基础信息
项目名称:jmorganca/ollama
项目徽章:
仓库地址:https://github.com/pterodactyl/panel
检测报告地址:https://www.murphysec.com/console/report/1721129106082435072/1722649803122905088
此报告由Murphysec提供
漏洞列表
| 漏洞名称 | 漏洞类型 | MPS编号 | CVE编号 | 漏洞等级 |
|---|---|---|---|---|
| NumPy 代码问题漏洞 | 空指针取消引用 | MPS-2021-32278 | CVE-2021-41495 | 中危 |
| Google TensorFlow 目录穿越漏洞 | 路径遍历 | MPS-2021-9211 | CVE-2021-35958 | 严重 |
| mpmath 存在ReDoS漏洞 | ReDoS | MPS-2022-14993 | 中危 | |
| LangChain 安全漏洞 | SSRF | MPS-3lbr-e46h | CVE-2023-46229 | 高危 |
| urllib3 安全漏洞 | MPS-46py-nxai | CVE-2023-45803 | 中危 | |
| PyPI仓库charset-normalizer组件包内嵌恶意代码 | 内嵌恶意代码 | MPS-67h0-j1fr | 高危 | |
| LangChain 代码注入漏洞 | 代码注入 | MPS-7jdv-a49n | CVE-2023-36281 | 严重 |
| Langchain 安全漏洞 | 注入 | MPS-a49n-xm37 | CVE-2023-32786 | 高危 |
| NPM包debounce-fn内嵌恶意代码 | 内嵌恶意代码 | MPS-eohb-3rmu | 高危 | |
| Requests Proxy-Authorization 标头泄露漏洞 | 未授权敏感信息泄露 | MPS-hr61-tzey | CVE-2023-32681 | 中危 |
| NPM包tslib内嵌恶意代码 | 内嵌恶意代码 | MPS-j72n-38lk | 高危 | |
| urllib3 HTTP重定向信息泄露漏洞 | 未授权敏感信息泄露 | MPS-s0oy-afbw | CVE-2023-43804 | 高危 |
| langchain注入漏洞 | 注入 | MPS-x9qb-uct8 | CVE-2023-39659 | 严重 |
| LangChain 安全漏洞 | 代码注入 | MPS-ze2c-1nou | CVE-2023-39631 | 严重 |
缺陷组件
| 组件名称 | 版本 | 最小修复版本 | 依赖关系 | 修复建议 |
|---|---|---|---|---|
| tslib | 2.5.3 | 间接依赖 | 强烈建议修复 | |
| charset-normalizer | 3.2.0 | 间接依赖 | 强烈建议修复 | |
| debounce-fn | 4.0.0 | 间接依赖 | 强烈建议修复 | |
| langchain | 0.0.274 | 间接依赖 | 建议修复 | |
| langchain | 0.0.259 | 间接依赖 | 建议修复 | |
| langchain | 0.0.261 | 间接依赖 | 建议修复 | |
| requests | 2.27.1 | 2.31.0 | 间接依赖 | 建议修复 |
| tensorflow | 2.13.0 | 间接依赖 | 建议修复 | |
| urllib3 | 2.0.4 | 2.0.7 | 间接依赖 | 建议修复 |
| urllib3 | 1.26.16 | 1.26.18 | 间接依赖 | 建议修复 |
| numpy | 1.24.3 | 间接依赖 | 可选修复 | |
| mpmath | 1.3.0 | 间接依赖 | 可选修复 |
许可证风险
| 许可证类型 | 相关组件 | 许可证风险 |
|---|---|---|
| CC0-1.0 | 1 | 低 |
| Apache-2.0 | 35 | 低 |
| MIT | 176 | 低 |
| BSD-3-Clause | 29 | 低 |
| ISC | 9 | 低 |
| BSD-2-Clause | 7 | 低 |
| 自定义许可证 | 19 | 低 |
| Apache-2.0 OR MIT | 1 | 低 |
| 0BSD | 1 | 低 |
| HPND | 1 | 低 |
| Apache-2.0 OR BSD-3-Clause | 1 | 低 |
| Python-2.0 | 1 | 低 |
| Unlicense | 1 | 低 |
| GPL-3.0-or-later | 1 | 低 |
SBOM清单
| 组件名称 | 组件版本 | 是否直接依赖 | 仓库 |
|---|---|---|---|
| binary-search | 1.3.6 | 间接依赖 | npm |
| google-auth-oauthlib | 1.0.0 | 间接依赖 | pip |
| ml-array-mean | 1.1.6 | 间接依赖 | npm |
| kuler | 2.0.0 | 间接依赖 | npm |
| golang.org/x/text | v0.13.0 | 间接依赖 | go |
| google-pasta | 0.2.0 | 间接依赖 | pip |
| posthog | 3.0.1 | 间接依赖 | pip |
| aiohttp | 3.8.5 | 间接依赖 | pip |
| importlib-resources | 6.0.1 | 间接依赖 | pip |
| digest-fetch | 1.3.0 | 间接依赖 | npm |
| word_tokenize | 间接依赖 | pip | |
| pyasn1 | 0.5.0 | 间接依赖 | pip |
| golang.org/x/sys | v0.13.0 | 间接依赖 | go |
