Analyzed
about 7 hours
ago.
based on code collected
about 8 hours
ago.
Project Summary
HarfBuzz is an OpenType text shaping engine.
In a Nutshell, HarfBuzz...
- ...
- ...
-
...
has a well established, mature codebase
maintained by a very large development team
with increasing Y-O-Y commits -
...
took an estimated 45 years of effort (COCOMO model)
starting with its first commit in December, 2000
ending with its most recent commit about 23 hours ago
Quick Reference
https://github.com/harfbuzz/harf...
MIT License
Permitted
Commercial Use
Modify
Distribute
Sub-License
Private Use
Forbidden
Hold Liable
Required
Include Copyright
Include License
These details are provided for information only. No information here is legal advice and should not be used as such.
Project Security
Vulnerabilities per Version ( last 10 releases )
Project Vulnerability Report
Security Confidence Index
Poor security track-record
Favorable security track-record
Vulnerability Exposure Index
Many reported vulnerabilities
Few reported vulnerabilities
Did You Know...
-
...
use of OSS increased in 65% of companies in 2016
-
...
you can subscribe to e-mail newsletters to receive update from the Open Hub blog
-
...
55% of companies leverage OSS for production infrastructure
-
...
you can embed statistics from Open Hub on your site
30 Day SummaryJan 31 2026 — Mar 2 2026
|
12 Month SummaryMar 2 2025 — Mar 2 2026
|
Static Analysis ( Generated by Coverity Scan for HarfBuzz )
Repository URL: https://github.com/harfbuzz/harfbuzz
Version: trunk
- 2026-03-01
- Last Analyzed
- 219,361
- Lines of Code Analyze
- 0.39
- Defect Density
Defects by status for current build
- 218
- Total defects
- 86
- Outstanding
- 128
- Fixed
CWE Top 25 defects
| ID | CWE-Name | Number of Defects |
|---|---|---|
| 190 | Integer Overflow or Wraparound | 18 |