Cleanuparr

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV

49% Freshness

3134 Dependencies

1271 Outdated

0 Stale

10.7 Avg Behind

Dependency List

Latest release v2.9.11

All 3133 Outdated 1741 Has CVE 34 GPL 4

Dependency	Type	Current	Latest	Behind	CVE	License
node-forge npm	Transitive	1.3.2	1.4.0	2 behind	4 high	(BSD-3-Clause AND GPL-1.0-or-later AND GPL-2.0 AND GPL-2.0-only) OR (BSD-3-Clause AND GPL-1.0-or-later AND GPL-2.0-only)
node-forge npm	Transitive	1.3.2	1.4.0	2 behind	4 high	(BSD-3-Clause AND GPL-1.0-or-later AND GPL-2.0 AND GPL-2.0-only) OR (BSD-3-Clause AND GPL-1.0-or-later AND GPL-2.0-only)
@opentelemetry/api npm	Transitive	1.9.0	1.9.1	1 behind	—	Apache-2.0 OR (Apache-2.0 AND LGPL-3.0-only)
@opentelemetry/api npm	Transitive	1.9.0	1.9.1	1 behind	—	Apache-2.0 OR (Apache-2.0 AND LGPL-3.0-only)

License Breakdown

MIT 2530

ISC 145

Apache-2.0 123

MIT-0 116

BSD-2-Clause 69

BSD-3-Clause 47

Unknown 22

MPL-2.0 12

BlueOak-1.0.0 10

CC0-1.0 5

CC0-1.0 AND MIT 4

ISC AND MIT 4

LicenseRef-scancode-unicode AND MIT 4

0BSD 3

BSD-2-Clause AND BSD-2-Clause-Views 3

BSD-2-Clause AND BSD-3-Clause 3

CC-BY-4.0 3

Python-2.0 3

(BSD-3-Clause AND GPL-1.0-or-later AND GPL-2.0 AND GPL-2.0-only) OR (BSD-3-Clause AND GPL-1.0-or-later AND GPL-2.0-only) 2

AFL-2.1 AND AFL-3.0 AND BSD-3-Clause 2

Apache-2.0 OR (Apache-2.0 AND LGPL-3.0-only) 2

Apache-2.0 OR BSD-2-Clause OR MIT OR (Apache-2.0 AND BSD-2-Clause) OR (Apache-2.0 AND MIT) OR (BSD-2-Clause AND MIT) 2

BSD-3-Clause AND LicenseRef-scancode-generic-cla AND MIT 2

CC0-1.0 OR MIT OR (CC0-1.0 AND MIT) 2

MIT AND WTFPL 2

MIT OR (CC0-1.0 AND MIT) 2

MIT OR (MIT AND WTFPL) 2

MIT OR WTFPL OR (MIT AND WTFPL) 2

Apache-2.0 AND BSD-3-Clause AND MIT 1

Apache-2.0 AND LicenseRef-scancode-unknown 1

Apache-2.0 AND MIT 1

BSD-2-Clause AND CC0-1.0 AND ISC AND MIT 1

BSD-2-Clause AND JSON 1

CC-BY-3.0 1

Unlicense 1

CVE Severity

critical 0

high 19

medium 11

low 4

unknown 0