Dependency Analysis
swingmusic
Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.
86%
Freshness
124
Dependencies
2
Outdated
0
Stale
0.2
Avg Behind
Dependency List
Latest release v2.1.4
| Dependency | Type | Current | Latest | Behind | CVE | License |
|---|---|---|---|---|---|---|
|
granian
pypi
|
Direct | 2.7.3 | 2.7.5 | 2 behind | 2 high | Unknown |
|
locust
pypi
|
Direct | 2.43.4 | 2.44.1 | 20 behind | — | Unknown |
|
requests
pypi
|
Direct | 2.33.1 | 2.34.2 | 4 behind | — | Apache-2.0 |
|
click
pypi
|
Transitive | 8.3.2 | 8.4.1 | 3 behind | — | BSD-3-Clause |
|
backports-zstd
pypi
|
Transitive | 1.3.0 | 1.5.0 | 2 behind | — | Unknown |
|
certifi
pypi
|
Transitive | 2026.2.25 | 2026.5.20 | 2 behind | — | MPL-2.0 |
|
cryptography
pypi
|
Direct | 46.0.7 | 48.0.0 | 2 behind | — | BSD-3-Clause OR Apache-2.0 |
|
gevent
pypi
|
Transitive | 25.9.1 | 26.5.0 | 2 behind | — | MIT AND Python-2.0 |
|
greenlet
pypi
|
Transitive | 3.4.0 | 3.5.1 | 2 behind | — | Unknown |
|
pydantic-core
pypi
|
Transitive | 2.46.3 | 2.47.0 | 2 behind | — | Unknown |
|
sqlalchemy
pypi
|
Direct | 2.0.49 | 2.0.50 | 2 behind | — | MIT |
|
pydantic
pypi
|
Transitive | 2.13.3 | 2.13.4 | 1 behind | — | MIT |
|
pyjwt
pypi
|
Transitive | 2.12.1 | 2.13.0 | 1 behind | — | MIT |
|
python-engineio
pypi
|
Transitive | 4.13.1 | 4.13.2 | 1 behind | — | Unknown |
|
python-socketio
pypi
|
Transitive | 5.16.1 | 5.16.2 | 1 behind | — | Unknown |
|
urllib3
pypi
|
Transitive | 2.6.3 | 2.7.0 | 1 behind | — | MIT |
|
xxhash
pypi
|
Direct | 3.6.0 | 3.7.0 | 1 behind | — | BSD-2-Clause AND BSD-3-Clause |
|
2-1-4
|
Direct | — | — | — | — | Unknown |
|
altgraph
pypi
|
Transitive | 0.17.5 | — | — | — | MIT AND MIT-0 |
|
annotated-types
pypi
|
Transitive | 0.7.0 | 0.7.0 | Current | — | MIT |
|
asgiref
pypi
|
Direct | 3.11.1 | 3.11.1 | Current | — | BSD-3-Clause |
|
bidict
pypi
|
Transitive | 0.23.1 | 0.23.1 | Current | — | MPL-2.0 |
|
bjoern
|
Direct | — | — | — | — | Unknown |
|
bjoern
|
Direct | >= 3.2.2 | — | — | — | Unknown |
|
blinker
pypi
|
Transitive | 1.9.0 | 1.9.0 | Current | — | MIT |
|
blurhash-python
pypi
|
Direct | 1.2.2 | — | — | — | MIT |
|
blurhash-python
|
Direct | >= 1.2.2 | — | — | — | Unknown |
|
brotli
pypi
|
Transitive | 1.2.0 | 1.2.0 | Current | — | MIT |
|
brotlicffi
pypi
|
Transitive | 1.2.0.1 | 1.2.0.1 | Current | — | Unknown |
|
cffi
pypi
|
Transitive | 2.0.0 | 2.0.0 | Current | — | MIT-0 |
|
charset-normalizer
