Skip to content
Tools / documenso / Dependencies

Dependency Analysis

documenso

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV
61% Freshness
2520 Dependencies
801 Outdated
0 Stale
17.0 Avg Behind

Dependency List

Latest release v2.10.0

All 2519 Outdated 1025 Has CVE 7 GPL 15
Dependency Type Current Latest Behind CVE License
axios
npm
 Transitive 1.15.0 1.17.0 8 behind 13 high MIT
fast-xml-builder
npm
 Transitive 1.1.4 1.2.0 6 behind 1 high MIT
fast-uri
npm
 Transitive 3.1.0 3.1.2 2 behind 2 high BSD-3-Clause
fast-xml-parser
npm
 Transitive 5.5.8 5.8.0 12 behind 1 medium MIT
brace-expansion
npm
 Transitive 1.1.12 5.0.6 10 behind 1 medium MIT
hono
npm
 Transitive 4.12.14 4.12.23 9 behind 2 medium MIT
uuid
npm
 Transitive 11.1.0 14.0.0 3 behind 1 medium MIT

License Breakdown

MIT 1632
Unknown 335
Apache-2.0 293
ISC 91
BSD-3-Clause 45
MPL-2.0 22
BSD-2-Clause 19
BlueOak-1.0.0 15
BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0 10
CC0-1.0 AND MIT 7
Apache-2.0 AND MIT 5
ISC AND MIT 4
0BSD 3
Apache-2.0 AND BSD-2-Clause AND LGPL-2.0-only AND LGPL-2.1-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-other-permissive AND MIT AND MPL-2.0 3
Unlicense 3
Apache-2.0 AND BSD-2-Clause 2
Apache-2.0 AND BSD-3-Clause 2
MIT AND Zlib 2
MIT-0 2
(MIT OR CC0-1.0) 1
(MPL-2.0 OR Apache-2.0) 1
0BSD AND ISC AND MIT 1
0BSD AND MIT 1
AFL-2.1 AND AFL-3.0 AND BSD-3-Clause 1
Apache-2.0 AND CC-BY-3.0 AND CC-BY-4.0 AND CC-BY-SA-3.0 AND CC0-1.0 AND ISC AND LicenseRef-scancode-unknown-license-reference AND MIT AND MPL-2.0 AND OFL-1.1 1
Apache-2.0 AND ISC 1
Apache-2.0 OR (Apache-2.0 AND LGPL-3.0-only) 1
BSD-2-Clause AND BSD-2-Clause-Views 1
BSD-2-Clause AND CC0-1.0 AND ISC AND MIT 1
BSD-2-Clause AND JSON 1
BSD-3-Clause AND LicenseRef-scancode-generic-cla AND MIT 1
BSD-3-Clause AND MIT 1
BlueOak-1.0.0 AND ISC AND MIT 1
CC-BY-3.0 1
CC-BY-4.0 1
CC0-1.0 1
GPL-1.0-or-later AND GPL-3.0-only AND MIT 1
LicenseRef-scancode-generic-cla AND MIT 1
LicenseRef-scancode-public-domain 1
MIT AND MIT-0 1
MIT AND MITNFA 1
MIT OR Apache-2.0 1
Python-2.0 1

CVE Severity

critical 0
high 3
medium 4
low 0
unknown 0

Beta — feedback welcome: [email protected]