Skip to content
Tools / bigbluebutton / Dependencies

Dependency Analysis

bigbluebutton

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV
48% Freshness
6582 Dependencies
2769 Outdated
0 Stale
20.4 Avg Behind

Dependency List

Latest release v3.0.26

All 6581 Outdated 3514 Has CVE 29 GPL 9
Dependency Type Current Latest Behind CVE License
@opentelemetry/api
npm
 Transitive 1.9.0 1.9.1 1 behind Apache-2.0 OR (Apache-2.0 AND LGPL-3.0-only)
@mconf/bbb-diff
npm
 Direct 1.2.0 LGPL-3.0
bigbluebutton-html-plugin-sdk
npm
 Direct 0.0.99 LGPL-3.0
ch.qos.logback:logback-classic
maven
 Direct 1.5.13 EPL-1.0 AND LGPL-2.1 AND LGPL-2.1-only
ch.qos.logback:logback-core
maven
 Direct 1.5.25 (EPL-1.0 AND LGPL-2.1 AND LGPL-2.1-only) OR (EPL-1.0 AND LGPL-2.1-only)
journald-native
gem
 Direct 1.0.12 LGPL-2.1+
locale
gem
 Direct 2.1.3 Ruby OR GPL-2.0-only
node-forge
npm
 Transitive 1.4.0 1.4.0 Current BSD-3-Clause OR GPL-2.0-only
node-forge
npm
 Transitive 1.4.0 1.4.0 Current BSD-3-Clause OR GPL-2.0-only

License Breakdown

MIT 5477
ISC 314
Apache-2.0 175
BSD-2-Clause 140
BSD-3-Clause 130
CC0-1.0 87
MIT-0 63
Unknown 22
CC0-1.0 AND MIT 16
Apache-2.0 AND MIT 13
ISC AND MIT 13
BlueOak-1.0.0 11
0BSD 10
Apache-2.0 AND BSD-2-Clause 9
MPL-2.0 9
BSD-2-Clause AND BSD-2-Clause-Views 7
BSD-2-Clause AND BSD-3-Clause 7
Python-2.0 7
BSD-3-Clause AND LicenseRef-scancode-google-patent-license-golang 4
BSD-3-Clause AND MIT 4
CC-BY-4.0 4
AFL-2.1 AND AFL-3.0 AND BSD-3-Clause 3
MIT OR (CC0-1.0 AND MIT) 3
Unlicense 3
Apache-2.0 OR MPL-1.1 OR (Apache-2.0 AND MPL-1.1) 2
BSD-2-Clause OR (BSD-2-Clause AND Ruby) 2
BSD-3-Clause OR GPL-2.0-only 2
CC-BY-3.0 2
EPL-2.0 2
LGPL-3.0 2
LicenseRef-scancode-generic-cla AND MIT 2
LicenseRef-scancode-public-domain AND Unlicense 2
LicenseRef-scancode-unicode AND MIT 2
WTFPL 2
(BSD-2-Clause AND MIT AND Ruby) OR (BSD-2-Clause AND MIT) 1
(EPL-1.0 AND LGPL-2.1 AND LGPL-2.1-only) OR (EPL-1.0 AND LGPL-2.1-only) 1
(MPL-2.0 OR Apache-2.0) 1
0BSD AND ISC AND MIT 1
Apache-2.0 AND BSD-3-Clause 1
Apache-2.0 AND BSD-3-Clause AND EPL-1.0 1
Apache-2.0 AND BSD-3-Clause AND HTMLTIDY 1
Apache-2.0 AND ISC 1
Apache-2.0 AND LicenseRef-scancode-unknown-license-reference 1
Apache-2.0 OR (Apache-2.0 AND LGPL-3.0-only) 1
Apache-2.0 OR BSD-2-Clause OR MIT OR (Apache-2.0 AND BSD-2-Clause) OR (Apache-2.0 AND MIT) OR (BSD-2-Clause AND MIT) 1
BSD-2-Clause OR Ruby 1
BSD-3-Clause AND LicenseRef-scancode-generic-cla AND MIT 1
CC-BY-NC-3.0 AND CC-BY-SA-3.0 AND MIT 1
CC-BY-SA-4.0 AND ISC 1
CC0-1.0 OR MIT OR (CC0-1.0 AND MIT) 1
EPL-1.0 AND LGPL-2.1 AND LGPL-2.1-only 1
ISC OR WTFPL OR (ISC AND WTFPL) 1
LGPL-2.1+ 1
LicenseRef-scancode-free-unknown AND MIT 1
LicenseRef-scancode-free-unknown AND MPL-1.1 1
LicenseRef-scancode-unknown-license-reference AND MIT 1
MIT AND MITNFA 1
MIT AND MPL-2.0 1
MIT AND Unlicense 1
MIT AND WTFPL 1
MIT OR WTFPL OR (MIT AND WTFPL) 1
ODC-By-1.0 1
Ruby 1
Ruby OR GPL-2.0-only 1

CVE Severity

critical 1
high 12
medium 12
low 4
unknown 0

Beta — feedback welcome: [email protected]