Dependency Analysis
Spack
Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.
90%
Freshness
43
Dependencies
3
Outdated
0
Stale
0.6
Avg Behind
Dependency List
Latest release v1.0.4
| Dependency | Type | Current | Latest | Behind | CVE | License |
|---|---|---|---|---|---|---|
|
black
pypi
|
Direct | 25.12.0 | 26.5.1 | 6 behind | 1 high | MIT |
|
ruff
pypi
|
Direct | 0.15.11 | 0.15.15 | 4 behind | — | Unknown |
|
mypy
pypi
|
Direct | 1.20.1 | 2.1.0 | 3 behind | — | MIT AND Python-2.0 AND Python-2.0.1 AND BSD-2-Clause AND MIT AND Python-2.0 AND Python-2.0.1 AND BSD-2-Clause |
|
coverage
pypi
|
Direct | 7.13.5 | 7.14.1 | 2 behind | — | Apache-2.0 |
|
docutils
pypi
|
Direct | 0.22.4 | 0.23.0 | 2 behind | — | BSD-2-Clause AND BSD-3-Clause AND CC-PDDC AND GPL-1.0-or-later AND GPL-3.0-only AND GPL-3.0-or-later AND LicenseRef-scancode-free-unknown AND LicenseRef-scancode-other-copyleft AND LicenseRef-scancode-public-domain |
|
isort
pypi
|
Direct | 7.0.0 | 8.0.1 | 2 behind | — | MIT |
License Breakdown
Unknown
24
MIT
12
BSD-2-Clause
2
Apache-2.0
1
BSD-2-Clause AND BSD-3-Clause AND CC-PDDC AND GPL-1.0-or-later AND GPL-3.0-only AND GPL-3.0-or-later AND LicenseRef-scancode-free-unknown AND LicenseRef-scancode-other-copyleft AND LicenseRef-scancode-public-domain
1
GPL-2.0-only AND CC-BY-4.0 AND CC-BY-SA-4.0
1
MIT AND Python-2.0 AND Python-2.0.1 AND BSD-2-Clause AND MIT AND Python-2.0 AND Python-2.0.1 AND BSD-2-Clause
1
CVE Severity
critical
0
high
1
medium
0
low
0
unknown
0