Package Version
Get package version metadata for a specific version of a package from an ecosystem.
Important: The security section of package_health refers to the specific version in the request, not the latest version. Since the overall_rating is computed from all health sections (including security), it is also influenced by this version's security data.
Supported Ecosystems: npm, pypi, maven, nuget, golang
Version Format: Accepts standard semantic versioning formats (e.g., 1.2.3, v1.2.3). Note: Golang commit hashes are NOT supported as version identifiers. Use tagged versions only.
Required permissions
View Organization (org.read)
API key value must be prefixed with "Token ".
Org ID
The package ecosystem
npmPossible values: Package name (URL encoded if needed)
expressPackage version (URL encoded if needed). Accepts semantic versioning formats (e.g., 1.2.3, v1.2.3). Note: Golang commit hashes are NOT supported.
4.19.2Requested API version
2025-11-05Pattern: ^(wip|work-in-progress|experimental|beta|((([0-9]{4})-([0-1][0-9]))-((3[01])|(0[1-9])|([12][0-9]))(~(wip|work-in-progress|experimental|beta))?))$Returns package version metadata
Bad Request: A parameter provided as a part of the request was invalid.
Unauthorized: the request requires an authentication token.
Forbidden: the request requires an authentication token with more or different permissions.
Not Found: The resource being operated on could not be found.
Conflict: The requested operation conflicts with the current state of the resource in some way.
Internal Server Error: An error was encountered while attempting to process the request.
Last updated
Was this helpful?

