brin
brin

localstack

PyPI

Is localstack safe to use?

Based on the latest brin safety scan, no vulnerabilities or threats were detected for localstack v4.13.1. Trust score: 80/100. 1 known CVE, no detected threat patterns, and no suspicious capabilities identified. This is an automated, point-in-time assessment.

Install (safety-checked)

localstack Passed Security Checks

No security concerns detected

clean
CVEs

1

Threats

0

Install Scripts

0

Risk Indicators

  • PYSEC-2023-243: UNKNOWN

localstack CVE Vulnerabilities (1)

PYSEC-2023-243

Missing SSL certificate validation in localstack v2.3.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack.

No Concerns Detected

No security concerns detected in the latest brin assessment. This is an automated, point-in-time evaluation — security posture may change.

This is an automated, point-in-time assessment and may contain errors. Findings are risk indicators, not confirmed threats. Security posture may change over time. Maintainers can dispute findings via the brin review process.

localstack Capabilities & Permissions

What localstack can access when installed. Review these capabilities before using with AI agents like Cursor, Claude Code, or Codex.

Network Access

This package makes network requests.

github.comraw.githubusercontent.com
Protocols: https

Filesystem Access

Reads from the filesystem.

/usr/ (r)

AGENTS.md for localstack

Good instructions lead to good results. brin adds localstack documentation to your AGENTS.md so your agent knows how to use it properly—improving both safety and performance.

brin init

Vercel's research: 100% accuracy with AGENTS.md vs 53% without →

localstack Documentation & Source Code

For the full localstack README, API documentation, and source code, visit the official package registry.

View on PyPIView SourceHomepage

Frequently asked questions about localstack safety

Weekly Downloads

N/A

Version

4.13.1

License

ISC

Last Scanned

Feb 10, 2026

Trust Score

80/100·Legitimacy signals, not safety

CVEs (1)

PYSEC-2023-243

Missing SSL certificate validation in localstack v2.3.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack.

Capabilities

Network

Connects to: github.com, raw.githubusercontent.com

Filesystem

Reads files

Is localstack Safe? | PyPI Safety Scan - brin