Does vyper have any known vulnerabilities?

vyper v0.4.3 has 2 known CVE vulnerabilities. Review the safety scan for severity details and remediation guidance.

What capabilities does vyper have?

vyper has the following detected capabilities: filesystem access, process spawning, environment variable access. Review these before using with AI coding agents.

Can I use vyper safely with AI coding agents?

No safety concerns were detected for vyper. Install with brin add vyper to verify safety before installation. Run brin init to generate AGENTS.md documentation for your agent. Assessments are automated and may change over time.

vyper

PyPI

Is vyper safe to use?

Based on the latest brin safety scan, no vulnerabilities or threats were detected for vyper v0.4.3. Trust score: 80/100. 2 known CVEs, no detected threat patterns, and no suspicious capabilities identified. This is an automated, point-in-time assessment.

Install (safety-checked)

vyper Passed Security Checks

No security concerns detected

clean

CVEs

Threats

Install Scripts

Risk Indicators

•GHSA-vgf2-gvx8-xwc3: UNKNOWN
•PYSEC-2023-142: UNKNOWN

vyper CVE Vulnerabilities (2)

GHSA-vgf2-gvx8-xwc3

Vyper Does Not Check the Success of Certain Precompile Calls

PYSEC-2023-142

Vyer is a Pythonic Smart Contract Language for the Ethereum Virtual Machine (EVM). In versions 0.2.15, 0.2.16 and 0.3.0, named re-entrancy locks are allocated incorrectly. Each function using a nam...

No Concerns Detected

No security concerns detected in the latest brin assessment. This is an automated, point-in-time evaluation — security posture may change.

This is an automated, point-in-time assessment and may contain errors. Findings are risk indicators, not confirmed threats. Security posture may change over time. Maintainers can dispute findings via the brin review process.

vyper Capabilities & Permissions

What vyper can access when installed. Review these capabilities before using with AI agents like Cursor, Claude Code, or Codex.

Filesystem Access

Reads and writes to the filesystem.

.env (rw).env (rw)/usr/ (rw)/usr/ (rw)/usr/ (rw)/usr/ (rw)/usr/ (rw)/usr/ (rw)+3 more

Process Spawning

This package can spawn child processes.

Environment Variables

Accesses the following environment variables.

VENOM_ENABLE_LEGACY_OPTIMIZERVYPER_COLOR_OUTPUTVYPER_ERROR_CONTEXT_LINESVYPER_ERROR_LINE_NUMBERSVYPER_TRACEBACK_LIMIT

AGENTS.md for vyper

Good instructions lead to good results. brin adds vyper documentation to your AGENTS.md so your agent knows how to use it properly—improving both safety and performance.

brin init

Vercel's research: 100% accuracy with AGENTS.md vs 53% without →

vyper Documentation & Source Code

For the full vyper README, API documentation, and source code, visit the official package registry.

View on PyPI View Source

Frequently asked questions about vyper safety

Install (safety-checked)

Weekly Downloads

44.6K

Version

0.4.3

License

MIT

Last Scanned

Feb 10, 2026

Trust Score

80/100·Legitimacy signals, not safety

CVEs (2)

GHSA-vgf2-gvx8-xwc3

Vyper Does Not Check the Success of Certain Precompile Calls

PYSEC-2023-142

Capabilities

Filesystem

Reads & Writes files

Process

Spawns child processes

Environment

Accesses: VENOM_ENABLE_LEGACY_OPTIMIZER, VYPER_COLOR_OUTPUT, VYPER_ERROR_CONTEXT_LINES...