Tools / Intel Owl / Dependencies

Dependency Analysis

Intel Owl

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV

27% Freshness

1803 Dependencies

1144 Outdated

0 Stale

31.8 Avg Behind

Dependency List

Latest release v6.6.1

All 1802 Outdated 1317 Has CVE 52 GPL 19

Dependency	Type	Current	Latest	Behind	CVE	License
form-data npm	Transitive	4.0.0	4.0.5	12 behind	1 critical	MIT
authlib pypi	Direct	1.6.5	1.7.2	10 behind	6 critical	BSD-3-Clause
rollup npm	Transitive	2.79.1	4.61.1	313 behind	2 high	MIT
minimatch npm	Transitive	3.1.2	10.2.5	91 behind	3 high	ISC
path-to-regexp npm	Transitive	0.1.7	8.4.2	50 behind	3 high	MIT
ws npm	Transitive	7.5.9	8.21.0	29 behind	1 high	MIT
axios npm	Direct	1.8.3	1.17.0	28 behind	17 high	MIT
webpack-dev-middleware npm	Transitive	5.3.3	8.0.3	24 behind	1 high	MIT
@babel/plugin-transform-modules-systemjs npm	Transitive	7.25.7	7.29.7	22 behind	1 high	MIT
http-proxy-middleware npm	Direct	2.0.6	4.0.0	22 behind	3 high	MIT
@remix-run/router npm	Transitive	1.20.0	1.23.3	19 behind	1 high	MIT
svgo npm	Transitive	2.8.0	4.0.1	19 behind	1 high	MIT
django pypi	Direct	4.2.27	6.0.6	16 behind	13 high	BSD-3-Clause AND Python-2.0 AND LicenseRef-scancode-other-permissive AND Python-2.0 AND GPL-1.0-or-later AND Python-2.0 AND BSD-3-Clause AND Python-2.0.1
flatted npm	Transitive	3.2.7	3.4.2	14 behind	2 high	ISC
body-parser npm	Transitive	1.20.1	2.2.2	11 behind	1 high	MIT
gitpython pypi	Direct	3.1.41	3.1.50	9 behind	4 high	BSD-2-Clause AND BSD-3-Clause
immutable npm	Transitive	5.0.3	5.1.6	9 behind	1 high	MIT
picomatch npm	Transitive	2.3.1	4.0.4	9 behind	2 high	MIT
pillow pypi	Direct	11.0.0	12.2.0	7 behind	5 high	MIT-CMU
serialize-javascript npm	Transitive	6.0.1	7.0.5	7 behind	3 high	BSD-3-Clause
nth-check npm	Transitive	1.0.2	3.0.1	6 behind	1 high	BSD-2-Clause AND BSD-3-Clause
lodash-es npm	Transitive	4.17.21	4.18.1	4 behind	3 high	CC0-1.0 AND MIT
lxml pypi	Direct	6.0.2	6.1.1	4 behind	1 high	BSD-3-Clause AND GPL-1.0-or-later
cross-spawn npm	Transitive	7.0.3	7.0.6	3 behind	1 high	MIT
deepdiff pypi	Direct	8.6.1	9.1.0	3 behind	1 high	MIT
lodash npm	Transitive	4.17.21	4.18.1	3 behind	3 high	CC0-1.0 AND MIT
node-forge npm	Transitive	1.3.1	1.4.0	3 behind	7 high	BSD-3-Clause OR GPL-2.0 OR (BSD-3-Clause AND GPL-2.0)
braces npm	Transitive	3.0.2	3.0.3	1 behind	1 high	MIT
react-router npm	Transitive	6.27.0	7.16.0	625 behind	1 medium	MIT
postcss npm	Transitive	7.0.39	8.5.15	69 behind	2 medium	MIT
@babel/helpers npm	Transitive	7.22.6	7.29.7	67 behind	1 medium	MIT
@babel/runtime npm	Transitive	7.23.8	7.29.7	51 behind	1 medium	MIT
webpack npm	Transitive	5.88.2	5.107.2	50 behind	3 medium	MIT
qs npm	Transitive	6.11.0	6.15.2	42 behind	2 medium	BSD-3-Clause
nanoid npm	Transitive	3.3.6	5.1.11	28 behind	1 medium	MIT
yaml npm	Transitive	2.3.1	2.9.0	24 behind	1 medium	ISC
brace-expansion npm	Transitive	2.0.1	5.0.6	16 behind	2 medium	MIT
express npm	Transitive	4.18.2	5.2.1	16 behind	2 medium	MIT
webpack-dev-server npm	Transitive	4.15.1	5.2.4	12 behind	2 medium	MIT
ajv npm	Transitive	8.12.0	8.20.0	9 behind	1 medium	MIT
follow-redirects npm	Transitive	1.15.6	1.16.0	6 behind	1 medium	MIT
ejs npm	Transitive	3.1.9	6.0.1	5 behind	1 medium	Apache-2.0
js-yaml npm	Transitive	3.14.1	4.2.0	5 behind	1 medium	MIT
micromatch npm	Transitive	4.0.5	4.0.8	3 behind	1 medium	MIT
diff npm	Transitive	5.1.0	9.0.0	16 behind	1 low	BSD-3-Clause
lief pypi	Direct	0.15.1	0.17.6	15 behind	1 low	Unknown
cookie npm	Transitive	0.5.0	1.1.1	9 behind	1 low	MIT
serve-static npm	Transitive	1.15.0	2.2.1	9 behind	1 low	MIT
send npm	Transitive	0.18.0	1.2.1	8 behind	1 low	MIT
flask pypi	Direct	3.0.3	3.1.3	4 behind	1 low	BSD-2-Clause AND BSD-3-Clause
@tootallnate/once npm	Transitive	1.1.2	3.0.1	3 behind	1 low	MIT
on-headers npm	Transitive	1.0.2	1.1.0	1 behind	1 low	MIT

