Skip to content
Tools / shellhub / Dependencies

Dependency Analysis

shellhub

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV
70% Freshness
2373 Dependencies
596 Outdated
0 Stale
11.6 Avg Behind

Dependency List

Latest release v0.24.2

All 2372 Outdated 757 Has CVE 40 GPL 0
Dependency Type Current Latest Behind CVE License
github.com/docker/docker
golang
 Direct 20.10.7+incompatible 16 critical Apache-2.0
github.com/labstack/echo/v4
golang
 Direct 4.3.0 1 critical MIT
golang.org/x/crypto
golang
 Direct 0.0.0-20210616213533-5ff15b29337e 9 critical Unknown
minimatch
npm
 Transitive 9.0.5 10.2.5 36 behind 3 high ISC
tar
npm
 Transitive 6.2.1 7.5.16 27 behind 6 high ISC
glob
npm
 Transitive 10.4.5 13.0.6 13 behind 1 high ISC
picomatch
npm
 Transitive 2.3.1 4.0.4 9 behind 2 high MIT
serialize-javascript
npm
 Transitive 6.0.2 7.0.5 6 behind 2 high BSD-3-Clause
fast-uri
npm
 Transitive 3.1.0 3.1.2 2 behind 2 high BSD-3-Clause
github.com/containerd/containerd
golang
 Direct 1.4.3 17 high Apache-2.0
github.com/dgrijalva/jwt-go
golang
 Direct 3.2.0+incompatible 1 high MIT
github.com/docker/distribution
golang
 Direct 2.7.1+incompatible 3 high Apache-2.0
github.com/docker/docker
golang
 Direct v28.5.2+incompatible 2 high Apache-2.0
github.com/docker/docker
golang
 Transitive v28.5.2+incompatible 2 high Apache-2.0
github.com/docker/docker
golang
 Direct v28.5.2+incompatible 2 high Apache-2.0
github.com/moby/buildkit
golang
 Transitive v0.28.0 2 high Unknown
github.com/pires/go-proxyproto
golang
 Direct 0.6.0 1 high Apache-2.0
github.com/sirupsen/logrus
golang
 Direct 1.8.1 1 high MIT
go.opentelemetry.io/otel/sdk
golang
 Transitive v1.40.0 1 high Apache-2.0 AND BSD-3-Clause
golang.org/x/net
golang
 Direct 0.0.0-20210226172049-e18ecbb05110 15 high BSD-3-Clause AND LicenseRef-scancode-google-patent-license-golang
vite
npm
 Direct 5.4.21 8.0.16 51 behind 1 medium Apache-2.0 AND BSD-2-Clause AND BlueOak-1.0.0 AND CC0-1.0 AND ISC AND MIT
qs
npm
 Transitive 6.14.0 6.15.2 33 behind 2 medium BSD-3-Clause
esbuild
npm
 Transitive 0.21.5 0.28.0 28 behind 1 medium MIT
brace-expansion
npm
 Transitive 2.0.1 5.0.6 16 behind 2 medium MIT
ajv
npm
 Transitive 8.17.1 8.20.0 4 behind 1 medium MIT
github.com/shellhub-io/shellhub
golang
 Direct 0.7.1 4 medium Unknown
github.com/ulikunitz/xz
golang
 Transitive v0.5.14 1 medium BSD-3-Clause
github.com/ulikunitz/xz
golang
 Transitive v0.5.14 1 medium BSD-3-Clause
github.com/ulikunitz/xz
golang
 Transitive v0.5.14 1 medium BSD-3-Clause
go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp
golang
 Transitive v1.38.0 1 medium Apache-2.0 AND BSD-3-Clause
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp
golang
 Transitive v1.26.0 1 medium Apache-2.0
golang.org/x/sys
golang
 Direct 0.0.0-20210616094352-59db8d763f22 1 medium BSD-3-Clause AND LicenseRef-scancode-google-patent-license-golang
elliptic
npm
 Transitive 6.6.1 6.6.1 Current 1 low MIT
elliptic
npm
 Transitive 6.6.1 6.6.1 Current 1 low MIT
github.com/opencontainers/image-spec
golang
 Direct 1.0.1 1 low Apache-2.0
github.com/aws/aws-sdk-go
golang
 Direct 1.37.19 2 unknown Apache-2.0
github.com/redis/go-redis/v9
golang
 Transitive v9.0.3 1 unknown BSD-2-Clause
github.com/redis/go-redis/v9
golang
 Transitive v9.0.3 1 unknown BSD-2-Clause
github.com/redis/go-redis/v9
golang
 Transitive v9.0.3 1 unknown BSD-2-Clause
golang.org/x/net
golang
 Transitive v0.47.0 1 unknown BSD-3-Clause AND LicenseRef-scancode-google-patent-license-golang

License Breakdown

MIT 1595
Apache-2.0 219
Unknown 112
BSD-3-Clause 103
ISC 91
BSD-2-Clause 66
BSD-3-Clause AND LicenseRef-scancode-google-patent-license-golang 48
Apache-2.0 AND BSD-3-Clause 31
MPL-2.0 16
BSD-3-Clause AND MIT 8
Apache-2.0 AND BSD-3-Clause AND MIT 7
BlueOak-1.0.0 6
Apache-2.0 AND CC-BY-SA-4.0 5
Apache-2.0 AND MIT 5
CC0-1.0 4
OFL-1.1 4
Unlicense 4
(CC-BY-4.0 AND MIT) 3
Apache-2.0 AND BSD-2-Clause AND BSD-3-Clause 3
Apache-2.0 AND LicenseRef-scancode-dco-1.1 AND MIT 3
CC-BY-4.0 AND MIT AND OFL-1.1 3
MIT-0 3
0BSD AND ISC AND MIT 2
Apache-2.0 AND CC-BY-4.0 2
BSD-2-Clause AND BSD-2-Clause-Views 2
BSD-3-Clause AND ISC 2
BSD-3-Clause AND ISC AND MIT 2
CC-BY-4.0 2
CC0-1.0 AND MIT 2
CC0-1.0 OR MIT OR (CC0-1.0 AND MIT) 2
ISC AND MIT 2
MIT AND Zlib 2
Python-2.0 2
(CC-BY-3.0 AND CC-BY-4.0 AND MIT AND OFL-1.1) OR (CC-BY-4.0 AND MIT AND OFL-1.1) 1
0BSD 1
0BSD AND MIT 1
Apache-2.0 AND BSD-2-Clause 1
Apache-2.0 AND BSD-2-Clause AND BlueOak-1.0.0 AND CC0-1.0 AND ISC AND MIT 1
Apache-2.0 AND OFL-1.1 AND Ubuntu-font-1.0 1
Artistic-2.0 1
BSD-2-Clause AND BSD-3-Clause 1
BSD-2-Clause AND CC0-1.0 AND ISC AND MIT 1
BSD-3-Clause AND LicenseRef-scancode-generic-cla AND MIT 1
BlueOak-1.0.0 AND ISC AND MIT 1

CVE Severity

critical 3
high 17
medium 12
low 3
unknown 5

Beta — feedback welcome: [email protected]