citus

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV

78% Freshness

159 Dependencies

18 Outdated

0 Stale

0.9 Avg Behind

Dependency List

Latest release v14.0.0

All 158 Outdated 46 Has CVE 2 GPL 4

Dependency	Type	Current	Latest	Behind	CVE	License
pyopenssl pypi	Transitive	25.3.0	26.2.0	3 behind	2 high	Apache-2.0
pyopenssl pypi	Transitive	25.3.0	26.2.0	3 behind	2 high	Apache-2.0
platformdirs pypi	Direct	4.0.0	4.10.0	26 behind	—	MIT
typing-extensions pypi	Direct	4.8.0	4.15.0	20 behind	—	Python-2.0.1
click pypi	Direct	8.1.7	8.4.1	10 behind	—	BSD-3-Clause
isort pypi	Direct	5.12.0	8.0.1	10 behind	—	MIT
pathspec pypi	Direct	1.0.0	1.1.1	6 behind	—	Unknown
tomli pypi	Direct	2.0.1	2.4.1	6 behind	—	MIT
pytest-asyncio pypi	Direct	1.3.0	1.4.0	4 behind	—	Apache-2.0
pytest-asyncio pypi	Direct	1.3.0	1.4.0	4 behind	—	Apache-2.0
click pypi	Transitive	8.3.2	8.4.1	3 behind	—	BSD-3-Clause
click pypi	Transitive	8.3.2	8.4.1	3 behind	—	BSD-3-Clause
typing-extensions pypi	Direct	4.14.0	4.15.0	3 behind	—	Python-2.0.1
typing-extensions pypi	Direct	4.14.0	4.15.0	3 behind	—	Python-2.0.1
urwid pypi	Direct	3.0.5	4.0.2	3 behind	—	Unknown
urwid pypi	Direct	3.0.5	4.0.2	3 behind	—	Unknown
black pypi	Direct	26.3.1	26.5.1	2 behind	—	MIT
black pypi	Direct	26.3.1	26.5.1	2 behind	—	MIT
black pypi	Direct	26.3.1	26.5.1	2 behind	—	MIT
certifi pypi	Transitive	2026.2.25	2026.5.20	2 behind	—	MPL-2.0
certifi pypi	Transitive	2026.2.25	2026.5.20	2 behind	—	MPL-2.0
cryptography pypi	Direct	46.0.7	48.0.0	2 behind	—	BSD-3-Clause OR Apache-2.0
cryptography pypi	Direct	46.0.7	48.0.0	2 behind	—	BSD-3-Clause OR Apache-2.0
filelock pypi	Direct	3.28.0	3.29.1	2 behind	—	Unknown
filelock pypi	Direct	3.28.0	3.29.1	2 behind	—	Unknown
pathspec pypi	Transitive	1.0.4	1.1.1	2 behind	—	MPL-2.0
pathspec pypi	Transitive	1.0.4	1.1.1	2 behind	—	MPL-2.0
pyperclip pypi	Direct	1.9.0	1.11.0	2 behind	—	BSD-2-Clause AND BSD-3-Clause
pyperclip pypi	Direct	1.9.0	1.11.0	2 behind	—	BSD-2-Clause AND BSD-3-Clause
werkzeug pypi	Direct	3.1.6	3.1.8	2 behind	—	BSD-3-Clause
werkzeug pypi	Direct	3.1.6	3.1.8	2 behind	—	BSD-3-Clause
aioquic pypi	Direct	1.2.0	1.3.0	1 behind	—	BSD-2-Clause AND BSD-3-Clause
aioquic pypi	Direct	1.2.0	1.3.0	1 behind	—	BSD-2-Clause AND BSD-3-Clause
asgiref pypi	Direct	3.11.0	3.11.1	1 behind	—	BSD-3-Clause
asgiref pypi	Direct	3.11.0	3.11.1	1 behind	—	BSD-3-Clause
mypy-extensions pypi	Direct	1.0.0	1.1.0	1 behind	—	MIT
platformdirs pypi	Transitive	4.9.6	4.10.0	1 behind	—	MIT
platformdirs pypi	Transitive	4.9.6	4.10.0	1 behind	—	MIT
psycopg pypi	Direct	3.3.3	3.3.4	1 behind	—	LGPL-3.0 AND LGPL-3.0-only
psycopg pypi	Direct	3.3.3	3.3.4	1 behind	—	LGPL-3.0 AND LGPL-3.0-only
service-identity pypi	Transitive	24.2.0	26.1.0	1 behind	—	MIT
service-identity pypi	Transitive	24.2.0	26.1.0	1 behind	—	MIT
tornado pypi	Direct	6.5.5	6.5.6	1 behind	—	Apache-2.0
tornado pypi	Direct	6.5.5	6.5.6	1 behind	—	Apache-2.0
wcwidth pypi	Transitive	0.6.0	0.7.0	1 behind	—	MIT AND HPND-Markus-Kuhn
wcwidth pypi	Transitive	0.6.0	0.7.0	1 behind	—	MIT AND HPND-Markus-Kuhn

License Breakdown

MIT 65

Unknown 24

BSD-3-Clause 15

Apache-2.0 12

BSD-2-Clause AND BSD-3-Clause 10

MPL-2.0 4

Apache-2.0 AND BSD-2-Clause 3

Python-2.0.1 3

BSD-2-Clause 2

BSD-2-Clause AND BSD-3-Clause AND MIT 2

BSD-3-Clause OR Apache-2.0 2

LGPL-3.0 AND LGPL-3.0-only 2

LGPL-3.0-or-later 2

MIT AND CC0-1.0 2

MIT AND HPND-Markus-Kuhn 2

MIT AND MPL-2.0 2

MIT AND Python-2.0 2

MIT-0 2

MPL-2.0 AND Python-2.0 2

CVE Severity

critical 0

high 2

medium 0

low 0

unknown 0