Dependency Analysis
Kyoo
Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.
87%
Freshness
394
Dependencies
41
Outdated
0
Stale
17.0
Avg Behind
Dependency List
Latest release v5.0.0
| Dependency | Type | Current | Latest | Behind | CVE | License |
|---|---|---|---|---|---|---|
|
drizzle-orm
npm
|
Direct | 0.44.7 | 0.45.2 | 204 behind | 1 high | Apache-2.0 |
|
python-multipart
pypi
|
Direct | 0.0.22 | 0.0.30 | 8 behind | 2 high | Apache-2.0 |
|
python-dotenv
pypi
|
Direct | 1.2.1 | 1.2.2 | 1 behind | 1 medium | BSD-3-Clause |
|
github.com/disintegration/imaging
golang
|
Direct | v1.6.2 | — | — | 1 low | MIT |
|
golang.org/x/net
golang
|
Transitive | v0.52.0 | — | — | 1 unknown | BSD-3-Clause AND LicenseRef-scancode-google-patent-license-golang |
License Breakdown
Unknown
171
MIT
72
Apache-2.0
66
Apache-2.0 AND BSD-3-Clause
17
BSD-3-Clause AND LicenseRef-scancode-google-patent-license-golang
17
BSD-3-Clause
14
Apache-2.0 AND MIT
6
BSD-2-Clause AND BSD-3-Clause
4
Apache-2.0 AND BSD-3-Clause AND MIT
2
Apache-2.0 AND CC-BY-3.0 AND MIT
2
BSD-2-Clause
2
ISC
2
MIT AND PostgreSQL AND PostgreSQL
2
MIT OR Apache-2.0
2
MIT-0
2
0BSD AND BSD-3-Clause AND LicenseRef-scancode-unknown-license-reference AND PSF-2.0 AND Python-2.0
1
Apache-2.0 AND BSD-2-Clause
1
Apache-2.0 AND BSD-3-Clause AND LicenseRef-scancode-unknown-license-reference
1
Apache-2.0 AND BSD-3-Clause AND MPL-2.0
1
Artistic-1.0-Perl OR GPL-1.0-only OR GPL-2.0-or-later
1
BSD-3-Clause AND LicenseRef-scancode-protobuf
1
BSD-3-Clause AND MIT
1
BSD-3-Clause OR Apache-2.0
1
CC0-1.0 AND Unlicense
1
ISC AND MPL-2.0
1
MPL-2.0
1
Python-2.0 AND GPL-1.0-or-later AND Python-2.0 AND BSD-3-Clause AND Python-2.0 AND BSD-3-Clause AND 0BSD
1
CVE Severity
critical
0
high
2
medium
1
low
1
unknown
1