Dependency Analysis
NodeBB
Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.
91%
Freshness
163
Dependencies
10
Outdated
0
Stale
1.7
Avg Behind
Dependency List
Latest release v4.11.2
| Dependency | Type | Current | Latest | Behind | CVE | License |
|---|---|---|---|---|---|---|
|
express
npm
|
Direct | 4.22.1 | 5.2.1 | 53 behind | — | MIT |
|
husky
npm
|
Direct | 8.0.3 | 9.1.7 | 19 behind | — | MIT |
|
mocha
npm
|
Direct | 11.7.5 | 11.7.6 | 18 behind | — | MIT |
|
chalk
npm
|
Direct | 4.1.2 | 5.6.2 | 12 behind | — | MIT |
|
mime
npm
|
Direct | 3.0.0 | 4.1.0 | 11 behind | — | MIT |
|
yargs
npm
|
Direct | 17.7.2 | 18.0.0 | 11 behind | — | MIT |
|
lint-staged
npm
|
Direct | 16.4.0 | 17.0.7 | 8 behind | — | MIT |
|
@apidevtools/swagger-parser
npm
|
Direct | 10.1.0 | 12.1.0 | 5 behind | — | MIT |
|
jquery
npm
|
Direct | 3.7.1 | 4.0.0 | 5 behind | — | MIT |
|
lru-cache
npm
|
Direct | 11.3.5 | 11.5.1 | 4 behind | — | BlueOak-1.0.0 |
|
undici
npm
|
Direct | 8.1.0 | 8.3.0 | 4 behind | — | MIT |
|
postcss
npm
|
Direct | 8.5.12 | 8.5.15 | 3 behind | — | MIT |
|
commander
npm
|
Direct | 14.0.3 | 15.0.0 | 2 behind | — | MIT |
|
semver
npm
|
Direct | 7.7.4 | 7.8.1 | 2 behind | — | ISC |
|
terser-webpack-plugin
npm
|
Direct | 5.5.0 | 5.6.1 | 2 behind | — | MIT |
|
@isaacs/ttlcache
npm
|
Direct | 2.1.4 | 2.1.5 | 1 behind | — | BlueOak-1.0.0 |
|
ace-builds
npm
|
Direct | 1.43.6 | 1.44.0 | 1 behind | — | BSD-3-Clause |
|
archiver
npm
|
Direct | 7.0.1 | 8.0.0 | 1 behind | — | MIT |
|
fs-extra
npm
|
Direct | 11.3.4 | 11.3.5 | 1 behind | — | MIT |
|
globals
npm
|
Direct | 17.5.0 | 17.6.0 | 1 behind | — | MIT |
|
ipaddr.js
npm
|
Direct | 2.3.0 | 2.4.0 | 1 behind | — | MIT |
|
morgan
npm
|
Direct | 1.10.1 | 1.11.0 | 1 behind | — | MIT |
|
pg
npm
|
Direct | 8.20.0 | 8.21.0 | 1 behind | — | MIT |
|
qs
npm
|
Direct | 6.15.1 | 6.15.2 | 1 behind | — | BSD-3-Clause |
|
redis
npm
|
Direct | 5.12.1 | 6.0.0 | 1 behind | — | MIT |
|
sanitize-html
npm
|
Direct | 2.17.3 | 2.17.4 | 1 behind | — | MIT |
|
sass
npm
|
Direct | 1.99.0 | 1.100.0 | 1 behind | — | Apache-2.0 AND BSD-3-Clause AND MIT |
License Breakdown
MIT
106
Unknown
13
BSD-2-Clause
8
BSD-3-Clause
5
ISC
5
Apache-2.0
3
BlueOak-1.0.0
3
CC0-1.0 AND MIT
2
MIT AND MIT-0
2
(LGPL-2.1 AND LGPL-2.1+ AND MIT) OR (LGPL-2.1 AND MIT)
1
Apache-2.0 AND Apache-2.0 WITH LLVM-exception
1
Apache-2.0 AND BSD-3-Clause AND MIT
1
Apache-2.0 AND OFL-1.1 AND Ubuntu-font-1.0
1
BSD-2-Clause AND BSD-2-Clause-Views
1
CC-BY-3.0 AND MIT
1
CC-BY-4.0 AND MIT AND OFL-1.1
1
CC0-1.0
1
LicenseRef-scancode-free-unknown AND MIT
1
MIT OR (GPL-2.0 AND MIT)
1
MIT-0
1
MPL-2.0
1
OFL-1.1
1
Unlicense
1
WTFPL
1
CVE Severity
critical
0
high
0
medium
0
low
0
unknown
0