converse.js

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV

73% Freshness

1171 Dependencies

237 Outdated

0 Stale

5.0 Avg Behind

Dependency List

Latest release v12.0.0

All 1170 Outdated 380 Has CVE 2 GPL 16

Dependency	Type	Current	Latest	Behind	CVE	License
form-data npm	Transitive	4.0.2	4.0.5	6 behind	1 critical	MIT
html-minifier npm	Transitive	4.0.0	—	—	1 high	MIT

License Breakdown

MIT 958

Apache-2.0 71

ISC 40

BSD-3-Clause 23

BSD-2-Clause 21

Unknown 14

BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0 10

0BSD 4

BlueOak-1.0.0 4

Apache-2.0 AND BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0 3

CC0-1.0 AND MIT 3

(MPL-2.0 OR Apache-2.0) 2

CC0-1.0 2

Python-2.0 2

Apache-2.0 AND BSD-3-Clause AND MIT 1

BSD-2-Clause AND BSD-2-Clause-Views 1

BSD-2-Clause AND BSD-3-Clause 1

BSD-2-Clause AND CC0-1.0 AND ISC AND MIT 1

BSD-3-Clause OR GPL-2.0-only 1

CC-BY-3.0 AND MIT 1

CC-BY-4.0 1

GPL-2.0-only AND MIT 1

ISC AND MIT 1

LGPL-2.0-or-later 1

MIT AND MIT-0 1

MIT OR WTFPL OR (MIT AND WTFPL) 1

MIT-0 1

CVE Severity

critical 1

high 1

medium 0

low 0

unknown 0