DepKeep

OSS Support Hub / Web Framework

Python Web Framework BSD-3-Clause Latest: 1.0.0

Starlette

Lightweight ASGI framework/toolkit for building async web services in Python

PyPIGitHub
Health Metrics

Project Health at a Glance

Live data from GitHub and PyPI, updated daily.

โญ
12.3K+2
GitHub Stars
๐Ÿ“ฆ
1.0.0
Latest Release ยท 1 months ago
๐Ÿ”„
16d
Avg. Release Cadence
๐Ÿ›
59
Open Issues
๐Ÿ“…
Yesterday
Last Commit
๐Ÿ”’
7
Active CVEs

Data last fetched: 2026-05-15

Security

Known Vulnerabilities

7 active CVEs reported via OSV.dev

GHSA-2c2j-9gv5-cj73 CVSS_V3

Starlette has possible denial-of-service vector when parsing large files in multipart forms

Published: 2025-07-21 Fixed in: 0.47.2
GHSA-74m5-2c7w-9w3x CVSS_V3

MultipartParser denial of service with too many fields or files

Published: 2023-02-14 Fixed in: 0.25.0
GHSA-7f5h-v6xp-fcq8 CVSS_V3

Starlette vulnerable to O(n^2) DoS via Range header merging in ``starlette.responses.FileResponse``

Published: 2025-10-28 Fixed in: 0.49.1
GHSA-f96h-pmfr-66vw CVSS_V3

Starlette Denial of service (DoS) via multipart/form-data

Published: 2024-10-15 Fixed in: 0.40.0
GHSA-v5gw-mw7f-84px CVSS_V3

Starlette has Path Traversal vulnerability in StaticFiles

Published: 2023-05-17 Fixed in: 0.27.0
PYSEC-2023-48 Unknown

Published: 2023-04-21 Fixed in: 8c74c2c8dba7030154f8af18e016136bea1938fa
PYSEC-2023-83 Unknown

Published: 2023-06-01 Fixed in: 0.27.0
Ecosystem

Alternatives to Starlette

Other Web Framework projects in the Python ecosystem worth evaluating.

fastapi โ†’ flask โ†’ aiohttp โ†’
Get Help

Support Options for Starlette

Enterprise Support via DepKeep

Get SLA-backed support, security patches, and direct access to senior engineers for Starlette โ€” without relying on volunteer maintainers.

Talk to an Expert โ†’

Community Channels

GitHub Discussions โ†’Stack Overflow โ†’