Cleanuparr

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV

49% Freshness

3134 Dependencies

1271 Outdated

0 Stale

10.7 Avg Behind

Dependency List

Latest release v2.9.11

All 3133 Outdated 1741 Has CVE 34 GPL 4

Dependency	Type	Current	Latest	Behind	CVE	License
minimatch npm	Transitive	3.1.2	10.2.5	91 behind	3 high	ISC
minimatch npm	Transitive	3.1.2	10.2.5	91 behind	3 high	ISC
vite npm	Transitive	7.3.1	8.0.16	33 behind	3 high	BSD-2-Clause AND CC0-1.0 AND ISC AND MIT
@babel/plugin-transform-modules-systemjs npm	Transitive	7.27.1	7.29.7	15 behind	1 high	MIT
@babel/plugin-transform-modules-systemjs npm	Transitive	7.27.1	7.29.7	15 behind	1 high	MIT
picomatch npm	Transitive	2.3.1	4.0.4	9 behind	2 high	MIT
picomatch npm	Transitive	2.3.1	4.0.4	9 behind	2 high	MIT
svgo npm	Transitive	3.3.2	4.0.1	8 behind	1 high	MIT
svgo npm	Transitive	3.3.2	4.0.1	8 behind	1 high	MIT
serialize-javascript npm	Transitive	6.0.2	7.0.5	6 behind	2 high	BSD-3-Clause
serialize-javascript npm	Transitive	6.0.2	7.0.5	6 behind	2 high	BSD-3-Clause
path-to-regexp npm	Transitive	0.1.12	8.4.2	5 behind	1 high	MIT
path-to-regexp npm	Transitive	0.1.12	8.4.2	5 behind	1 high	MIT
fast-uri npm	Transitive	3.0.6	3.1.2	3 behind	2 high	BSD-3-Clause
fast-uri npm	Transitive	3.0.6	3.1.2	3 behind	2 high	BSD-3-Clause
lodash npm	Transitive	4.17.21	4.18.1	3 behind	3 high	CC0-1.0 AND MIT
lodash npm	Transitive	4.17.21	4.18.1	3 behind	3 high	CC0-1.0 AND MIT
node-forge npm	Transitive	1.3.2	1.4.0	2 behind	4 high	(BSD-3-Clause AND GPL-1.0-or-later AND GPL-2.0 AND GPL-2.0-only) OR (BSD-3-Clause AND GPL-1.0-or-later AND GPL-2.0-only)
node-forge npm	Transitive	1.3.2	1.4.0	2 behind	4 high	(BSD-3-Clause AND GPL-1.0-or-later AND GPL-2.0 AND GPL-2.0-only) OR (BSD-3-Clause AND GPL-1.0-or-later AND GPL-2.0-only)
hono npm	Transitive	4.12.9	4.12.23	14 behind	8 medium	MIT
@hono/node-server npm	Transitive	1.19.11	2.0.4	10 behind	1 medium	MIT
brace-expansion npm	Transitive	1.1.12	5.0.6	10 behind	1 medium	MIT
brace-expansion npm	Transitive	1.1.12	5.0.6	10 behind	1 medium	MIT
postcss npm	Transitive	8.5.6	8.5.15	9 behind	1 medium	MIT
postcss npm	Transitive	8.5.6	8.5.15	9 behind	1 medium	MIT
ajv npm	Transitive	8.17.1	8.20.0	4 behind	1 medium	MIT
ajv npm	Transitive	8.17.1	8.20.0	4 behind	1 medium	MIT
ip-address npm	Transitive	10.1.0	10.2.0	2 behind	1 medium	MIT
follow-redirects npm	Transitive	1.15.11	1.16.0	1 behind	1 medium	MIT
follow-redirects npm	Transitive	1.15.11	1.16.0	1 behind	1 medium	MIT
qs npm	Transitive	6.14.1	6.15.2	32 behind	1 low	BSD-3-Clause
qs npm	Transitive	6.14.1	6.15.2	32 behind	1 low	BSD-3-Clause
webpack npm	Transitive	5.99.5	—	—	2 low	MIT
webpack npm	Transitive	5.99.5	—	—	2 low	MIT

License Breakdown

MIT 2530

ISC 145

Apache-2.0 123

MIT-0 116

BSD-2-Clause 69

BSD-3-Clause 47

Unknown 22

MPL-2.0 12

BlueOak-1.0.0 10

CC0-1.0 5

CC0-1.0 AND MIT 4

ISC AND MIT 4

LicenseRef-scancode-unicode AND MIT 4

0BSD 3

BSD-2-Clause AND BSD-2-Clause-Views 3

BSD-2-Clause AND BSD-3-Clause 3

CC-BY-4.0 3

Python-2.0 3

(BSD-3-Clause AND GPL-1.0-or-later AND GPL-2.0 AND GPL-2.0-only) OR (BSD-3-Clause AND GPL-1.0-or-later AND GPL-2.0-only) 2

AFL-2.1 AND AFL-3.0 AND BSD-3-Clause 2

Apache-2.0 OR (Apache-2.0 AND LGPL-3.0-only) 2

Apache-2.0 OR BSD-2-Clause OR MIT OR (Apache-2.0 AND BSD-2-Clause) OR (Apache-2.0 AND MIT) OR (BSD-2-Clause AND MIT) 2

BSD-3-Clause AND LicenseRef-scancode-generic-cla AND MIT 2

CC0-1.0 OR MIT OR (CC0-1.0 AND MIT) 2

MIT AND WTFPL 2

MIT OR (CC0-1.0 AND MIT) 2

MIT OR (MIT AND WTFPL) 2

MIT OR WTFPL OR (MIT AND WTFPL) 2

Apache-2.0 AND BSD-3-Clause AND MIT 1

Apache-2.0 AND LicenseRef-scancode-unknown 1

Apache-2.0 AND MIT 1

BSD-2-Clause AND CC0-1.0 AND ISC AND MIT 1

BSD-2-Clause AND JSON 1

CC-BY-3.0 1

Unlicense 1

CVE Severity

critical 0

high 19

medium 11

low 4

unknown 0