Tools / minthcm / Dependencies

Dependency Analysis

minthcm

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV

53% Freshness

2655 Dependencies

1059 Outdated

0 Stale

15.8 Avg Behind

Dependency List

Latest release 4.3.1

All 2654 Outdated 1239 Has CVE 61 GPL 5

Dependency	Type	Current	Latest	Behind	CVE	License
loader-utils npm	Transitive	0.2.17	3.3.1	29 behind	1 critical	MIT
form-data npm	Transitive	2.3.3	4.0.5	18 behind	1 critical	MIT
ejs npm	Transitive	2.7.4	—	—	2 critical	Apache-2.0
onelogin/php-saml composer	Direct	3.4.1	—	—	1 critical	MIT
minimatch npm	Transitive	3.1.2	10.2.5	91 behind	3 high	ISC
minimatch npm	Transitive	3.1.2	10.2.5	91 behind	3 high	ISC
vite npm	Direct	6.4.1	8.0.16	52 behind	2 high	Apache-2.0 AND BSD-2-Clause AND CC0-1.0 AND ISC AND MIT
webpack-dev-middleware npm	Transitive	3.7.3	8.0.3	38 behind	1 high	MIT
ws npm	Transitive	7.5.9	8.21.0	29 behind	1 high	MIT
json5 npm	Transitive	0.5.1	2.2.3	20 behind	1 high	MIT
svgo npm	Transitive	2.8.0	4.0.1	19 behind	1 high	MIT
immutable npm	Transitive	4.3.5	5.1.6	18 behind	1 high	MIT
cross-spawn npm	Transitive	5.1.0	7.0.6	13 behind	1 high	MIT
serialize-javascript npm	Transitive	4.0.0	7.0.5	11 behind	2 high	BSD-3-Clause
axios npm	Direct	1.13.6	1.17.0	10 behind	15 high	MIT
nth-check npm	Transitive	1.0.2	3.0.1	6 behind	1 high	BSD-2-Clause AND BSD-3-Clause
path-to-regexp npm	Transitive	0.1.12	8.4.2	5 behind	1 high	MIT
path-to-regexp npm	Transitive	0.1.12	8.4.2	5 behind	1 high	MIT
braces npm	Transitive	2.3.2	3.0.3	4 behind	1 high	MIT
lodash npm	Transitive	4.17.21	4.18.1	3 behind	3 high	CC0-1.0 AND MIT
lodash npm	Transitive	4.17.21	4.18.1	3 behind	3 high	CC0-1.0 AND MIT
fast-uri npm	Transitive	3.1.0	3.1.2	2 behind	2 high	BSD-3-Clause
ip npm	Transitive	1.1.9	2.0.1	1 behind	1 high	MIT
flatted npm	Transitive	2.0.2	—	—	2 high	ISC AND Zlib
html-minifier npm	Transitive	3.5.21	—	—	1 high	MIT
http-proxy-middleware npm	Transitive	0.19.1	—	—	1 high	MIT
node-forge npm	Transitive	0.10.0	—	—	13 high	BSD-3-Clause OR GPL-2.0 OR (BSD-3-Clause AND GPL-2.0)
phpseclib/phpseclib composer	Direct	3.0.36	—	—	3 high	MIT
picomatch npm	Transitive	2.2.2	—	—	2 high	MIT
robrichards/xmlseclibs composer	Direct	3.1.3	—	—	2 high	BSD-3-Clause
tecnickcom/tcpdf composer	Direct	6.7.5	—	—	5 high	GPL-2.0-only AND GPL-3.0-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-unknown-license-reference
vuetify npm	Direct	2.6.13	—	—	2 high	MIT
postcss npm	Transitive	7.0.39	8.5.15	69 behind	1 medium	MIT
ajv npm	Transitive	6.12.6	8.20.0	67 behind	1 medium	MIT
ajv npm	Transitive	6.12.6	8.20.0	67 behind	1 medium	MIT
qs npm	Transitive	6.13.0	6.15.2	35 behind	2 medium	BSD-3-Clause
tough-cookie npm	Transitive	2.5.0	6.0.1	23 behind	1 medium	BSD-3-Clause
brace-expansion npm	Transitive	1.1.12	5.0.6	10 behind	1 medium	MIT
micromatch npm	Transitive	3.1.10	4.0.8	9 behind	1 medium	MIT
postcss npm	Transitive	8.5.6	8.5.15	9 behind	1 medium	MIT
yaml npm	Direct	2.8.2	2.9.0	6 behind	1 medium	ISC
js-yaml npm	Transitive	3.14.1	4.2.0	5 behind	1 medium	MIT
js-yaml npm	Transitive	3.14.1	4.2.0	5 behind	1 medium	MIT
follow-redirects npm	Transitive	1.15.11	1.16.0	1 behind	1 medium	MIT
follow-redirects npm	Transitive	1.15.11	1.16.0	1 behind	1 medium	MIT
@babel/helpers npm	Transitive	7.24.5	—	—	1 medium	MIT
@babel/runtime npm	Transitive	7.24.5	—	—	1 medium	MIT
bn.js npm	Transitive	4.11.9	—	—	1 medium	MIT
request npm	Transitive	2.88.2	2.88.2	Current	1 medium	Apache-2.0
symfony/process composer	Direct	5.4.47	—	—	1 medium	Unknown
tinymce/tinymce composer	Direct	6.8.5	—	—	1 medium	Unknown
vue-template-compiler npm	Direct	2.7.16	2.7.16	Current	1 medium	MIT
webpack npm	Transitive	5.91.0	—	—	3 medium	MIT
webpack-dev-server npm	Transitive	3.11.3	—	—	2 medium	MIT
vue npm	Direct	2.7.16	3.5.35	106 behind	1 low	MIT
brace-expansion npm	Transitive	1.1.11	5.0.6	18 behind	1 low	MIT
tmp npm	Transitive	0.0.33	0.2.7	9 behind	1 low	MIT
on-headers npm	Transitive	1.0.2	1.1.0	1 behind	1 low	MIT
elliptic npm	Transitive	6.6.1	6.6.1	Current	1 low	MIT
firebase/php-jwt composer	Direct	6.10.1	—	—	1 low	Unknown
symfony/validator composer	Direct	3.4.47	—	—	1 low	Unknown

