Analyzed
about 15 hours
ago.
based on code collected
about 17 hours
ago.
In a Nutshell, nghttp2...
- ...
- ...
-
...
has a well established, mature codebase
maintained by a large development team
with increasing Y-O-Y commits -
...
took an estimated 30 years of effort (COCOMO model)
starting with its first commit in January, 2012
ending with its most recent commit 2 days ago
Quick Reference
https://github.com/nghttp2/nghttp2
MIT License
Permitted
Commercial Use
Modify
Distribute
Sub-License
Private Use
Forbidden
Hold Liable
Required
Include Copyright
Include License
These details are provided for information only. No information here is legal advice and should not be used as such.
Project Security
Vulnerabilities per Version ( last 10 releases )
There are no reported vulnerabilities
Project Vulnerability Report
Security Confidence Index
Poor security track-record
Favorable security track-record
Vulnerability Exposure Index
Many reported vulnerabilities
Few reported vulnerabilities
Did You Know...
-
...
there are over 3,000 projects on the Open Hub with security vulnerabilities reported against them
-
...
by exploring contributors within projects, you can view details on every commit they have made to that project
-
...
65% of companies leverage OSS to speed application development in 2016
-
...
data presented on the Open Hub is available through our API
30 Day SummaryDec 16 2025 — Jan 15 2026
|
12 Month SummaryJan 15 2025 — Jan 15 2026
|
Static Analysis ( Generated by Coverity Scan for nghttp2/nghttp2 )
Repository URL: https://github.com/nghttp2/nghttp2
Version:
- 2025-10-22
- Last Analyzed
- 352,372
- Lines of Code Analyze
- 0.54
- Defect Density
Defects by status for current build
- 506
- Total defects
- 142
- Outstanding
- 359
- Fixed
CWE Top 25 defects
| ID | CWE-Name | Number of Defects |
|---|---|---|
| 190 | Integer Overflow or Wraparound | 12 |