backrest

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV

54% Freshness

1492 Dependencies

583 Outdated

0 Stale

20.7 Avg Behind

Dependency List

Latest release v1.13.0

All 1491 Outdated 711 Has CVE 36 GPL 0

Dependency	Type	Current	Latest	Behind	CVE	License
sha.js npm	Transitive	2.4.11	2.4.12	1 behind	1 critical	BSD-3-Clause AND MIT
sha.js npm	Transitive	2.4.11	2.4.12	1 behind	1 critical	BSD-3-Clause AND MIT
google.golang.org/grpc golang	Direct	v1.76.0	—	—	1 critical	Apache-2.0
minimatch npm	Transitive	3.1.2	10.2.5	91 behind	3 high	ISC
vite npm	Direct	7.3.0	8.0.16	37 behind	2 high	BSD-2-Clause AND CC0-1.0 AND ISC AND MIT
vite npm	Direct	7.3.0	8.0.16	37 behind	2 high	BSD-2-Clause AND CC0-1.0 AND ISC AND MIT
glob npm	Transitive	10.4.5	13.0.6	13 behind	1 high	ISC
flatted npm	Transitive	3.3.1	3.4.2	6 behind	2 high	ISC
immutable npm	Transitive	5.1.4	5.1.6	4 behind	1 high	MIT
cross-spawn npm	Transitive	7.0.3	7.0.6	3 behind	1 high	MIT
lodash npm	Transitive	4.17.21	4.18.1	3 behind	3 high	CC0-1.0 AND MIT
lodash npm	Transitive	4.17.21	4.18.1	3 behind	3 high	CC0-1.0 AND MIT
picomatch npm	Transitive	4.0.3	4.0.4	3 behind	2 high	MIT
picomatch npm	Transitive	4.0.3	4.0.4	3 behind	2 high	MIT
@remix-run/router npm	Transitive	1.23.1	—	—	1 high	MIT
go.opentelemetry.io/otel golang	Transitive	v1.38.0	—	—	1 high	Apache-2.0 AND BSD-3-Clause
kysely npm	Transitive	0.27.6	—	—	2 high	MIT
kysely npm	Transitive	0.27.6	—	—	2 high	MIT
rollup npm	Transitive	4.24.0	—	—	1 high	MIT
react-router npm	Direct	6.30.1	7.16.0	338 behind	1 medium	MIT
ajv npm	Transitive	6.12.6	8.20.0	67 behind	1 medium	MIT
vite npm	Transitive	5.4.21	8.0.16	51 behind	1 medium	Apache-2.0 AND BSD-2-Clause AND BlueOak-1.0.0 AND CC0-1.0 AND ISC AND MIT
yaml npm	Transitive	1.10.2	2.9.0	49 behind	1 medium	ISC
yaml npm	Transitive	1.10.2	2.9.0	49 behind	1 medium	ISC
esbuild npm	Transitive	0.21.5	0.28.0	28 behind	1 medium	MIT
brace-expansion npm	Transitive	1.1.11	5.0.6	18 behind	2 medium	MIT
postcss npm	Transitive	8.5.6	8.5.15	9 behind	1 medium	MIT
postcss npm	Transitive	8.5.6	8.5.15	9 behind	1 medium	MIT
postcss npm	Transitive	8.5.6	8.5.15	9 behind	1 medium	MIT
js-yaml npm	Transitive	4.1.0	4.2.0	3 behind	1 medium	MIT
mdast-util-to-hast npm	Transitive	13.2.0	13.2.1	1 behind	1 medium	MIT
uuid npm	Transitive	13.0.0	14.0.0	1 behind	1 medium	MIT
uuid npm	Transitive	13.0.0	14.0.0	1 behind	1 medium	MIT
golang.org/x/crypto golang	Direct	v0.44.0	—	—	2 medium	BSD-3-Clause AND LicenseRef-scancode-google-patent-license-golang
golang.org/x/image golang	Transitive	v0.32.0	—	—	3 medium	BSD-3-Clause AND LicenseRef-scancode-google-patent-license-golang
golang.org/x/net golang	Direct	v0.47.0	—	—	1 unknown	BSD-3-Clause AND LicenseRef-scancode-google-patent-license-golang

License Breakdown

MIT 1210

ISC 93

Apache-2.0 55

BSD-3-Clause 28

Unknown 19

MPL-2.0 14

BSD-2-Clause 11

CC0-1.0 AND MIT 11

BSD-3-Clause AND LicenseRef-scancode-google-patent-license-golang 8

BlueOak-1.0.0 6

Apache-2.0 AND BSD-3-Clause 3

Apache-2.0 AND MIT 3

ISC AND MIT 3

0BSD 2

0BSD AND ISC AND MIT 2

Apache-2.0 AND BSD-3-Clause AND MIT 2

Apache-2.0 AND CC-BY-3.0 AND CC-BY-4.0 AND CC-BY-SA-3.0 AND CC0-1.0 AND ISC AND LicenseRef-scancode-unknown-license-reference AND MIT AND MPL-2.0 AND OFL-1.1 2

BSD-2-Clause AND BSD-3-Clause 2

BSD-2-Clause AND CC0-1.0 AND ISC AND MIT 2

BSD-3-Clause AND MIT 2

CC-BY-4.0 2

LicenseRef-scancode-free-unknown AND MIT 2

MIT AND Zlib 2

Apache-2.0 AND BSD-2-Clause 1

Apache-2.0 AND BSD-2-Clause AND BlueOak-1.0.0 AND CC0-1.0 AND ISC AND MIT 1

BSD-2-Clause AND BSD-2-Clause-Views 1

CC0-1.0 1

JSON 1

Python-2.0 1

Unlicense 1

CVE Severity

critical 3

high 16

medium 16

low 0

unknown 1