Skip to content
Tools / app / Dependencies

Dependency Analysis

app

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV
82% Freshness
242 Dependencies
36 Outdated
0 Stale
9.3 Avg Behind

Dependency List

Latest release v4.80.4

All 241 Outdated 43 Has CVE 40 GPL 16
Dependency Type Current Latest Behind CVE License
aiohttp
pypi
 Direct 3.8.4 3.14.0 87 behind 29 high Apache-2.0
pyjwt
pypi
 Direct 2.4.0 2.13.0 11 behind 1 high MIT
urllib3
pypi
 Direct 1.26.20 2.7.0 9 behind 4 high MIT
sqlparse
pypi
 Direct 0.4.4 0.5.5 6 behind 2 high BSD-2-Clause AND BSD-3-Clause
pytest
pypi
 Direct 7.3.1 9.0.3 30 behind 1 medium MIT
filelock
pypi
 Direct 3.15.4 3.29.1 25 behind 2 medium Unlicense
requests
pypi
 Direct 2.31.0 2.34.2 12 behind 3 medium Apache-2.0
pyparsing
pypi
 Direct 2.4.7 3.3.2 40 behind MIT
redis
pypi
 Direct 5.2.1 8.0.0 28 behind MIT
regex
pypi
 Direct 2023.12.25 2026.5.9 24 behind Apache-2.0
typing-extensions
pypi
 Direct 4.8.0 4.15.0 20 behind Python-2.0.1
identify
pypi
 Direct 2.6.0 2.6.19 19 behind MIT
isort
pypi
 Direct 5.10.1 8.0.1 19 behind MIT
tslib
npm
 Transitive 1.14.1 2.8.1 18 behind 0BSD
s3transfer
pypi
 Direct 0.10.3 0.18.0 17 behind Apache-2.0
bcrypt
pypi
 Direct 3.2.0 5.0.0 12 behind Apache-2.0
greenlet
pypi
 Direct 3.1.1 3.5.1 12 behind MIT AND PSF-2.0
json5
pypi
 Direct 0.9.25 0.14.0 9 behind Apache-2.0 AND MIT
pre-commit
pypi
 Direct 3.8.0 4.6.0 9 behind MIT
cbor2
pypi
 Direct 5.8.0 6.1.2 7 behind MIT
exceptiongroup
pypi
 Direct 1.1.1 1.3.1 7 behind MIT
pathspec
pypi
 Direct 0.12.1 1.1.1 7 behind MPL-2.0
yarl
pypi
 Direct 1.18.3 1.24.2 7 behind Apache-2.0
pre-commit
pypi
 Direct 4.1.0 4.6.0 6 behind MIT
tomli
pypi
 Direct 2.0.1 2.4.1 6 behind MIT
httplib2
pypi
 Direct 0.22.0 0.31.2 5 behind MIT
propcache
pypi
 Direct 0.3.0 0.5.2 5 behind Apache-2.0
frozenlist
pypi
 Direct 1.5.0 1.8.0 4 behind Apache-2.0
requests-oauthlib
pypi
 Direct 1.3.0 2.0.0 4 behind BSD-2-Clause
uritemplate
pypi
 Direct 3.0.1 4.2.0 4 behind Apache-2.0 AND BSD-3-Clause
async-timeout
pypi
 Direct 4.0.2 5.0.1 3 behind Apache-2.0
distlib
pypi
 Direct 0.3.8 0.4.1 3 behind Python-2.0.1
jmespath
pypi
 Direct 0.10.0 1.1.0 3 behind MIT
cffi
pypi
 Direct 1.17.1 2.0.0 2 behind MIT
dnspython
pypi
 Direct 2.7.0 2.8.0 2 behind ISC
psycopg2-binary
pypi
 Direct 2.9.10 2.9.12 2 behind LGPL-3.0-or-later WITH openvpn-openssl-exception
cfgv
pypi
 Direct 3.4.0 3.5.0 1 behind MIT
email-validator
pypi
 Direct 2.2.0 2.3.0 1 behind Unlicense
loguru
pypi
 Direct 0.7.2 0.7.3 1 behind MIT
nodeenv
pypi
 Direct 1.9.1 1.10.0 1 behind BSD-2-Clause AND BSD-3-Clause
pexpect
pypi
 Direct 4.8.0 4.9.0 1 behind ISC
pyyaml
pypi
 Direct 6.0.2 6.0.3 1 behind MIT
win32-setctime
pypi
 Direct 1.1.0 1.2.0 1 behind MIT

License Breakdown

MIT 87
Apache-2.0 36
BSD-2-Clause AND BSD-3-Clause 24
BSD-2-Clause 17
Unknown 15
BSD-3-Clause 11
GPL-3.0-or-later 4
ISC 4
Apache-2.0 AND MIT 3
Apache-2.0 AND BSD-2-Clause 2
LGPL-3.0-or-later WITH openvpn-openssl-exception 2
MIT AND PSF-2.0 2
MIT AND Python-2.0 2
MPL-2.0 2
Python-2.0.1 2
Unlicense 2
ZPL-2.1 2
0BSD 1
0BSD AND BSD-3-Clause AND LicenseRef-scancode-unknown-license-reference AND PSF-2.0 AND Python-2.0 1
AFL-2.1 OR MIT 1
AGPL-3.0 1
Apache-2.0 AND BSD-3-Clause 1
Apache-2.0 AND BSD-3-Clause AND PSF-2.0 AND Python-2.0 1
Apache-2.0 AND MIT AND MPL-2.0 1
BSD-1-Clause AND BSD-2-Clause 1
BSD-2-Clause AND BSD-3-Clause AND PSF-2.0 AND Python-2.0 AND Python-2.0.1 1
BSD-2-Clause AND MIT 1
BSD-2-Clause AND Zlib 1
CC0-1.0 1
GPL-1.0-or-later AND GPL-2.0-only AND GPL-2.0-or-later AND GPL-3.0-or-later AND LGPL-2.1-only AND LGPL-2.1-or-later AND MPL-1.1 1
GPL-2.0-or-later 1
GPL-2.0-or-later AND GPL-3.0-or-later 1
GPL-3.0 AND GPL-3.0+ 1
GPL-3.0-only AND GPL-3.0-or-later 1
GPL-3.0-or-later AND LGPL-2.1-or-later 1
LGPL-2.0-or-later AND LGPL-2.1-only AND LGPL-3.0-only 1
LGPL-2.1-or-later 1
LGPL-3.0 AND LGPL-3.0-only 1
MIT AND OFL-1.1 1
PSF-2.0 1
Python-2.0 1

CVE Severity

critical 1
high 19
medium 15
low 4
unknown 1

Beta — feedback welcome: [email protected]