License Breakdown

MIT 1407

ISC 81

Apache-2.0 55

BSD-3-Clause 48

BSD-2-Clause 44

CC0-1.0 43

Unknown 35

BSD-2-Clause AND BSD-3-Clause 19

CC0-1.0 AND MIT 6

Unlicense 6

GPL-3.0-or-later 4

ISC AND MIT 4

MIT OR (CC0-1.0 AND MIT) 4

LicenseRef-scancode-public-domain AND Unlicense 3

0BSD 2

Apache-2.0 AND BSD-2-Clause 2

CC-BY-3.0 2

CC-BY-4.0 AND MIT 2

GPL-3.0-only AND GPL-3.0-or-later 2

MIT AND HPND 2

AFL-2.1 AND AFL-3.0 AND BSD-3-Clause 1

Apache-2.0 AND BSD-3-Clause AND BSD-Advertising-Acknowledgement 1

Apache-2.0 AND BSD-3-Clause AND MIT 1

Apache-2.0 AND BSD-3-Clause AND OpenSSL 1

Apache-2.0 OR MPL-1.1 OR (Apache-2.0 AND MPL-1.1) 1

BSD-2-Clause AND BSD-2-Clause-Views 1

BSD-2-Clause AND BSD-3-Clause AND LicenseRef-scancode-free-unknown 1

BSD-2-Clause AND GPL-3.0 AND GPL-3.0-only 1

BSD-2-Clause AND GPL-3.0-or-later 1

BSD-2-Clause AND MIT 1

BSD-3-Clause AND GPL-1.0-or-later 1

BSD-3-Clause AND Python-2.0 AND LicenseRef-scancode-other-permissive AND Python-2.0 AND GPL-1.0-or-later AND Python-2.0 AND BSD-3-Clause AND Python-2.0.1 1

BSD-3-Clause OR GPL-2.0 OR (BSD-3-Clause AND GPL-2.0) 1

CC-BY-3.0 AND MIT 1

CC-BY-4.0 1

CC-BY-SA-4.0 AND ISC 1

CC0-1.0 OR MIT OR (CC0-1.0 AND MIT) 1

GPL-1.0-or-later AND GPL-2.0 AND GPL-2.0-only AND GPL-3.0-or-later 1

GPL-2.0 AND GPL-2.0-only 1

GPL-2.0-only 1

GPL-2.0-only AND GPL-3.0-or-later 1

GPL-3.0 AND GPL-3.0-only AND GPL-3.0-or-later 1

GPL-3.0 AND GPL-3.0-or-later 1

GPL-3.0-only 1

GPL-3.0-only AND LGPL-3.0-only AND LGPL-3.0-or-later 1

ISC AND MPL-2.0 1

LicenseRef-scancode-free-unknown AND MIT 1

MIT-CMU 1

MPL-2.0 1

PSF-2.0 1

Python-2.0 1

CVE Severity

critical 2

high 26

medium 16

low 8

unknown 0