Dependency Analysis
speakr
Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.
68%
Freshness
48
Dependencies
8
Outdated
0
Stale
8.3
Avg Behind
Dependency List
Latest release v0.8.19-alpha
| Dependency | Type | Current | Latest | Behind | CVE | License |
|---|---|---|---|---|---|---|
|
gunicorn
pypi
|
Direct | 21.2.0 | 26.0.0 | 13 behind | 2 high | MIT |
|
werkzeug
pypi
|
Direct | 2.3.7 | — | — | 7 high | BSD-2-Clause AND BSD-3-Clause |
|
markdown
pypi
|
Direct | 3.5.1 | 3.10.2 | 10 behind | 1 medium | BSD-2-Clause |
|
python-dotenv
pypi
|
Direct | 1.0.0 | 1.2.2 | 6 behind | 1 medium | BSD-3-Clause |
|
scikit-learn
pypi
|
Direct | 1.3.0 | — | — | 1 medium | BSD-3-Clause AND LicenseRef-scancode-unknown-license-reference |
|
flask
pypi
|
Direct | 2.3.3 | 3.1.3 | 8 behind | 1 low | BSD-2-Clause AND BSD-3-Clause |
|
numpy
pypi
|
Direct | 1.24.3 | 2.4.6 | 37 behind | — | BSD-2-Clause |
|
sentence-transformers
pypi
|
Direct | 2.7.0 | 5.5.1 | 27 behind | — | Apache-2.0 |
|
babel
pypi
|
Direct | 2.12.1 | 2.18.0 | 7 behind | — | BSD-2-Clause AND BSD-3-Clause |
|
bleach
pypi
|
Direct | 6.1.0 | 6.3.0 | 2 behind | — | Apache-2.0 |
|
email-validator
pypi
|
Direct | 2.2.0 | 2.3.0 | 1 behind | — | Unlicense |
|
flask-wtf
pypi
|
Direct | 1.2.2 | 1.3.0 | 1 behind | — | BSD-3-Clause AND MIT |
|
actions/checkout
githubactions
|
Direct | 5.*.* | — | — | — | Unknown |
|
actions/deploy-pages
githubactions
|
Direct | 5.*.* | — | — | — | Unknown |
|
actions/github-script
githubactions
|
Direct | 8.*.* | — | — | — | Unknown |
|
actions/setup-python
githubactions
|
Direct | 6.*.* | — | — | — | Unknown |
|
actions/upload-pages-artifact
githubactions
|
Direct | 5.*.* | — | — | — | Unknown |
|
authlib
|
Direct | >= 1.3.0 | — | — | — | Unknown |
|
cairosvg
|
Direct | >= 2.7.1 | — | — | — | Unknown |
|
docker/build-push-action
githubactions
|
Direct | 6.*.* | — | — | — | Unknown |
|
docker/login-action
githubactions
|
Direct | 3.*.* | — | — | — | Unknown |
|
docker/metadata-action
githubactions
|
Direct | 5.*.* | — | — | — | Unknown |
|
docker/setup-buildx-action
githubactions
|
Direct | 3.*.* | — | — | — | Unknown |
|
docker/setup-qemu-action
githubactions
|
Direct | 3.*.* | — | — | — | Unknown |
|
flask-bcrypt
pypi
|
Direct | 1.0.1 | 1.0.1 | Current | — | BSD-2-Clause AND BSD-3-Clause |
|
flask-limiter
pypi
|
Direct | 3.5.0 | — | — | — | MIT |
|
flask-login
pypi
|
Direct | 0.6.3 | 0.6.3 | Current | — | MIT |
|
flask-openapi3
|
Direct | >= 3.0.0 | — | — | — | Unknown |
|
flask-sqlalchemy
pypi
|
Direct | 3.1.1 | 3.1.1 | Current | — | BSD-2-Clause AND BSD-3-Clause |
|
huggingface-hub
|
Direct | >= 0.19.0 | — | — | — | Unknown |
|
itsdangerous
|
Direct | >= 2.1.0 | — | — | — | Unknown |
|
mkdocs
|
Direct | >= 1.5.3 | — | — | — | Unknown |
|
mkdocs-git-revision-date-localized-plugin
|
Direct | >= 1.2.2 | — | — | — | Unknown |
|
mkdocs-material
|
Direct | >= 9.5.0 | — | — | — | Unknown |
|
mkdocs-material-extensions
|
Direct | >= 1.3 | — | — | — | Unknown |
|
mkdocs-minify-plugin
|
Direct | >= 0.7.2 | — | — | — | Unknown |
|
openai
|
Direct | >= 2.2.0 | — | — | — | Unknown |
|
pillow
|
Direct | >= 10.1.0 | — | — | — | Unknown |
|
psycopg2-binary
|
Direct | >= 2.9.0 | — | — | — | Unknown |
|
pydantic
|
Direct | >= 2.0.0 | — | — | — | Unknown |
|
pygments
|
Direct | >= 2.17.0 | — | — | — | Unknown |
|
pymdown-extensions
|
Direct | >= 10.5 | — | — | — | Unknown |
|
python-docx
pypi
|
Direct | 1.1.0 | — | — | — | MIT |
|
pytz
pypi
|
Direct | 2024.1 | 2026.2.0 | — | — | MIT |
|
pywebpush
pypi
|
Direct | 1.14.0 | — | — | — | MPL-2.0 |
|
scipy
|
Direct | < 1.15 | — | — | — | Unknown |
|
vitest
npm
|
Direct | ^2.1.0 | — | — | — | Unknown |
License Breakdown
Unknown
28
BSD-2-Clause AND BSD-3-Clause
5
MIT
5
Apache-2.0
2
BSD-2-Clause
2
BSD-3-Clause
1
BSD-3-Clause AND LicenseRef-scancode-unknown-license-reference
1
BSD-3-Clause AND MIT
1
MPL-2.0
1
Unlicense
1
CVE Severity
critical
0
high
2
medium
3
low
1
unknown
0