1.1 · poetry.lock
PYSEC-2026-165
pillow@9.1.1 · poetry.lock
PYSEC-2026-1793
pillow@9.1.1 · poetry.lock
PYSEC-2026-1794
pillow@9.1.1 · poetry.lock
PYSEC-2026-457
pillow@9.1.1 · poetry.lock
GHSA-7gcm-g887-7qv7
protobuf@3.20.1 · poetry.lock
GHSA-8gq9-2x98-w8hf
protobuf@3.20.1 · poetry.lock
GHSA-8qvm-5x2c-j2w7
protobuf@3.20.1 · poetry.lock
PYSEC-2026-1805
protobuf@3.20.1 · poetry.lock
PYSEC-2026-1806
protobuf@3.20.1 · poetry.lock
PYSEC-2026-899
protobuf@3.20.1 · poetry.lock
GHSA-5wvp-7f3h-6wmm
pyarrow@8.0.0 · poetry.lock
PYSEC-2023-238
pyarrow@8.0.0 · poetry.lock
PYSEC-2024-161
pyarrow@8.0.0 · poetry.lock
GHSA-mr82-8j83-vxmv
pydantic@1.9.1 · poetry.lock
PYSEC-2026-1812
pydantic@1.9.1 · poetry.lock
GHSA-5239-wwwm-4pmq
pygments@2.12.0 · poetry.lock
GHSA-mrwq-x4v8-fh7p
pygments@2.12.0 · poetry.lock
PYSEC-2023-117
pygments@2.12.0 · poetry.lock
GHSA-6w46-j5rx-g56g
pytest@7.1.2 · poetry.lock
PYSEC-2026-1845
pytest@7.1.2 · poetry.lock
GHSA-9hjg-9r4m-mvj7
requests@2.27.1 · poetry.lock
GHSA-9wx4-h78v-vm56
requests@2.27.1 · poetry.lock
GHSA-gc5v-m9x4-r6x2
requests@2.27.1 · poetry.lock
GHSA-j8r2-6x86-q33q
requests@2.27.1 · poetry.lock
PYSEC-2023-74
requests@2.27.1 · poetry.lock
PYSEC-2026-1872
requests@2.27.1 · poetry.lock
PYSEC-2026-1873
requests@2.27.1 · poetry.lock
GHSA-2wc2-fm75-p42x
soupsieve@2.3.2.post1 · poetry.lock
GHSA-836r-79rf-4m37
soupsieve@2.3.2.post1 · poetry.lock
GHSA-2c2j-9gv5-cj73
starlette@0.17.1 · poetry.lock
GHSA-74m5-2c7w-9w3x
starlette@0.17.1 · poetry.lock
GHSA-82w8-qh3p-5jfq
starlette@0.17.1 · poetry.lock
GHSA-86qp-5c8j-p5mr
starlette@0.17.1 · poetry.lock
GHSA-f96h-pmfr-66vw
starlette@0.17.1 · poetry.lock
GHSA-jp82-jpqv-5vv3
starlette@0.17.1 · poetry.lock
GHSA-v5gw-mw7f-84px
starlette@0.17.1 · poetry.lock
GHSA-wqp7-x3pw-xc5r
starlette@0.17.1 · poetry.lock
GHSA-x746-7m8f-x49c
starlette@0.17.1 · poetry.lock
PYSEC-2023-48
starlette@0.17.1 · poetry.lock
PYSEC-2023-83
starlette@0.17.1 · poetry.lock
PYSEC-2026-161
starlette@0.17.1 · poetry.lock
PYSEC-2026-1941
starlette@0.17.1 · poetry.lock
PYSEC-2026-1943
starlette@0.17.1 · poetry.lock
PYSEC-2026-248
starlette@0.17.1 · poetry.lock
PYSEC-2026-249
starlette@0.17.1 · poetry.lock
GHSA-7p48-42j8-8846
streamlit@1.10.0 · poetry.lock
GHSA-8qw9-gf7w-42x5
streamlit@1.10.0 · poetry.lock
GHSA-rxff-vr5r-8cj5
streamlit@1.10.0 · poetry.lock
GHSA-v4hr-4jpx-56gc
streamlit@1.10.0 · poetry.lock
PYSEC-2022-248
streamlit@1.10.0 · poetry.lock
PYSEC-2024-153
streamlit@1.10.0 · poetry.lock
PYSEC-2026-212
streamlit@1.10.0 · poetry.lock
GHSA-3x9g-8vmp-wqvf
tornado@6.1 · poetry.lock
GHSA-753j-mpmx-qq6g
tornado@6.1 · poetry.lock
GHSA-78cv-mqj4-43f7
tornado@6.1 · poetry.lock
GHSA-7cx3-6m66-7c5m
tornado@6.1 · poetry.lock
GHSA-8w49-h785-mj3c
tornado@6.1 · poetry.lock
GHSA-cx3h-4qpv-8hc9
tornado@6.1 · poetry.lock
GHSA-fqwm-6jpj-5wxc
tornado@6.1 · poetry.lock
GHSA-hj3f-6gcp-jg8j
tornado@6.1 · poetry.lock
GHSA-mgf9-4vpg-hj56
tornado@6.1 · poetry.lock
GHSA-pw6j-qg29-8w7f
tornado@6.1 · poetry.lock
GHSA-qjxf-f2mg-c6mc
tornado@6.1 · poetry.lock
GHSA-qppv-j76h-2rpx
tornado@6.1 · poetry.lock
GHSA-w235-7p84-xx57
tornado@6.1 · poetry.lock
