RepoPilot

huiyadanli/revokemsgpatcher vs ql-win/quicklook

Both showing Mixed signals — pick on fit, not health

As of June 2026, revokemsgpatcher and quicklook both show mixed maintenance signals. revokemsgpatcher last saw a commit 1 month ago with 5+ active contributors, while quicklook last saw a commit 1 month ago with 4+ active contributors. Both use the GPL-3.0 license. Neither has known critical or high-severity CVEs in its dependency tree.

Informational only. RepoPilot summarises public signals at the time of analysis. Not professional, security, or legal advice.

huiyadanli/revokemsgpatcher

Mixed

Single-maintainer risk — review before adopting

ConcernsDependency

copyleft license (GPL-3.0) — review compatibility; top contributor handles 94% of recent commits…

HealthyFork & modify

Has a license, tests, and CI — clean foundation to fork and modify.

HealthyLearn from

Documented and popular — useful reference codebase to read through.

HealthyDeploy as-is

No critical CVEs, sane security posture — runnable as-is.

  • Single-maintainer risk — top contributor 94% of recent commits
  • GPL-3.0 is copyleft — check downstream compatibility
  • No test directory detected
  • Scorecard: default branch unprotected (0/10)
  • Last commit 3d ago
  • 5 active contributors
  • GPL-3.0 licensed
  • CI configured

What would improve this?

  • Use as dependency ConcernsMixed if: relicense under MIT/Apache-2.0 (rare for established libs)

Maintenance signals: commit recency, contributor breadth, bus factor, license, CI, tests + OpenSSF Scorecard

ql-win/quicklook

Mixed

Single-maintainer risk — review before adopting

ConcernsDependency

copyleft license (GPL-3.0) — review compatibility; top contributor handles 94% of recent commits…

HealthyFork & modify

Has a license, tests, and CI — clean foundation to fork and modify.

HealthyLearn from

Documented and popular — useful reference codebase to read through.

MixedDeploy as-is

Scorecard "Branch-Protection" is 0/10; Scorecard "Token-Permissions" is 0/10

  • Small team — 4 contributors active in recent commits
  • Single-maintainer risk — top contributor 94% of recent commits
  • GPL-3.0 is copyleft — check downstream compatibility
  • No test directory detected
  • Scorecard: default branch unprotected (0/10)
  • Last commit 2d ago
  • 4 active contributors
  • GPL-3.0 licensed
  • CI configured

What would improve this?

  • Use as dependency ConcernsMixed if: relicense under MIT/Apache-2.0 (rare for established libs)
  • Deploy as-is MixedHealthy if: bring "Branch-Protection" to ≥3/10 (see scorecard report)

Maintenance signals: commit recency, contributor breadth, bus factor, license, CI, tests + OpenSSF Scorecard

Signal-by-signal breakdown

revokemsgpatcherquicklook
Stars37,59723,409
Last commit1mo ago1mo ago
LicenseGPL-3.0GPL-3.0
Open issues51173
Has tests
Has CI
Test coverage0%0%
Dependency CVEsNo CVEsNo CVEs
Architecture gradeC
Cycles0
Bottom-lineMixed signalsMixed signals

Want the full analysis? huiyadanli/revokemsgpatcher · ql-win/quicklook

Ask AI about huiyadanli/revokemsgpatcher vs ql-win/quicklook

Open the chat with a comparison question pre-filled.

Which one should I pick for a new project?How do their APIs compare?What are the migration paths between them?Which has better activity and maintenance signals?