pypi
|
Transitive | 3.4.7 | 3.4.7 | Current | — | MIT |
|
colorama
pypi
|
Transitive | 0.4.6 | 0.4.6 | Current | — | BSD-2-Clause AND BSD-3-Clause |
|
colorgram-py
pypi
|
Direct | 1.2.0 | — | — | — | MIT |
|
colorgram-py
|
Direct | >= 1.2.0 | — | — | — | Unknown |
|
configargparse
pypi
|
Transitive | 1.7.5 | 1.7.5 | Current | — | Unknown |
|
cryptography
|
Direct | >= 46.0.1 | — | — | — | Unknown |
|
ffmpeg-python
pypi
|
Direct | 0.2.0 | 0.2.0 | Current | — | Apache-2.0 |
|
ffmpeg-python
|
Direct | >= 0.2.0 | — | — | — | Unknown |
|
flask
pypi
|
Direct | 3.1.3 | 3.1.3 | Current | — | BSD-3-Clause |
|
flask
|
Direct | >= 3.1.0 | — | — | — | Unknown |
|
flask-compress
pypi
|
Direct | 1.24 | 1.24.0 | — | — | Unknown |
|
flask-compress
|
Direct | >= 1.13 | — | — | — | Unknown |
|
flask-cors
pypi
|
Direct | 6.0.2 | 6.0.2 | Current | — | MIT |
|
flask-cors
|
Direct | >= 3.0.10 | — | — | — | Unknown |
|
flask-jwt-extended
pypi
|
Direct | 4.7.1 | — | — | — | MIT |
|
flask-jwt-extended
|
Direct | >= 4.6.0 | — | — | — | Unknown |
|
flask-login
pypi
|
Transitive | 0.6.3 | 0.6.3 | Current | — | MIT |
|
flask-openapi3
pypi
|
Direct | 3.0.2 | — | — | — | MIT |
|
future
pypi
|
Transitive | 1.0.0 | 1.0.0 | Current | — | MIT |
|
geventhttpclient
pypi
|
Transitive | 2.3.9 | 2.3.9 | Current | — | Unknown |
|
h11
pypi
|
Transitive | 0.16.0 | 0.16.0 | Current | — | MIT |
|
idna
pypi
|
Transitive | 3.12 | 3.18.0 | — | — | Unknown |
|
iniconfig
pypi
|
Transitive | 2.3.0 | 2.3.0 | Current | — | MIT |
|
itsdangerous
pypi
|
Transitive | 2.2.0 | 2.2.0 | Current | — | BSD-2-Clause AND BSD-3-Clause |
|
jinja2
pypi
|
Transitive | 3.1.6 | 3.1.6 | Current | — | BSD-2-Clause AND BSD-3-Clause |
|
locust
|
Direct | >= 2.20.1 | — | — | — | Unknown |
|
macholib
pypi
|
Transitive | 1.16.4 | — | — | — | MIT |
|
markupsafe
pypi
|
Transitive | 3.0.3 | 3.0.3 | Current | — | BSD-3-Clause |
|
memory-profiler
pypi
|
Direct | 0.61.0 | 0.61.0 | Current | — | BSD-2-Clause AND BSD-3-Clause |
|
memory-profiler
|
Direct | >= 0.61.0 | — | — | — | Unknown |
|
msgpack
pypi
|
Transitive | 1.1.2 | 1.1.2 | Current | — | Apache-2.0 |
|
natsort
pypi
|
Direct | 8.4.0 | 8.4.0 | Current | — | MIT |
|
nuitka
pypi
|
Direct | 4.0.8 | — | — | — | Unknown |
|
packaging
pypi
|
Transitive | 26.1 | 26.2.0 | — | — | Apache-2.0 AND BSD-2-Clause |
|
pefile
pypi
|
Transitive | 2024.8.26 | 2024.8.26 | Current | — | MIT |
|
pendulum
pypi
|
