Skip to content
Tools / beaverhabits / Dependencies

Dependency Analysis

beaverhabits

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV
72% Freshness
184 Dependencies
35 Outdated
0 Stale
2.0 Avg Behind

Dependency List

Latest release v0.9.0

All 183 Outdated 62 Has CVE 11 GPL 3
Dependency Type Current Latest Behind CVE License
python-multipart
pypi
 Direct 0.0.20 0.0.30 10 behind 3 high Apache-2.0
pyjwt
pypi
 Direct 2.10.1 2.13.0 4 behind 1 high MIT
anthropic
pypi
 Direct 0.86.0 0.105.2 24 behind 2 medium Unknown
requests
pypi
 Direct 2.32.5 2.34.2 6 behind 1 medium Apache-2.0
cryptography
pypi
 Direct 46.0.5 48.0.0 4 behind 2 medium Apache-2.0 AND BSD-3-Clause
pytest
pypi
 Direct 8.4.2 9.0.3 4 behind 1 medium MIT
aiohttp
pypi
 Direct 3.13.3 3.14.0 3 behind 10 medium Apache-2.0 AND MIT
pip
pypi
 Direct 26.0.1 26.1.2 3 behind 2 medium MIT
pygments
pypi
 Direct 2.19.2 2.20.0 1 behind 1 low BSD-2-Clause
wrapt
pypi
 Direct 1.17.3 2.2.1 33 behind BSD-2-Clause
opentelemetry-api
pypi
 Direct 1.28.2 1.42.1 21 behind Apache-2.0
opentelemetry-exporter-otlp-proto-common
pypi
 Direct 1.28.2 1.42.1 21 behind Apache-2.0
opentelemetry-exporter-otlp-proto-http
pypi
 Direct 1.28.2 1.42.1 21 behind Apache-2.0
opentelemetry-proto
pypi
 Direct 1.28.2 1.42.1 21 behind Apache-2.0
opentelemetry-sdk
pypi
 Direct 1.28.2 1.42.1 21 behind Apache-2.0
sentry-sdk
pypi
 Direct 2.55.0 2.61.1 11 behind Unknown
pydantic
pypi
 Direct 2.12.5 2.13.4 10 behind MIT
pydantic-core
pypi
 Direct 2.41.5 2.47.0 9 behind MIT
protobuf
pypi
 Direct 5.29.6 7.35.0 8 behind BSD-3-Clause AND LicenseRef-scancode-protobuf
uvicorn
pypi
 Direct 0.42.0 0.49.0 7 behind BSD-3-Clause
cachetools
pypi
 Direct 7.0.5 7.1.4 6 behind MIT
fastapi
pypi
 Direct 0.135.1 0.136.3 6 behind MIT
importlib-metadata
pypi
 Direct 8.5.0 9.0.0 6 behind Apache-2.0
marshmallow
pypi
 Direct 3.26.2 4.3.0 6 behind BSD-3-Clause AND MIT
starlette
pypi
 Direct 0.52.1 1.2.1 6 behind BSD-3-Clause
click
pypi
 Direct 8.3.1 8.4.1 4 behind BSD-3-Clause
pytest-asyncio
pypi
 Direct 1.3.0 1.4.0 4 behind Apache-2.0
redis
pypi
 Direct 7.3.0 8.0.0 4 behind MIT
googleapis-common-protos
pypi
 Direct 1.73.0 1.75.0 3 behind Apache-2.0
greenlet
pypi
 Direct 3.3.2 3.5.1 3 behind MIT AND PSF-2.0
gunicorn
pypi
 Direct 25.1.0 26.0.0 3 behind MIT AND HPND
httpx
pypi
 Direct 0.28.1 1.0.0.dev3 3 behind BSD-3-Clause
regex
pypi
 Direct 2026.2.28 2026.5.9 3 behind CNRI-Python AND Apache-2.0
sqlalchemy
pypi
 Direct 2.0.48 2.0.50 3 behind MIT
black
pypi
 Direct 26.3.1 26.5.1 2 behind MIT
certifi
pypi
 Direct 2026.2.25 2026.5.20 2 behind MPL-2.0
docutils
pypi
 Direct 0.22.4 0.23.0 2 behind BSD-2-Clause AND BSD-3-Clause AND CC-PDDC AND GPL-1.0-or-later AND GPL-3.0-only AND GPL-3.0-or-later AND LicenseRef-scancode-free-unknown AND LicenseRef-scancode-other-copyleft AND LicenseRef-scancode-public-domain
jiter
pypi
 Direct 0.13.0 0.15.0 2 behind MIT
markdown-it-py
pypi
 Direct 4.0.0 4.2.0 2 behind MIT
mdit-py-plugins
pypi
 Direct 0.5.0 0.6.1 2 behind MIT
orjson
pypi
 Direct 3.11.7 3.11.9 2 behind Apache-2.0 AND MIT AND MPL-2.0
pathspec
pypi
 Direct 1.0.4 1.1.1 2 behind MPL-2.0
platformdirs
pypi
 Direct 4.9.4 4.10.0 2 behind MIT
pydantic-settings
pypi
 Direct 2.13.1 2.14.1 2 behind MIT
rich
pypi
 Direct 14.3.3 15.0.0 2 behind MIT
zipp
pypi
 Direct 3.23.0 4.1.0 2 behind MIT
aiohappyeyeballs
pypi
 Direct 2.6.1 2.6.2 1 behind 0BSD AND BSD-3-Clause AND LicenseRef-scancode-unknown-license-reference AND PSF-2.0 AND Python-2.0
anyio
pypi
 Direct 4.12.1 4.13.0 1 behind MIT
argon2-cffi
pypi
 Direct 23.1.0 25.1.0 1 behind MIT
attrs
pypi
 Direct 25.4.0 26.1.0 1 behind MIT
bcrypt
pypi
 Direct 4.3.0 5.0.0 1 behind Apache-2.0
charset-normalizer
pypi
 Direct 3.4.6 3.4.7 1 behind MIT
docstring-parser
pypi
 Direct 0.17.0 0.18.0 1 behind MIT
httptools
pypi
 Direct 0.7.1 0.8.0 1 behind MIT
propcache
pypi
 Direct 0.4.1 0.5.2 1 behind Apache-2.0
python-engineio
pypi
 Direct 4.13.1 4.13.2 1 behind Unknown
python-socketio
pypi
 Direct 5.16.1 5.16.2 1 behind Unknown
soupsieve
pypi
 Direct 2.8.3 2.8.4 1 behind MIT
tiktoken
pypi
 Direct 0.12.0 0.13.0 1 behind MIT
urllib3
pypi
 Direct 2.6.3 2.7.0 1 behind MIT
watchfiles
pypi
 Direct 1.1.1 1.2.0 1 behind MIT
yarl
pypi
 Direct 1.23.0 1.24.2 1 behind Apache-2.0

