Dependency Analysis
Secrover
Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.
86%
Freshness
21
Dependencies
0
Outdated
0
Stale
0.3
Avg Behind
Dependency List
Latest release 0.9
| Dependency | Type | Current | Latest | Behind | CVE | License |
|---|---|---|---|---|---|---|
|
gitpython
pypi
|
Direct | 3.1.48 | — | — | 1 high | Unknown |
|
requests
pypi
|
Direct | 2.33.1 | 2.34.2 | 4 behind | — | Apache-2.0 |
|
ruff
pypi
|
Direct | 0.15.12 | 0.15.15 | 3 behind | — | MIT |
|
certifi
pypi
|
Transitive | 2026.4.22 | 2026.5.20 | 1 behind | — | MPL-2.0 |
|
smmap
pypi
|
Transitive | 5.0.3 | 6.0.0 | 1 behind | — | BSD-3-Clause |
|
urllib3
pypi
|
Transitive | 2.6.3 | 2.7.0 | 1 behind | — | MIT |
|
actions/checkout
githubactions
|
Direct | 6.*.* | — | — | — | Unknown |
|
charset-normalizer
pypi
|
Transitive | 3.4.7 | 3.4.7 | Current | — | MIT |
|
docker/build-push-action
githubactions
|
Direct | 7.*.* | — | — | — | Unknown |
|
docker/login-action
githubactions
|
Direct | 4.*.* | — | — | — | Unknown |
|
docker/setup-buildx-action
githubactions
|
Direct | 4.*.* | — | — | — | Unknown |
|
docker/setup-qemu-action
githubactions
|
Direct | 4.*.* | — | — | — | Unknown |
|
gitdb
pypi
|
Transitive | 4.0.12 | 4.0.12 | Current | — | BSD-2-Clause AND BSD-3-Clause AND GPL-1.0-or-later |
|
idna
pypi
|
Transitive | 3.13 | 3.18.0 | — | — | BSD-3-Clause |
|
ip2location
pypi
|
Direct | 8.11.0 | — | — | — | MIT |
|
jinja2
pypi
|
Direct | 3.1.6 | 3.1.6 | Current | — | BSD-2-Clause AND BSD-3-Clause |
|
markupsafe
pypi
|
Transitive | 3.0.3 | 3.0.3 | Current | — | BSD-3-Clause |
|
python-dotenv
pypi
|
Direct | 1.2.2 | 1.2.2 | Current | — | BSD-3-Clause |
|
pyyaml
pypi
|
Direct | 6.0.3 | 6.0.3 | Current | — | MIT |
|
secrover
pypi
|
Direct | 0.9.0 | — | — | — | Unknown |
License Breakdown
Unknown
7
MIT
5
BSD-3-Clause
4
Apache-2.0
1
BSD-2-Clause AND BSD-3-Clause
1
BSD-2-Clause AND BSD-3-Clause AND GPL-1.0-or-later
1
MPL-2.0
1
CVE Severity
critical
0
high
1
medium
0
low
0
unknown
0