OpnForm

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV

53% Freshness

1662 Dependencies

663 Outdated

0 Stale

16.8 Avg Behind

Dependency List

Latest release v1.13.2

All 1661 Outdated 800 Has CVE 47 GPL 3

Dependency	Type	Current	Latest	Behind	CVE	License
fast-xml-parser npm	Transitive	5.2.5	5.8.0	35 behind	7 critical	MIT
happy-dom npm	Direct	12.10.3	—	—	3 critical	MIT
phpoffice/phpspreadsheet composer	Direct	1.30.1	—	—	5 critical	Unknown
simple-git npm	Transitive	3.28.0	—	—	3 critical	MIT
vite npm	Transitive	6.3.5	8.0.16	83 behind	5 high	Apache-2.0 AND BSD-2-Clause AND CC0-1.0 AND ISC AND MIT
minimatch npm	Transitive	5.1.6	10.2.5	71 behind	3 high	ISC
rollup npm	Transitive	4.45.1	4.61.0	53 behind	1 high	0BSD AND ISC AND MIT
tar npm	Transitive	7.4.3	7.5.16	18 behind	6 high	ISC
devalue npm	Transitive	5.1.1	5.8.1	17 behind	6 high	MIT
glob npm	Transitive	10.4.5	13.0.6	13 behind	1 high	ISC
serialize-javascript npm	Transitive	6.0.2	7.0.5	6 behind	2 high	BSD-3-Clause
immutable npm	Transitive	5.1.3	5.1.6	5 behind	1 high	MIT
flatted npm	Transitive	3.3.3	3.4.2	4 behind	2 high	ISC
lodash-es npm	Transitive	4.17.21	4.18.1	4 behind	3 high	CC0-1.0 AND MIT
defu npm	Transitive	6.1.4	6.1.7	3 behind	1 high	MIT
lodash npm	Transitive	4.17.21	4.18.1	3 behind	3 high	CC0-1.0 AND MIT
node-forge npm	Transitive	1.3.1	1.4.0	3 behind	7 high	BSD-3-Clause OR GPL-2.0 OR (BSD-3-Clause AND GPL-2.0)
picomatch npm	Transitive	4.0.3	4.0.4	3 behind	2 high	MIT
svgo npm	Transitive	4.0.0	4.0.1	1 behind	1 high	MIT
aws/aws-sdk-php composer	Direct	3.359.11	—	—	2 high	Unknown
h3 npm	Transitive	1.15.3	—	—	5 high	MIT
phpseclib/phpseclib composer	Direct	3.0.47	—	—	3 high	Unknown
phpunit/phpunit composer	Direct	10.5.36	—	—	1 high	Unknown
ajv npm	Transitive	6.12.6	8.20.0	67 behind	1 medium	MIT
qs npm	Transitive	6.14.0	6.15.2	33 behind	2 medium	BSD-3-Clause
esbuild npm	Direct	0.23.1	0.28.0	25 behind	1 medium	MIT
brace-expansion npm	Transitive	2.0.2	5.0.6	11 behind	1 medium	MIT
postcss npm	Direct	8.5.6	8.5.15	9 behind	1 medium	MIT
yaml npm	Transitive	2.8.0	2.9.0	8 behind	1 medium	ISC
js-yaml npm	Transitive	4.1.0	4.2.0	3 behind	1 medium	MIT
uuid npm	Transitive	11.1.0	14.0.0	3 behind	1 medium	MIT
nanotar npm	Transitive	0.2.0	0.3.0	1 behind	1 medium	MIT
@intlify/core npm	Transitive	10.0.7	—	—	1 medium	MIT
@intlify/core-base npm	Transitive	10.0.7	—	—	1 medium	MIT
@nuxt/devtools npm	Transitive	2.6.2	—	—	1 medium	MIT
league/commonmark composer	Direct	2.7.1	—	—	2 medium	Unknown
nitropack npm	Transitive	2.12.0	—	—	2 medium	MIT
psy/psysh composer	Direct	0.12.14	—	—	1 medium	Unknown
symfony/process composer	Direct	7.3.4	—	—	1 medium	Unknown
unhead npm	Transitive	2.0.12	—	—	3 medium	MIT
vue-i18n npm	Transitive	10.0.7	—	—	1 medium	MIT
@eslint/plugin-kit npm	Transitive	0.3.3	0.7.2	11 behind	1 low	Apache-2.0
diff npm	Transitive	8.0.2	9.0.0	8 behind	1 low	BSD-3-Clause
tmp npm	Transitive	0.2.3	0.2.7	4 behind	1 low	MIT
firebase/php-jwt composer	Direct	6.11.1	—	—	1 low	Unknown
nuxt npm	Direct	3.17.5	—	—	1 low	MIT
quill npm	Direct	2.0.3	—	—	1 low	BSD-3-Clause

License Breakdown

MIT 1218

Unknown 170

Apache-2.0 75

ISC 65

BSD-3-Clause 47

BSD-2-Clause 26

MPL-2.0 12

BlueOak-1.0.0 5

Apache-2.0 AND MIT 4

CC0-1.0 4

CC0-1.0 AND MIT 4

ISC AND MIT 4

0BSD 2

BSD-2-Clause AND BSD-3-Clause 2

BSD-3-Clause AND ISC AND MIT 2

BSD-3-Clause AND MIT 2

CC-BY-4.0 2

0BSD AND ISC AND MIT 1

0BSD AND MIT 1

Apache-2.0 AND BSD-2-Clause AND CC0-1.0 AND ISC AND MIT 1

Apache-2.0 AND BSD-3-Clause AND MIT 1

Apache-2.0 OR (Apache-2.0 AND LGPL-3.0-only) 1

Apache-2.0 OR MIT OR (Apache-2.0 AND MIT) 1

Apache-2.0 OR Unlicense OR (Apache-2.0 AND Unlicense) 1

BSD-2-Clause AND BSD-2-Clause-Views 1

BSD-3-Clause OR GPL-2.0 OR (BSD-3-Clause AND GPL-2.0) 1

BlueOak-1.0.0 AND ISC AND MIT 1

CC-BY-3.0 1

CC-BY-SA-4.0 AND ISC 1

GPL-2.0-only AND GPL-2.0-or-later 1

JSON AND MIT 1

LicenseRef-scancode-unknown-license-reference AND Zlib 1

MIT-0 1

Python-2.0 1

CVE Severity

critical 4

high 19

medium 18

low 6

unknown 0