License Breakdown

MIT 56
Apache-2.0 52
Unknown 26
BSD-3-Clause 12
MPL-2.0 7
BSD-2-Clause AND BSD-3-Clause 4
Apache-2.0 AND MIT 3
BSD-2-Clause 2
BSD-3-Clause AND MIT 2
0BSD AND BSD-3-Clause AND LicenseRef-scancode-unknown-license-reference AND PSF-2.0 AND Python-2.0 1
Apache-2.0 AND BSD-2-Clause 1
Apache-2.0 AND BSD-3-Clause 1
Apache-2.0 AND BSD-3-Clause AND LicenseRef-scancode-unknown-license-reference 1
Apache-2.0 AND MIT AND MPL-2.0 1
Apache-2.0 OR (Apache-2.0 AND MIT) 1
BSD-2-Clause AND BSD-3-Clause AND CC-PDDC AND GPL-1.0-or-later AND GPL-3.0-only AND GPL-3.0-or-later AND LicenseRef-scancode-free-unknown AND LicenseRef-scancode-other-copyleft AND LicenseRef-scancode-public-domain 1
BSD-3-Clause AND LicenseRef-scancode-protobuf 1
CC0-1.0 AND Unlicense 1
CNRI-Python AND Apache-2.0 1
GPL-2.0-only AND MIT 1
ISC AND MPL-2.0 1
LicenseRef-scancode-free-unknown AND MIT 1
MIT AND CC0-1.0 1
MIT AND HPND 1
MIT AND PSF-2.0 1
MIT-0 1
PSF-2.0 1
Python-2.0 AND GPL-1.0-or-later AND Python-2.0 AND BSD-3-Clause AND Python-2.0 AND BSD-3-Clause AND 0BSD 1

CVE Severity

critical 0
high 2
medium 8
low 1
unknown 0

Beta — feedback welcome: [email protected]