Ray logo

Ray

#1728 · by Ray Team
infraserverlessGPU
2.99/ 5.00
cautionBeta
Score capped to 2.99 (raw score: 3.60) due to insufficient data in one or more signals. The composite is held at caution level until all signals can be fully evaluated.
Mar 5, 2026 at 12:46 AM6 signals analysedNo manual reviews · fully automated
Trust Signal Breakdown
high23 sub-signals across 6 dimensions

CVEs, dependency health, and supply chain integrity

3 of 3 sub-signals with data

Known CVEs40%4.2

8 CVE(s) found — 0 unpatched

via OSV.dev

Dependency Health30%2.0

251 dependencies (high)

via npm / PyPI

Supply Chain30%4.8

197 transitive CVEs found (penalty: -0.25)

via npm provenance

Uptime, latency, error rates, and incident history

4 of 4 sub-signals with data

Uptime35%5.0

100.00% over 7 checks

via Health checks

Response Latency25%5.0

p99: 177ms, p50: 31ms

via Health checks

Error Rate20%5.0

0.00% error rate (0/7)

via Health checks

Incident History20%1.0

7 incidents in last 90 days

via Incidents table

Commit recency, release cadence, issue response, CI/CD

4 of 4 sub-signals with data

Commit Recency30%5.0

via GitHub

Release Cadence25%4.0

via GitHub

Issue Response20%2.0

via GitHub

CI/CD Presence25%5.0

via GitHub Actions

Downloads, stars, dependents, and growth trajectory

2 of 4 sub-signals with data

Download Volume55%5.0

12,559,057 weekly downloads

via npm / PyPI

GitHub Stars45%5.0

41,586 stars

via GitHub

Dependent Packagesno data

Weight redistributed to sub-signals with data

Growth Trendno data

Weight redistributed to sub-signals with data

License, documentation, security policy, changelog

4 of 4 sub-signals with data

Open Source30%5.0

Public repo with OSI-approved license (apache-2.0)

via GitHub

Documentation25%4.0

Good README (>2000 bytes with examples)

via GitHub

Security Policy20%5.0

SECURITY.md present

via GitHub

Changelog25%4.0

Releases exist but no CHANGELOG.md

via GitHub

Track record, org maturity, community standing

4 of 4 sub-signals with data

Track Record30%0.0

via Fabric index

Org Maturity30%0.0

via GitHub

Community Standing20%0.0

via GitHub

Cross-Platform20%0.0

via Registry scan

About this score
Scored across 23 sub-signals in 6 dimensionsScoring engine v1 (beta) — actively being expandedPhase 1: Core sub-signal architecture (live)Phase 2: Permission scope & expanded collection (in progress)
Trust AssessmentAI Assessment

Ray provides a simple, universal API for building distributed applications.

Package Availability (30d)
100.00%
p50: 31ms · p99: 177ms
Avg Latency
55ms
averaged across 30d health checks
Weekly Downloads
12.6M
PyPI weekly
Transparency & Compliance4/5 passed
Open Source CodePublic repository on GitHub
OSI LicenseLicensed under APACHE-2.0
DocumentationREADME with examples/code blocks
SECURITY.mdSecurity policy published
API DocumentationNo API documentation detected
Incidents & Alertslast 90 days
Mar 5Trust score decreased by 1.382.99
Mar 5Trust score decreased by 1.382.99
Mar 2Critical CVE detected — patched in v2.8.14.37
Mar 2Trust score increased by 1.214.37
Feb 25Critical unpatched CVE — no fix available3.24
Feb 25Critical unpatched CVE — no fix available2.89
Showing 6 of 8 events
Score History90 snapshots
5.003.752.501.250.00
Feb 23Mar 4
Community & Ecosystemadoption signals
12.6M
Weekly Downloads
PyPI
10
Releases
on GitHub
Supply Chain & Dependenciestrust chain
aiohttp
pypi · >=3.13.3; extra == "serve-grpc" · 31 CVEs9L5H17M
aiohttp_cors
pypi · *
async-timeout
pypi · *
celery
pypi · * · 4 CVEs2L1H1M
click
pypi · >=7.0
colorful
pypi · *
Showing 6 of 50 dependencies
Data Sources6 indexed
OSV.devCVE database · vulnerability scanning for npm & PyPI packages
GitHub APICommits, issues, releases, repo metadata, transparency checks
npm RegistryPackage metadata, weekly downloads, maintainers, dependencies
PyPIPackage metadata, weekly downloads, dependency tree
HTTP Health Checks15-min pings · uptime, latency, status monitoring
PyPI StatsDownload statistics and trends
Version History
VERSIONRELEASED
ray-2.54.0Feb 18, 2026
ray-2.53.0Dec 20, 2025
ray-2.51.2Nov 29, 2025
ray-2.52.1Nov 28, 2025
ray-2.52.0Nov 21, 2025
ray-2.51.1Nov 1, 2025
Showing 6 of 10 releases

Are you the publisher?

Claim this profile to unlock deeper evaluation, real-time monitoring,
and trust signals that help agents discover your service.

Share this Trust Score

Generate a scorecard image optimised for X, LinkedIn and other social platforms.

⬇ Download Score Card