License Breakdown

MIT 2091

Unknown 150

ISC 127

BSD-3-Clause 99

Apache-2.0 62

BSD-2-Clause 58

CC0-1.0 AND MIT 6

CC0-1.0 5

MIT OR (CC0-1.0 AND MIT) 5

ISC AND MIT 4

0BSD 3

BSD-2-Clause AND BSD-3-Clause 3

Unlicense 3

Apache-2.0 AND BSD-2-Clause 2

BSD-2-Clause AND BSD-3-Clause AND LicenseRef-scancode-unknown-license-reference 2

BSD-3-Clause OR GPL-2.0 OR (BSD-3-Clause AND GPL-2.0) 2

CC-BY-3.0 2

CC-BY-4.0 2

LicenseRef-scancode-public-domain AND Unlicense 2

MIT OR WTFPL OR (MIT AND WTFPL) 2

MPL-2.0 2

0BSD AND ISC AND MIT 1

AFL-2.1 AND AFL-3.0 AND BSD-3-Clause 1

Apache-2.0 AND BSD-2-Clause AND CC0-1.0 AND ISC AND MIT 1

Apache-2.0 AND GPL-1.0-or-later AND LicenseRef-scancode-unknown-license-reference AND MIT 1

Apache-2.0 AND MIT 1

Apache-2.0 OR MIT 1

Artistic-1.0 1

Artistic-2.0 AND MIT 1

BSD-2-Clause AND BSD-2-Clause-Views 1

BSD-3-Clause AND ISC 1

BSD-3-Clause AND MIT 1

BlueOak-1.0.0 1

CC-BY-SA-4.0 AND ISC 1

EPL-1.0 1

GPL-2.0-only AND GPL-3.0-only AND LGPL-3.0-only AND LGPL-3.0-or-later AND LicenseRef-scancode-unknown-license-reference 1

GPL-2.0-or-later 1

ISC AND Zlib 1

LicenseRef-scancode-dco-1.1 AND MIT 1

LicenseRef-scancode-free-unknown AND MIT 1

MIT AND WTFPL 1

MIT AND Zlib 1

Python-2.0 1

CVE Severity

critical 4

high 28

medium 22

low 7

unknown 0