usertour

Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.

Security Export CSV

63% Freshness

3460 Dependencies

1117 Outdated

0 Stale

35.1 Avg Behind

Dependency List

Latest release v0.7.1

All 3459 Outdated 1365 Has CVE 61 GPL 2

Dependency	Type	Current	Latest	Behind	CVE	License
@opentelemetry/api npm	Transitive	1.9.0	1.9.1	1 behind	—	Apache-2.0 OR (Apache-2.0 AND LGPL-3.0-only)
@usertour/license npm	Direct	0.0.3	—	—	—	AGPL-3.0

License Breakdown

MIT 1840

Unknown 979

Apache-2.0 291

ISC 158

BSD-3-Clause 49

BSD-2-Clause 40

Apache-2.0 AND MIT 14

CC0-1.0 AND MIT 11

MPL-2.0 11

Apache-2.0 OR MIT OR (Apache-2.0 AND MIT) 8

BlueOak-1.0.0 6

CC0-1.0 5

ISC AND MIT 5

0BSD 4

LicenseRef-scancode-public-domain AND Unlicense 4

Unlicense 4

CC-BY-4.0 AND MIT 3

MIT OR (CC0-1.0 AND MIT) 3

Apache-2.0 AND BSD-3-Clause 2

BSD-2-Clause AND BSD-3-Clause 2

CC-BY-3.0 AND MIT 2

CC-BY-SA-4.0 AND ISC 2

LicenseRef-scancode-unicode AND MIT 2

0BSD AND MIT 1

AGPL-3.0 1

Apache-2.0 AND BSD-2-Clause 1

Apache-2.0 AND BSD-2-Clause AND CC0-1.0 AND ISC AND MIT 1

Apache-2.0 AND BSD-3-Clause AND MIT 1

Apache-2.0 OR (Apache-2.0 AND LGPL-3.0-only) 1

BSD-2-Clause AND BSD-2-Clause-Views 1

BSD-3-Clause AND LicenseRef-scancode-protobuf 1

BSD-3-Clause AND MIT 1

CC-BY-3.0 1

CC-BY-4.0 1

MIT AND MIT-0 1

MIT-0 1

Python-2.0 1

CVE Severity

critical 3

high 25

medium 24

low 9

unknown 0