SparkyBudget

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

69% Freshness

20 Dependencies

4 Outdated

0 Stale

3.7 Avg Behind

Dependency List

Latest release v.21

Dependency	Type	Current	Latest	Behind	CVE	License
python-dotenv pypi	Direct	1.1.0	1.2.2	4 behind	1 medium	BSD-3-Clause
flask pypi	Direct	3.1.0	3.1.3	3 behind	1 low	BSD-2-Clause AND BSD-3-Clause
pandas pypi	Direct	2.2.3	3.0.3	11 behind	—	BSD-2-Clause AND BSD-3-Clause
requests pypi	Direct	2.32.3	2.34.2	8 behind	—	Apache-2.0
actions/attest-build-provenance githubactions	Direct	2..	—	—	—	Unknown
actions/checkout githubactions	Direct	4..	—	—	—	Unknown
docker/build-push-action githubactions	Direct	5..	—	—	—	Unknown
docker/login-action githubactions	Direct	3..	—	—	—	Unknown
docker/metadata-action githubactions	Direct	5..	—	—	—	Unknown
docker/setup-buildx-action githubactions	Direct	3..	—	—	—	Unknown
flask	Direct	>= 3.0.2	—	—	—	Unknown
flask-login	Direct	>= 0.6.3	—	—	—	Unknown
flask-login pypi	Direct	0.6.3	0.6.3	Current	—	MIT
gunicorn	Direct	>= 21.2.0	—	—	—	Unknown
gunicorn	Direct	—	—	—	—	Unknown
pandas	Direct	>= 2.2.3	—	—	—	Unknown
requests	Direct	>= 2.31.0	—	—	—	Unknown
schedule	Direct	>= 1.2.1	—	—	—	Unknown
schedule pypi	Direct	1.2.2	1.2.2	Current	—	MIT

Unknown 13

BSD-2-Clause AND BSD-3-Clause 2

MIT 2

Apache-2.0 1

BSD-3-Clause 1

critical 0

high 0

medium 1

low 1

unknown 0