riven

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

62% Freshness

167 Dependencies

47 Outdated

0 Stale

4.7 Avg Behind

Dependency List

Latest release v0.23.6

Dependency	Type	Current	Latest	Behind	CVE	License
lxml pypi	Direct	5.4.0	6.1.1	7 behind	1 high	BSD-3-Clause AND GPL-1.0-or-later
chardet pypi	Direct	5.2.0	7.4.3	13 behind	—	LGPL-2.1-or-later
psycopg2-binary pypi	Direct	2.9.11	2.9.12	1 behind	—	LGPL-2.0-or-later AND LGPL-3.0-or-later
bencodepy pypi	Direct	0.9.5	—	—	—	GPL-2.0-only
guessit pypi	Direct	3.8.0	—	—	—	GPL-3.0-or-later AND LGPL-3.0 AND LGPL-3.0-only
levenshtein pypi	Direct	0.27.3	—	—	—	GPL-2.0-or-later
pyfuse3 pypi	Direct	3.4.0	—	—	—	LGPL-2.0-only AND LGPL-2.0-or-later AND LGPL-2.1-or-later AND LGPL-3.0-or-later
typing-extensions pypi	Direct	4.15.0	4.15.0	Current	—	Python-2.0 AND GPL-1.0-or-later AND Python-2.0 AND BSD-3-Clause AND Python-2.0 AND BSD-3-Clause AND 0BSD

MIT 67

Unknown 22

Apache-2.0 19

BSD-3-Clause 13

BSD-2-Clause AND BSD-3-Clause 10

Apache-2.0 AND MIT 7

BSD-2-Clause 3

Apache-2.0 AND BSD-2-Clause 2

MPL-2.0 2

PSF-2.0 2

(Apache-2.0 AND BSD-3-Clause) OR (Apache-2.0 AND MIT) 1

Apache-2.0 AND BSD-3-Clause AND LicenseRef-scancode-unknown-license-reference 1

Apache-2.0 OR (Apache-2.0 AND MIT) 1

BSD-2-Clause AND BSD-3-Clause AND MIT AND Python-2.0 AND Ruby 1

BSD-3-Clause AND GPL-1.0-or-later 1

CNRI-Python AND Apache-2.0 1

GPL-2.0-only 1

GPL-2.0-or-later 1

GPL-3.0-or-later AND LGPL-3.0 AND LGPL-3.0-only 1

ISC 1

LGPL-2.0-only AND LGPL-2.0-or-later AND LGPL-2.1-or-later AND LGPL-3.0-or-later 1

LGPL-2.0-or-later AND LGPL-3.0-or-later 1

LGPL-2.1-or-later 1

MIT AND PSF-2.0 AND Python-2.0 1

MIT AND Python-2.0 AND Python-2.0.1 1

MIT-0 1

PSF-2.0 AND Python-2.0 1

Python-2.0 AND GPL-1.0-or-later AND Python-2.0 AND BSD-3-Clause AND Python-2.0 AND BSD-3-Clause AND 0BSD 1

Unlicense 1

critical 0

high 7

medium 5

low 1

unknown 0