tidb

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

98% Freshness

415 Dependencies

5 Outdated

0 Stale

10.3 Avg Behind

Dependency List

Latest release v8.5.6

Dependency	Type	Current	Latest	Behind	CVE	License
github.com/pingcap/tidb golang	Direct	1.1.0-beta.0.20201020170636-b71b6323fd4d	—	—	2 critical	Apache-2.0
google.golang.org/grpc golang	Direct	v1.75.1	—	—	1 critical	Apache-2.0
github.com/apache/thrift golang	Direct	v0.21.0	—	—	1 high	Apache-2.0 AND BSD-3-Clause
github.com/prometheus/prometheus golang	Direct	v0.50.1	—	—	4 high	Apache-2.0
go.etcd.io/etcd golang	Direct	0.5.0-alpha.5.0.20191023171146-3cf2f69b5738	—	—	11 high	Apache-2.0
go.opentelemetry.io/otel golang	Direct	v1.37.0	—	—	1 high	Apache-2.0
go.opentelemetry.io/otel/sdk golang	Direct	v1.37.0	—	—	2 high	Apache-2.0
google.golang.org/grpc golang	Direct	1.26.0	—	—	2 high	Apache-2.0
github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream golang	Direct	v1.7.0	—	—	1 medium	Apache-2.0
github.com/aws/aws-sdk-go-v2/service/s3 golang	Direct	v1.87.1	—	—	1 medium	Apache-2.0
filippo.io/edwards25519 golang	Direct	v1.1.0	—	—	1 low	BSD-3-Clause
github.com/aws/aws-sdk-go golang	Direct	v1.55.7	—	—	2 unknown	Apache-2.0
golang.org/x/net golang	Direct	v0.52.0	—	—	1 unknown	BSD-3-Clause AND LicenseRef-scancode-google-patent-license-golang

Apache-2.0 152

MIT 130

BSD-3-Clause 52

Unknown 23

BSD-3-Clause AND LicenseRef-scancode-google-patent-license-golang 14

BSD-2-Clause 11

MPL-2.0 8

BSD-2-Clause AND BSD-3-Clause 4

LicenseRef-scancode-generic-cla AND MIT 4

ISC 3

Apache-2.0 AND BSD-3-Clause 2

Apache-2.0 AND BSD-3-Clause AND MIT 2

BSD-3-Clause AND MIT 2

LGPL-3.0-only AND LGPL-3.0-or-later WITH LGPL-3.0-linking-exception 2

BSD-2-Clause AND ISC 1

BSD-3-Clause AND CC-BY-3.0 1

CC0-1.0 AND MIT 1

MPL-1.1 AND MPL-2.0 1

Unlicense 1

critical 2

high 6

medium 2

low 1

unknown 2