leantime

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV

59% Freshness

1529 Dependencies

512 Outdated

0 Stale

6.5 Avg Behind

Dependency List

Latest release v3.7.3

All 1528 Outdated 665 Has CVE 27 GPL 5

Dependency	Type	Current	Latest	Behind	CVE	License
node-forge npm	Transitive	1.3.2	1.4.0	2 behind	4 high	(BSD-3-Clause AND GPL-1.0-or-later AND GPL-2.0 AND GPL-2.0-only) OR (BSD-3-Clause AND GPL-1.0-or-later AND GPL-2.0-only)
dompurify npm	Transitive	3.3.3	3.4.8	9 behind	4 medium	(Apache-2.0 AND GPL-1.0-only AND MPL-2.0 AND MS-PL) OR (Apache-2.0 AND GPL-1.0-only AND MPL-2.0) OR (Apache-2.0 AND GPL-2.0-only AND MPL-2.0 AND MS-PL) OR (Apache-2.0 AND GPL-2.0-only AND MPL-2.0)
isotope-layout npm	Direct	3.0.6	—	—	—	GPL-3.0
jquery-ui-touch-punch npm	Direct	0.2.3	0.2.3	Current	—	GPL-2.0-only OR MIT
packery npm	Direct	2.1.2	—	—	—	GPL-3.0

License Breakdown

MIT 1104

Unknown 172

ISC 85

BSD-3-Clause 63

Apache-2.0 30

BSD-2-Clause 27

CC0-1.0 AND MIT 8

BSD-3-Clause AND MIT 4

BlueOak-1.0.0 4

ISC AND MIT 4

0BSD 2

BSD-3-Clause AND LicenseRef-scancode-generic-cla AND MIT 2

GPL-3.0 2

LicenseRef-scancode-public-domain AND Unlicense 2

MIT AND Zlib 2

(Apache-2.0 AND GPL-1.0-only AND MPL-2.0 AND MS-PL) OR (Apache-2.0 AND GPL-1.0-only AND MPL-2.0) OR (Apache-2.0 AND GPL-2.0-only AND MPL-2.0 AND MS-PL) OR (Apache-2.0 AND GPL-2.0-only AND MPL-2.0) 1

(BSD-3-Clause AND GPL-1.0-or-later AND GPL-2.0 AND GPL-2.0-only) OR (BSD-3-Clause AND GPL-1.0-or-later AND GPL-2.0-only) 1

Apache-2.0 AND BSD-2-Clause 1

Apache-2.0 AND ISC 1

Apache-2.0 AND MIT 1

Artistic-2.0 AND MIT 1

BSD-2-Clause AND BSD-2-Clause-Views 1

CC-BY-4.0 1

CC-BY-4.0 AND MIT AND OFL-1.1 1

CC-BY-SA-4.0 AND ISC 1

CC0-1.0 1

GPL-2.0-only OR MIT 1

ISC AND LicenseRef-scancode-sudo 1

LicenseRef-scancode-free-unknown AND MIT 1

MPL-2.0 1

Python-2.0 1

Unlicense 1

CVE Severity

critical 0

high 13

medium 12

low 2

unknown 0