← All frameworks
63
Flask
modern
python · backend · since 2010
acceptable
↑
1.2 pts
vs last month
Updated June 2026
Flask scores 64/100. Verdict: Acceptable.
Dimension breakdown
Security
30 total CVEs on record. 3 critical severity.
Total Cves
30
Critical Cves
3
Exploited Cves
0
Avg Cvss
4.8
Cves Last Year
5
Performance
Average performance. Room for optimization.
Ecosystem
69,000 GitHub stars. 700 contributors. 5 releases in the last year.
Stars
69,000
Contributors
700
Releases Last Year
5
Avg Issue Close Days
20
Ai Readiness
Good AI-readiness. Supports structured data output and API patterns. Suitable for the AI-first web with some configuration.
Structured Output
70
Api First
0.0
Headless Capable
1.0
Developer Experience
Strong developer experience. Good docs, modern tooling, active community.
Market Trajectory
Score
40
Market Share Pct
0.5
Cost Of Ownership
Moderate cost. Requires traditional server infrastructure.
Actively exploited vulnerabilities
Updated 2026-07-13
0 entries
No known active exploitation. Zero entries in CISA's catalog of confirmed in-the-wild attacks.
Flask scores 64/100 overall. Strongest dimension: security (75). Weakest: market trajectory (40).
Latest Flask insights

Netflix's Lemur Shows Why JWT Algorithm Pinning Is Non-Negotiable
June 26, 2026 · 4 min
Flask: 56 Commits/Year, 71K Stars. 'Lightweight' Pushes Risk Where Nobody Is Looking.
June 24, 2026 · 5 min
Seven Frameworks Recorded Zero CVEs Last Year. The Pattern Is Architectural.
June 23, 2026 · 5 min