nltk

Name: nltk
Rating: 4.14 (1 reviews)
Author: NLTK Team

#105 · by NLTK Team

infra serverless GPU

4.14/ 5.00

trustedBeta

Mar 5, 2026 at 7:04 AM6 signals analysedNo manual reviews · fully automated

Trust Signal Breakdown

high23 sub-signals across 6 dimensions

CVEs, dependency health, and supply chain integrity

3 of 3 sub-signals with data

Known CVEs40%4.4

6 CVE(s) found — 0 unpatched

via OSV.dev

Dependency Health30%4.0

20 dependencies (low)

via npm / PyPI

Supply Chain30%4.8

43 transitive CVEs found (penalty: -0.25)

via npm provenance

Uptime, latency, error rates, and incident history

4 of 4 sub-signals with data

Uptime35%5.0

100.00% over 5 checks

via Health checks

Response Latency25%5.0

p99: 20ms, p50: 16ms

via Health checks

Error Rate20%5.0

0.00% error rate (0/5)

via Health checks

Incident History20%1.0

6 incidents in last 90 days

via Incidents table

Commit recency, release cadence, issue response, CI/CD

4 of 4 sub-signals with data

Commit Recency30%5.0

via GitHub

Release Cadence25%2.0

via GitHub

Issue Response20%2.0

via GitHub

CI/CD Presence25%5.0

via GitHub Actions

Downloads, stars, dependents, and growth trajectory

2 of 4 sub-signals with data

Download Volume55%5.0

12,797,278 weekly downloads

via npm / PyPI

GitHub Stars45%5.0

14,532 stars

via GitHub

Dependent Packagesno data—

Weight redistributed to sub-signals with data

Growth Trendno data—

Weight redistributed to sub-signals with data

License, documentation, security policy, changelog

4 of 4 sub-signals with data

Open Source30%5.0

Public repo with OSI-approved license (apache-2.0)

via GitHub

Documentation25%3.0

Adequate README (>500 bytes)

via GitHub

Security Policy20%5.0

SECURITY.md present

via GitHub

Changelog25%2.0

No CHANGELOG.md and no releases found

via GitHub

Track record, org maturity, community standing

4 of 4 sub-signals with data

Track Record30%3.5

Internal: 1.0 (0 services), External: 3.5 (489 followers, 17109 stars)

via Fabric index

Org Maturity30%5.0

Organization, 16.5 years old

via GitHub

Community Standing20%3.0

10 public repositories

via GitHub

Cross-Platform20%3.0

Present on 2 platform(s): github, pypi

via Registry scan

About this score

Scored across 23 sub-signals in 6 dimensionsScoring engine v1 (beta) — actively being expandedPhase 1: Core sub-signal architecture (live)Phase 2: Permission scope & expanded collection (in progress)

Trust AssessmentAI Assessment

NLTK is a comprehensive Python library for natural language processing published by NLTK Team under Apache License 2.0, providing tokenization, parsing, classification, and corpus analysis tools. With 12.8 million weekly downloads and strong operational reliability, it demonstrates high adoption and stable infrastructure despite 6 reported CVEs in its history. The 20-dependency chain includes several heavy scientific computing libraries (numpy, scipy, scikit-learn), which increases the attack surface and requires careful dependency management in production environments.

Generated by Fabric AI · Mar 4, 2026 at 4:11 AM

Package Availability (30d)

100.00%

p50: 16ms · p99: 20ms

Avg Latency

17ms

averaged across 30d health checks

Weekly Downloads

—

no package registry data

Incidents & Alertslast 90 days

Mar 2Critical CVE detected — patched in v3.9.34.14