Direct | 3.2.0 | 3.2.0 | Current | — | Unknown |
|
pendulum
|
Direct | >= 3.0.0 | — | — | — | Unknown |
|
pillow
pypi
|
Direct | 12.2.0 | 12.2.0 | Current | — | MIT-CMU |
|
pillow
|
Direct | >= 11.1.0 | — | — | — | Unknown |
|
pluggy
pypi
|
Transitive | 1.6.0 | 1.6.0 | Current | — | MIT |
|
psutil
pypi
|
Direct | 7.2.2 | 7.2.2 | Current | — | BSD-3-Clause |
|
psutil
|
Direct | >= 5.9.4 | — | — | — | Unknown |
|
pycparser
pypi
|
Transitive | 3.0 | 3.0.0 | — | — | BSD-3-Clause |
|
pygments
pypi
|
Transitive | 2.20.0 | 2.20.0 | Current | — | BSD-2-Clause |
|
pyinstaller
pypi
|
Direct | 6.19.0 | — | — | — | Unknown |
|
pyinstaller-hooks-contrib
pypi
|
Transitive | 2026.4 | — | — | — | Unknown |
|
pyobjc-core
pypi
|
Transitive | 12.1 | 12.2.0 | — | — | MIT |
|
pyobjc-framework-cocoa
pypi
|
Transitive | 12.1 | 12.2.0 | — | — | MIT |
|
pyobjc-framework-quartz
pypi
|
Transitive | 12.1 | 12.2.0 | — | — | MIT |
|
pystray
pypi
|
Direct | 0.19.5 | 0.19.5 | Current | — | Unknown |
|
pystray
|
Direct | >= 0.19.5 | — | — | — | Unknown |
|
pytest
pypi
|
Direct | 9.0.3 | 9.0.3 | Current | — | MIT |
|
python-dateutil
pypi
|
Transitive | 2.9.0.post0 | 2.9.0.post0 | Current | — | Apache-2.0 AND BSD-3-Clause AND LicenseRef-scancode-unknown-license-reference |
|
python-xlib
pypi
|
Transitive | 0.33 | 0.33.0 | — | — | GPL-3.0-or-later AND LGPL-2.1-only |
|
pywin32
pypi
|
Transitive | 311 | 311.0.0 | — | — | PSF-2.0 |
|
pywin32-ctypes
pypi
|
Transitive | 0.2.3 | 0.2.3 | Current | — | BSD-3-Clause |
|
pyxdg
pypi
|
Transitive | 0.28 | 0.28.0 | — | — | GPL-3.0-or-later AND LGPL-2.0-only |
|
pyzmq
pypi
|
Transitive | 27.1.0 | 27.1.0 | Current | — | BSD-3-Clause |
|
rapidfuzz
pypi
|
Direct | 3.11.0 | — | — | — | GPL-1.0-or-later AND MIT |
|
requests
|
Direct | >= 2.27.1 | — | — | — | Unknown |
|
schedule
pypi
|
Direct | 1.2.2 | 1.2.2 | Current | — | MIT |
|
schedule
|
Direct | >= 1.2.2 | — | — | — | Unknown |
|
setproctitle
pypi
|
Direct | 1.3.7 | 1.3.7 | Current | — | BSD-3-Clause |
|
setproctitle
|
Direct | >= 1.3.2 | — | — | — | Unknown |
|
setuptools
pypi
|
Direct | 82.0.1 | 82.0.1 | Current | — | MIT |
|
setuptools-scm
|
Direct | — | — | — | — | Unknown |
|
show-in-file-manager
pypi
|
Direct | 1.1.6 | — | — | — | Unknown |
|
show-in-file-manager
|
Direct | >= 1.1.4 | — | — | — | Unknown |
|
simple-websocket
pypi
|
Transitive | 1.1.0 | 1.1.0 | Current | — | MIT |
|
six
pypi
|
Transitive | 1.17.0 | 1.17.0 | Current | — | MIT |
