View dependencies
Last updated
Last updated
More information
Snyk privacy policy© 2024 Snyk Limited | All product and company names and logos are trademarks of their respective owners.
The Dependencies tab acts as a Bill Of Materials (BOM) for all dependencies in all Projects in the selected Organization. This allows you to quickly and easily identify which Projects have a specific version of a dependency.
Dependency reports show details about the packages included in your Projects, including their full names, the version of the package currently used, the Projects in which they are used, and a summary of the issues they contain:
Examining the details for each package can help you determine the dependency health of your packages.
Element | Description |
---|---|
Dependencies | The full package names of the dependencies contained in at least one of your Projects. Click the link to view the detailed Package page. For npm only, a warning icon appears next to the package name if a package is deprecated. |
Version | The version of the package used in your Projects. Use this and the Latest Version to see the difference between your current package version and the most recent package version available. |
Latest version and Last publish | The most recent version updated by a maintainer for this package in its repository, and the last time a new version of the package was published by a maintainer. Look at these dates to help you determine the maturity of the package and activity frequency Latest version and Last publish are supported for npm and Maven only. |
Vulnerabilities | Each row shows the icon of the associated severity for the issues, Critical, High, Medium, Low. The vulnerabilities shown in the table are the total number of vulnerable paths associated with that dependency and version across all Snyk Projects. For example, if there is a dependency with one critical vulnerability in two Snyk Projects, but in one of those Projects the dependency (vulnerability) is brought in on two paths, Snyk shows three critical vulnerabilities associated with the dependency on the Dependencies tab. |
License | The license or licenses used by this package. These can be: Known license name: Snyk identified the package and its associated license type, and this information is shown in the list. Unknown: Snyk identified the package but could not identify its associated license type. Blank: Snyk could not identify the package and therefore has no license or other information for the package. |
Copyrights (unitl January 8, 2024) | For npm, PyPI, and Maven, copyright information for the license. |
Projects | The Projects in which this package is used by your Organization. |
Dependencies with issues | A link to the dependencies in the package that have issues, with details about those issues. |
The actions appear at the top of the tab.
Search for Dependencies: Start typing to search for a package. To view the results for multiple packages, select them from the dropdown list that opens when you click the field. You can also click the Select All or Deselect All links that appear dynamically in the dropdown list.
Dependency filters: Select specific Project types and dependency health status to mark the packages to be displayed. Only issues matching all selected criteria are displayed.
When you select Deprecated, only packages marked as deprecated are displayed.
Hidden fields: Remove any of the default columns from the display to focus on details that are important to your current tasks.
Export as CSV: Export issue data in CSV file format.