Tools / colanode / Dependencies

Dependency Analysis

colanode

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV

62% Freshness

2428 Dependencies

744 Outdated

0 Stale

9.1 Avg Behind

Dependency List

Latest release v0.4.7

All 2427 Outdated 1082 Has CVE 16 GPL 15

Dependency	Type	Current	Latest	Behind	CVE	License
@img/sharp-libvips-darwin-arm64 npm	Direct	1.2.4	1.2.4	Current	—	BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0
@img/sharp-libvips-darwin-x64 npm	Direct	1.2.4	1.2.4	Current	—	BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0
@img/sharp-libvips-linux-arm npm	Direct	1.2.4	1.2.4	Current	—	BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0
@img/sharp-libvips-linux-arm64 npm	Direct	1.2.4	1.2.4	Current	—	BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0
@img/sharp-libvips-linux-ppc64 npm	Direct	1.2.4	1.2.4	Current	—	BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0
@img/sharp-libvips-linux-riscv64 npm	Direct	1.2.4	1.2.4	Current	—	BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0
@img/sharp-libvips-linux-s390x npm	Direct	1.2.4	1.2.4	Current	—	BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0
@img/sharp-libvips-linux-x64 npm	Direct	1.2.4	1.2.4	Current	—	BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0
@img/sharp-libvips-linuxmusl-arm64 npm	Direct	1.2.4	1.2.4	Current	—	BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0
@img/sharp-libvips-linuxmusl-x64 npm	Direct	1.2.4	1.2.4	Current	—	BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0
@img/sharp-win32-arm64 npm	Direct	0.34.5	0.34.5	Current	—	Apache-2.0 AND BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0
@img/sharp-win32-ia32 npm	Direct	0.34.5	0.34.5	Current	—	Apache-2.0 AND BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0
@img/sharp-win32-x64 npm	Direct	0.34.5	0.34.5	Current	—	Apache-2.0 AND BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0
node-forge npm	Transitive	1.4.0	1.4.0	Current	—	BSD-3-Clause OR GPL-2.0-only
unorm npm	Transitive	1.6.0	—	—	—	MIT OR GPL-2.0-or-later

License Breakdown

MIT 1714

Unknown 232

Apache-2.0 177

ISC 104

BSD-3-Clause 45

BSD-2-Clause 38

MPL-2.0 25

BlueOak-1.0.0 17

BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0 10

CC0-1.0 AND MIT 10

CC0-1.0 6

ISC AND MIT 4

MIT OR (CC0-1.0 AND MIT) 4

Apache-2.0 AND BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0 3

MIT-0 3

Unlicense 3

0BSD 2

Apache-2.0 AND BSD-2-Clause 2

Apache-2.0 AND MIT 2

BSD-2-Clause AND BSD-3-Clause 2

LicenseRef-scancode-unicode AND MIT 2

LicenseRef-scancode-unknown-license-reference AND MIT 2

0BSD AND ISC AND MIT 1

Apache-2.0 OR BSD-2-Clause OR MIT OR (Apache-2.0 AND BSD-2-Clause) OR (Apache-2.0 AND MIT) OR (BSD-2-Clause AND MIT) 1

BSD-2-Clause AND BSD-2-Clause-Views 1

BSD-2-Clause AND CC0-1.0 AND ISC AND MIT 1

BSD-3-Clause AND ISC 1

BSD-3-Clause AND ISC AND MIT 1

BSD-3-Clause AND LicenseRef-scancode-generic-cla AND MIT 1

BSD-3-Clause AND LicenseRef-scancode-protobuf 1

BSD-3-Clause AND MIT 1

BSD-3-Clause OR GPL-2.0-only 1

CC-BY-3.0 1

CC-BY-4.0 1

LicenseRef-scancode-dco-1.1 AND MIT 1

LicenseRef-scancode-public-domain AND Unlicense 1

MIT AND MIT-0 1

MIT AND MITNFA 1

MIT AND Ruby 1

MIT OR (MIT AND WTFPL) 1

MIT OR GPL-2.0-or-later 1

Python-2.0 1

CVE Severity

critical 1

high 7

medium 6

low 2

unknown 0