Glue SBOM inspector
Updated version from Previous version
My repo with complete rewrite can be found here https://github.com/jverhoeks/glue-inspector/
Package | 2.0 | 2.0 vuln | 3.0 | 3.0 vuln | 4.0 | 4.0 vuln | 5.0 | 5.0 vuln | shell 3.6 | shell 3.6 vuln | shell 3.9 | shell 3.9 vuln | shell 3.9 analytics | shell 3.9 analytics vuln |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Cython | 0.29.15 | 0.29.4 | 0.29.32 | |||||||||||
Pillow | 9.4.0 | HIGH GHSA-56pw-mpj4-fxww | 9.4.0 | HIGH GHSA-56pw-mpj4-fxww | ||||||||||
PyGreSQL | 5.0.6 | |||||||||||||
PyMySQL | 0.9.3 | CRITICAL CVE-2024-36039 | 1.0.2 | CRITICAL CVE-2024-36039 | 1.0.2 | CRITICAL CVE-2024-36039 | 1.0.2 | CRITICAL CVE-2024-36039 | ||||||
PySocks | 1.7.1 | |||||||||||||
PyYAML | 5.3.1 | CRITICAL CVE-2020-14343 | 5.4.1 | 6.0.1 | ||||||||||
Pygments | 2.7.4 | MEDIUM CVE-2022-40896 | ||||||||||||
SQLAlchemy | 1.4.36 | |||||||||||||
Spark | 1.0 | 1.0 | ||||||||||||
aiobotocore | 1.4.2 | 2.4.1 | 2.13.1 | |||||||||||
aiohappyeyeballs | 2.3.5 | |||||||||||||
aiohttp | 3.8.3 | MEDIUM GHSA-pjjw-qhg8-p2p9 | 3.8.3 | MEDIUM GHSA-pjjw-qhg8-p2p9 | 3.10.1 | MEDIUM CVE-2024-52304 | ||||||||
aioitertools | 0.11.0 | 0.11.0 | 0.11.0 | |||||||||||
aiosignal | 1.3.1 | 1.3.1 | 1.3.1 | |||||||||||
appdirs | 1.4.4 | |||||||||||||
async-timeout | 4.0.2 | 4.0.2 | 4.0.3 | |||||||||||
asynctest | 0.13.0 | 0.13.0 | ||||||||||||
attrs | 22.2.0 | 22.2.0 | 24.2.0 | |||||||||||
avro | 1.11.0 | HIGH CVE-2023-39410 | ||||||||||||
avro-python3 | 1.10.0 | 1.10.2 | 1.10.2 | |||||||||||
awscli | 1.27.60 | 116.242 | 1.23.5 | 1.23.5 | ||||||||||
awscrt | 0.19.19 | |||||||||||||
awswrangler | 2.15.1 | |||||||||||||
boto3 | 1.12.4 | 1.18.50 | 1.24.70 | 1.34.131 | 1.9.203 | 1.21.21 | ||||||||
botocore | 1.15.4 | 1.21.50 | 1.27.59 | 1.34.131 | 1.12.232 | 1.23.5 | 1.24.21 | |||||||
certifi | 2019.11.28 | MEDIUM CVE-2022-23491 | 2021.5.30 | LOW CVE-2024-39689 | 2021.5.30 | LOW CVE-2024-39689 | 2024.7.4 | |||||||
cffi | 1.14.5 | |||||||||||||
chardet | 3.0.4 | 3.0.4 | 3.0.4 | |||||||||||
charset-normalizer | 2.1.1 | 2.1.1 | 3.3.2 | |||||||||||
click | 8.1.3 | 8.1.3 | 8.1.3 | |||||||||||
colorama | 0.4.4 | 0.4.4 | ||||||||||||
contourpy | 1.2.1 | |||||||||||||
cryptography | 36.0.1 | LOW GHSA-v8gr-m533-ghj9 | ||||||||||||