|
sortedcontainers
pypi
|
Direct | 2.4.0 | 2.4.0 | Current | — | Apache-2.0 |
|
sortedcontainers
|
Direct | >= 2.4.0 | — | — | — | Unknown |
|
sqlalchemy
|
Direct | >= 2.0.31 | — | — | — | Unknown |
|
tabulate
pypi
|
Direct | 0.10.0 | 0.10.0 | Current | — | MIT |
|
tabulate
|
Direct | >= 0.9.0 | — | — | — | Unknown |
|
tinytag
pypi
|
Direct | 2.2.1 | 2.2.1 | Current | — | Unknown |
|
tinytag
|
Direct | >= 2.1.1 | — | — | — | Unknown |
|
tqdm
pypi
|
Direct | 4.67.3 | 4.67.3 | Current | — | MIT AND MPL-2.0 |
|
tqdm
|
Direct | >= 4.65.0 | — | — | — | Unknown |
|
typing-extensions
pypi
|
Transitive | 4.15.0 | 4.15.0 | Current | — | Python-2.0 AND GPL-1.0-or-later AND Python-2.0 AND BSD-3-Clause AND Python-2.0 AND BSD-3-Clause AND 0BSD |
|
typing-inspection
pypi
|
Transitive | 0.4.2 | 0.4.2 | Current | — | MIT |
|
tzdata
pypi
|
Transitive | 2026.1 | 2026.2.0 | — | — | Unknown |
|
unidecode
pypi
|
Direct | 1.4.0 | — | — | — | BSD-3-Clause AND GPL-2.0 AND GPL-2.0-only AND GPL-2.0-or-later AND GPL-3.0-only |
|
unidecode
|
Direct | >= 1.3.6 | — | — | — | Unknown |
|
waitress
pypi
|
Direct | 3.0.2 | 3.0.2 | Current | — | ZPL-2.1 |
|
watchdog
pypi
|
Direct | 6.0.0 | 6.0.0 | Current | — | Apache-2.0 AND Python-2.0 |
|
watchdog
|
Direct | >= 4.0.0 | — | — | — | Unknown |
|
websocket-client
pypi
|
Direct | 1.9.0 | 1.9.0 | Current | — | Apache-2.0 |
|
werkzeug
pypi
|
Transitive | 3.1.8 | 3.1.8 | Current | — | BSD-3-Clause |
|
wsproto
pypi
|
Transitive | 1.3.2 | 1.3.2 | Current | — | MIT |
|
xxhash
|
Direct | >= 3.4.1 | — | — | — | Unknown |
|
zope-event
pypi
|
Transitive | 6.1 | 6.2.0 | — | — | Unknown |
|
zope-interface
pypi
|
Transitive | 8.3 | 8.5.0 | — | — | Unknown |
License Breakdown
Unknown
52
MIT
32
BSD-3-Clause
10
Apache-2.0
5
BSD-2-Clause AND BSD-3-Clause
5
MPL-2.0
2
Apache-2.0 AND BSD-2-Clause
1
Apache-2.0 AND BSD-3-Clause AND LicenseRef-scancode-unknown-license-reference
1
Apache-2.0 AND Python-2.0
1
BSD-2-Clause
1
BSD-3-Clause AND GPL-2.0 AND GPL-2.0-only AND GPL-2.0-or-later AND GPL-3.0-only
1
BSD-3-Clause OR Apache-2.0
1
GPL-1.0-or-later AND MIT
1
GPL-3.0-or-later AND LGPL-2.0-only
1
GPL-3.0-or-later AND LGPL-2.1-only
1
MIT AND MIT-0
1
MIT AND MPL-2.0
1
MIT AND Python-2.0
1
MIT-0
1
MIT-CMU
1
PSF-2.0
1
Python-2.0 AND GPL-1.0-or-later AND Python-2.0 AND BSD-3-Clause AND Python-2.0 AND BSD-3-Clause AND 0BSD
1
ZPL-2.1
1
CVE Severity
critical
0
high
1
medium
0
low
0
unknown
0