PYSEC-2023-75
tornado@6.1 · poetry.lock
PYSEC-2026-140
tornado@6.1 · poetry.lock
PYSEC-2026-1974
tornado@6.1 · poetry.lock
PYSEC-2026-1975
tornado@6.1 · poetry.lock
GHSA-2xpw-w6gg-jr37
urllib3@1.26.9 · poetry.lock
GHSA-34jh-p97f-mpxf
urllib3@1.26.9 · poetry.lock
GHSA-38jv-5279-wg99
urllib3@1.26.9 · poetry.lock
GHSA-g4mx-q9vg-27p4
urllib3@1.26.9 · poetry.lock
GHSA-gm62-xv2j-4w53
urllib3@1.26.9 · poetry.lock
GHSA-pq67-6m6q-mj2v
urllib3@1.26.9 · poetry.lock
GHSA-qccp-gfcp-xxvc
urllib3@1.26.9 · poetry.lock
GHSA-v845-jxx5-vc9f
urllib3@1.26.9 · poetry.lock
PYSEC-2023-192
urllib3@1.26.9 · poetry.lock
PYSEC-2023-212
urllib3@1.26.9 · poetry.lock
PYSEC-2026-141
urllib3@1.26.9 · poetry.lock
PYSEC-2026-1994
urllib3@1.26.9 · poetry.lock
PYSEC-2026-1995
urllib3@1.26.9 · poetry.lock
PYSEC-2026-1996
urllib3@1.26.9 · poetry.lock
PYSEC-2026-1998
urllib3@1.26.9 · poetry.lock
PYSEC-2026-1999
urllib3@1.26.9 · poetry.lock
GHSA-jfmj-5v4g-7637
zipp@3.8.0 · poetry.lock
PYSEC-2026-2074
zipp@3.8.0 · poetry.lock
GHSA-6p56-wp2h-9hxr
numpy@1.19.5 · requirements.txt
Method and caveats:these are sourced, dated heuristics from public GitHub data and optional dependency scans. A status like "no criticals found on 2026-07-11" is not a guarantee of safety. Read the full trust methodology · JSON report at /api/graphcanon/tools/underneathall-pinferencia/trust.
Common questions
- Is pinferencia maintained?
- GraphCanon rates pinferencia "Dormant" (18% maintenance signal from public GitHub metadata, computed today). Last push was 1242 days ago. This is a recency heuristic, not a guarantee the project will stay maintained.
- Is pinferencia safe to use?
- Last scanned today (deps profile). Status: 160 low - 160 low finding(s) in the latest scan. GraphCanon does not claim the project is safe or vulnerability-free; review findings on the trust report. GraphCanon does not certify pinferencia as safe - review maintenance, provenance, and scan findings on this page before adopting.
- Is pinferencia a fork?
- No. pinferencia is not flagged as a fork in GitHub metadata at the time of the last refresh.
- Does pinferencia have known security vulnerabilities?
- Last scanned today (deps profile). Status: 160 low - 160 low finding(s) in the latest scan. GraphCanon does not claim the project is safe or vulnerability-free; review findings on the trust report.
- How often is the pinferencia trust report updated?
- Trust signals refresh on GitHub ingest/refresh cycles and optional dependency/MCP scans. This report was computed today (methodology github_public_v1).
- What does GraphCanon never claim about pinferencia?
- We never publish a composite safety grade, pen-test endorsement, or "verified secure" label for pinferencia. Signals are sourced heuristics with explicit limits - see trust methodology.
- How does GraphCanon assess trust for pinferencia?
- Signals are sourced from public GitHub metadata and optional dependency/MCP manifest scans, each tagged with methodology version and computed date. GraphCanon does not publish a composite safety grade. Read trust methodology for full scope and limits.