cycler | 0.10.0 | 0.10.0 | 0.10.0 | 0.12.1 | ||||||||||
distlib | 0.3.1 | |||||||||||||
distro | 1.5.0 | |||||||||||||
docutils | 0.15.2 | 0.17.1 | 0.17.1 | 0.16 | ||||||||||
elasticsearch | 8.2.0 | |||||||||||||
enum34 | 1.1.9 | 1.1.10 | 1.1.10 | |||||||||||
filelock | 3.0.12 | |||||||||||||
fonttools | 4.53.1 | |||||||||||||
frozenlist | 1.3.3 | 1.3.3 | 1.4.1 | |||||||||||
fsspec | 0.6.2 | 2021.8.1 | 2021.8.1 | 2024.6.1 | ||||||||||
gpg | 1.15.1 | |||||||||||||
idna | 2.9 | MEDIUM CVE-2024-3651 | 2.10 | MEDIUM CVE-2024-3651 | 2.10 | MEDIUM CVE-2024-3651 | 2.10 | MEDIUM CVE-2024-3651 | ||||||
importlib-metadata | 6.0.0 | 6.0.0 | 5.0.0 | |||||||||||
importlib_resources | 6.4.0 | |||||||||||||
jmespath | 0.9.4 | 0.10.0 | 0.10.0 | 0.10.0 | ||||||||||
joblib | 0.14.1 | CRITICAL CVE-2022-21797 | 1.0.1 | CRITICAL CVE-2022-21797 | 1.0.1 | CRITICAL CVE-2022-21797 | ||||||||
kaleido | 0.2.1 | 0.2.1 | ||||||||||||
kiwisolver | 1.1.0 | 1.3.2 | 1.4.4 | 1.4.5 | ||||||||||
libcomps | 0.1.20 | |||||||||||||
matplotlib | 3.1.3 | 3.4.3 | 3.4.3 | 3.9.0 | ||||||||||
mpmath | 1.1.0 | HIGH CVE-2021-29063 | 1.2.1 | HIGH CVE-2021-29063 | 1.2.1 | HIGH CVE-2021-29063 | ||||||||
multidict | 6.0.4 | 6.0.4 | 6.0.5 | |||||||||||
nltk | 3.5 | HIGH CVE-2024-39705 | 3.6.3 | HIGH CVE-2024-39705 | 3.7 | HIGH CVE-2024-39705 | ||||||||
numpy | 1.18.1 | MEDIUM CVE-2021-41496 | 1.19.5 | MEDIUM CVE-2021-34141 | 1.23.5 | 1.26.4 | 1.16.2 | MEDIUM CVE-2021-41496 | 1.22.3 | |||||
packaging | 23.0 | 23.0 | 24.1 | |||||||||||
pandas | 1.0.1 | 1.3.2 | 1.5.1 | 2.2.2 | 0.24.2 | 1.4.2 | ||||||||
patsy | 0.5.1 | 0.5.1 | 0.5.1 | |||||||||||
pillow | 10.4.0 | |||||||||||||
pip | 23.0 | MEDIUM CVE-2023-5752 | 23.0.1 | MEDIUM CVE-2023-5752 | 22.3.1 | MEDIUM CVE-2023-5752 | ||||||||
plotly | 5.16.0 | 5.23.0 | ||||||||||||
ply | 3.11 | |||||||||||||
pmdarima | 1.5.3 | 1.8.2 | 2.0.1 | |||||||||||
prompt-toolkit | 3.0.24 | |||||||||||||
psycopg2 | 2.9.3 | |||||||||||||
ptvsd | 4.3.2 | 4.3.2 | 4.3.2 | |||||||||||
pyarrow | 0.16.0 | CRITICAL CVE-2023-47248 | 5.0.0 | CRITICAL CVE-2023-47248 | 10.0.0 | CRITICAL CVE-2023-47248 | 17.0.0 | |||||||
pyasn1 | 0.4.8 | |||||||||||||
pyathena | 2.5.3 | |||||||||||||
pycparser | 2.20 | |||||||||||||
pydevd | 1.9.0 | 2.5.0 | 2.5.0 | |||||||||||
pyhocon | 0.3.54 | 0.3.58 | 0.3.58 | |||||||||||
