Dependency Analysis
tidb
Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.
98%
Freshness
415
Dependencies
5
Outdated
0
Stale
10.3
Avg Behind
Dependency List
Latest release v8.5.6
| Dependency | Type | Current | Latest | Behind | CVE | License |
|---|---|---|---|---|---|---|
|
github.com/juju/errors
golang
|
Direct | 0.0.0-20200330140219-3fe23663418f | — | — | — | LGPL-3.0-only AND LGPL-3.0-or-later WITH LGPL-3.0-linking-exception |
|
github.com/juju/testing
golang
|
Direct | 0.0.0-20210302031854-2c7ee8570c07 | — | — | — | LGPL-3.0-only AND LGPL-3.0-or-later WITH LGPL-3.0-linking-exception |
License Breakdown
Apache-2.0
152
MIT
130
BSD-3-Clause
52
Unknown
23
BSD-3-Clause AND LicenseRef-scancode-google-patent-license-golang
14
BSD-2-Clause
11
MPL-2.0
8
BSD-2-Clause AND BSD-3-Clause
4
LicenseRef-scancode-generic-cla AND MIT
4
ISC
3
Apache-2.0 AND BSD-3-Clause
2
Apache-2.0 AND BSD-3-Clause AND MIT
2
BSD-3-Clause AND MIT
2
LGPL-3.0-only AND LGPL-3.0-or-later WITH LGPL-3.0-linking-exception
2
BSD-2-Clause AND ISC
1
BSD-3-Clause AND CC-BY-3.0
1
CC0-1.0 AND MIT
1
MPL-1.1 AND MPL-2.0
1
Unlicense
1
CVE Severity
critical
2
high
6
medium
2
low
1
unknown
2