Skip to content
Tools / mailcow-dockerized / Dependencies

Dependency Analysis

mailcow-dockerized

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV
100% Freshness
51 Dependencies
0 Outdated
0 Stale
Avg Behind

Dependency List

Latest release 2026-03b

All 50 Outdated 0 Has CVE 3 GPL 1
Dependency Type Current Latest Behind CVE License
nesbot/carbon
composer
 Direct 2.72.3 1 medium MIT
firebase/php-jwt
composer
 Direct 6.5.0 1 low Unknown
twig/twig
composer
 Direct 3.14.0 2 low BSD-3-Clause
actions/checkout
githubactions
 Direct 6.*.* Unknown
actions/stale
githubactions
 Direct 10.2.0 Unknown
bacon/bacon-qr-code
composer
 Direct 2.0.8 BSD-2-Clause
bshaffer/oauth2-server-php
composer
 Direct 1.11.1 MIT
carbonphp/carbon-doctrine-types
composer
 Direct 3.2.0 MIT
dasprid/enum
composer
 Direct 1.0.7 BSD-2-Clause
ddeboer/imap
composer
 Direct 1.13.1 MIT
devops-infra/action-pull-request
githubactions
 Direct 1.0.2 Unknown
directorytree/ldaprecord
composer
 Direct 3.8.5 Unknown
docker/build-push-action
githubactions
 Direct 7.*.* Unknown
docker/login-action
githubactions
 Direct 4.*.* Unknown
docker/setup-buildx-action
githubactions
 Direct 4.*.* Unknown
docker/setup-qemu-action
githubactions
 Direct 4.*.* Unknown
guzzlehttp/guzzle
composer
 Direct 7.5.0 MIT
guzzlehttp/promises
composer
 Direct 1.5.2 MIT
guzzlehttp/psr7
composer
 Direct 2.4.5 MIT
illuminate/collections
composer
 Direct 10.49.0 Unknown
illuminate/conditionable
composer
 Direct 10.49.0 Unknown
illuminate/contracts
composer
 Direct 10.44.0 Unknown
illuminate/macroable
composer
 Direct 10.49.0 Unknown
league/oauth2-client
composer
 Direct 2.7.0 MIT
matthiasmullie/minify
composer
 Direct 1.3.66 MIT
matthiasmullie/path-converter
composer
 Direct 1.1.3 MIT
mustangostang/spyc
composer
 Direct 0.6.3 MIT
paragonie/random_compat
composer
 Direct 9.99.100 MIT
peter-evans/create-pull-request
githubactions
 Direct 8.*.* Unknown
php-mime-mail-parser/php-mime-mail-parser
composer
 Direct 7.0.0 MIT
phpmailer/phpmailer
composer
 Direct 6.6.0 LGPL-2.1-only
psr/clock
composer
 Direct 1.0.0 MIT
psr/container
composer
 Direct 2.0.2 MIT
psr/http-client
composer
 Direct 1.0.1 MIT
psr/http-factory
composer
 Direct 1.0.1 MIT
psr/http-message
composer
 Direct 1.0.1 MIT
psr/log
composer
 Direct 3.0.0 MIT
psr/simple-cache
composer
 Direct 2.0.0 MIT
ralouphie/getallheaders
composer
 Direct 3.0.3 MIT
robthree/twofactorauth
composer
 Direct 1.8.1 Unknown
soundasleep/html2text
composer
 Direct 0.5.0 EPL-1.0
stevenmaguire/oauth2-keycloak
composer
 Direct 4.0.0 Unknown
symfony/deprecation-contracts
composer
 Direct 3.5.0 Unknown
symfony/polyfill-ctype
composer
 Direct 1.24.0 Unknown
symfony/polyfill-mbstring
composer
 Direct 1.29.0 Unknown
symfony/polyfill-php80
composer
 Direct 1.29.0 Unknown
symfony/polyfill-php81
composer
 Direct 1.31.0 Unknown
symfony/translation
composer
 Direct 6.4.3 Unknown
symfony/translation-contracts
composer
 Direct 3.4.1 Unknown
thollander/actions-comment-pull-request
githubactions
 Direct 3.0.1 Unknown

License Breakdown

Unknown 24
MIT 21
BSD-2-Clause 2
BSD-3-Clause 1
EPL-1.0 1
LGPL-2.1-only 1

CVE Severity

critical 0
high 0
medium 1
low 2
unknown 0

Beta — feedback welcome: [email protected]