pyodbc | 4.0.32 | |||||||||||||
pyorc | 0.6.0 | |||||||||||||
pyparsing | 2.4.6 | 2.4.7 | 2.4.7 | 3.1.2 | ||||||||||
python-dateutil | 2.8.1 | 2.8.2 | 2.8.2 | 2.9.0.post0 | ||||||||||
pytz | 2019.3 | 2021.1 | 2021.1 | 2024.1 | ||||||||||
redshift-connector | 2.0.907 | |||||||||||||
regex | 2022.10.31 | 2022.10.31 | 2022.10.31 | |||||||||||
requests | 2.23.0 | MEDIUM CVE-2024-35195 | 2.23.0 | MEDIUM CVE-2024-35195 | 2.23.0 | MEDIUM CVE-2024-35195 | 2.32.2 | 2.22.0 | MEDIUM CVE-2024-35195 | 2.27.1 | MEDIUM CVE-2024-35195 | |||
rpm | 4.16.1.3 | |||||||||||||
rsa | 4.7.2 | |||||||||||||
ruamel.yaml | 0.16.6 | |||||||||||||
ruamel.yaml.clib | 0.1.2 | |||||||||||||
s3fs | 0.4.0 | 2021.8.1 | 2022.11.0 | 2024.6.1 | 2022.3.0 | |||||||||
s3transfer | 0.3.3 | 0.5.0 | 0.6.0 | 0.10.2 | ||||||||||
scikit-learn | 0.22.1 | MEDIUM CVE-2024-5206 | 0.24.2 | MEDIUM CVE-2024-5206 | 1.1.3 | MEDIUM CVE-2024-5206 | 0.20.3 | MEDIUM CVE-2024-5206 | 1.0.2 | MEDIUM CVE-2024-5206 | ||||
scipy | 1.4.1 | 1.7.1 | 1.9.3 | 1.2.1 | 1.8.0 | |||||||||
seaborn | 0.13.2 | |||||||||||||
setuptools | 45.2.0 | HIGH CVE-2024-6345 | 49.1.3 | HIGH CVE-2024-6345 | 59.6.0 | HIGH CVE-2024-6345 | ||||||||
six | 1.14.0 | 1.16.0 | 1.16.0 | 1.16.0 | ||||||||||
statsmodels | 0.11.1 | 0.12.2 | 0.13.5 | |||||||||||
subprocess32 | 3.5.4 | 3.5.4 | 3.5.4 | |||||||||||
sympy | 1.5.1 | 1.8 | 1.8 | |||||||||||
tbats | 1.0.9 | 1.1.0 | 1.1.0 | |||||||||||
tenacity | 9.0.0 | |||||||||||||
threadpoolctl | 3.1.0 | 3.1.0 | ||||||||||||
tqdm | 4.64.1 | LOW CVE-2024-34062 | 4.64.1 | LOW CVE-2024-34062 | 4.64.1 | LOW CVE-2024-34062 | ||||||||
typing-extensions | 4.4.0 | |||||||||||||
typing_extensions | 4.4.0 | 4.4.0 | 4.12.2 | |||||||||||
tzdata | 2024.1 | |||||||||||||
urllib3 | 1.25.8 | MEDIUM CVE-2024-37891 | 1.25.11 | MEDIUM CVE-2024-37891 | 1.25.11 | MEDIUM CVE-2024-37891 | 1.25.10 | MEDIUM CVE-2024-37891 | ||||||
virtualenv | 20.4.0 | |||||||||||||
wcwidth | 0.2.5 | |||||||||||||
wheel | 0.35.1 | HIGH CVE-2022-40898 | 0.37.0 | HIGH CVE-2022-40898 | 0.37.0 | HIGH CVE-2022-40898 | ||||||||
wrapt | 1.14.1 | 1.14.1 | 1.16.0 | |||||||||||
yarl | 1.8.2 | 1.8.2 | 1.9.4 | |||||||||||
zipp | 3.12.0 | MEDIUM CVE-2024-5569 | 3.12.0 | MEDIUM CVE-2024-5569 | 3.10.0 | MEDIUM CVE-2024-5569 | 3.19.2 |