| webidl-conversions | 3.0.1 | 间接依赖 | npm |
| urllib3 | 1.26.16 | 间接依赖 | pip |
| langchain | 0.0.259 | 间接依赖 | pip |
| @anthropic-ai/sdk | 0.6.2 | 间接依赖 | npm |
| js-yaml | 4.1.0 | 间接依赖 | npm |
| electron-squirrel-startup | 1.0.0 | 间接依赖 | npm |
| tensorflow | 2.13.0 | 间接依赖 | pip |
| asynckit | 0.4.0 | 间接依赖 | npm |
| node-fetch | 2.6.11 | 间接依赖 | npm |
| typing_extensions | 4.5.0 | 间接依赖 | pip |
| pulsar-client | 3.2.0 | 间接依赖 | pip |
| web-streams-polyfill | 4.0.0-beta.3 | 间接依赖 | npm |
| sniffio | 1.3.0 | 间接依赖 | pip |
| chroma-hnswlib | 0.7.2 | 间接依赖 | pip |
| requests | 2.31.0 | 间接依赖 | pip |
| h5py | 3.9.0 | 间接依赖 | pip |
| cffi | 1.15.1 | 间接依赖 | pip |
| aiosignal | 1.3.1 | 间接依赖 | pip |
| decamelize | 1.2.0 | 间接依赖 | npm |
| form-data | 4.0.0 | 间接依赖 | npm |
| keras | 2.13.1 | 间接依赖 | pip |
| tslib | 2.5.3 | 间接依赖 | npm |
| PyPika | 0.48.9 | 间接依赖 | pip |
| @types/triple-beam | 1.3.2 | 间接依赖 | npm |
| Werkzeug | 2.3.6 | 间接依赖 | pip |
| wrapt | 1.15.0 | 间接依赖 | pip |
| github.com/gin-contrib/cors | v1.4.0 | 直接依赖 | go |
| @types/uuid | 9.0.5 | 间接依赖 | npm |
| event-target-shim | 5.0.1 | 间接依赖 | npm |
| langchain | 0.0.165 | 间接依赖 | npm |
| github.com/gin-contrib/sse | v0.1.0 | 间接依赖 | go |
| Pillow | 10.0.0 | 间接依赖 | pip |
| python-dotenv | 1.0.0 | 间接依赖 | pip |
| uvicorn | 0.23.2 | 间接依赖 | pip |
| cryptography | 41.0.3 | 间接依赖 | pip |
| github.com/klauspost/cpuid/v2 | v2.2.4 | 间接依赖 | go |
| @lukeed/uuid | 2.0.1 | 间接依赖 | npm |
| github.com/leodido/go-urn | v1.2.4 | 间接依赖 | go |
| MarkupSafe | 2.1.3 | 间接依赖 | pip |
| file-stream-rotator | 0.6.1 | 间接依赖 | npm |
| pycryptodome | 3.18.0 | 间接依赖 | pip |
| packaging | 23.1 | 间接依赖 | pip |
| ml-tree-similarity | 1.0.0 | 间接依赖 | npm |
| env-paths | 2.2.1 | 间接依赖 | npm |
| pdfminer.six | 20221105 | 间接依赖 | pip |
| protobuf | 4.24.0 | 间接依赖 | pip |
| loose-envify | 1.4.0 | 间接依赖 | npm |
| h11 | 0.14.0 | 间接依赖 | pip |
| mimic-fn | 2.1.0 | 间接依赖 | npm |
| pkg-up | 3.1.0 | 间接依赖 | npm |
| flat | 5.0.2 | 间接依赖 | npm |
| golang.org/x/sync | v0.3.0 | 直接依赖 | go |
| oauthlib | 3.2.2 | 间接依赖 | pip |
| topic_urls | 间接依赖 | pip | |
| colorspace | 1.1.4 | 间接依赖 | npm |
| tensorflow-macos | 2.13.0 | 间接依赖 | pip |
| @types/node-fetch | 2.6.6 | 间接依赖 | npm |
| github.com/olekukonko/tablewriter | v0.0.5 | 直接依赖 | go |
| lru-cache | 6.0.0 | 间接依赖 | npm |
| type-fest | 2.19.0 | 间接依赖 | npm |
| sympy | 1.12 | 间接依赖 | pip |
| formdata-node | 4.4.1 | 间接依赖 | npm |
| @segment/analytics-node | 1.0.0 | 间接依赖 | npm |
| google-auth | 2.22.0 | 间接依赖 | pip |
| ms | 2.1.2 | 间接依赖 | npm |
| sentence_transformers | 2.2.2 | 间接依赖 | pip |
| onnxruntime | 1.15.1 | 间接依赖 | pip |
| github.com/emirpasic/gods | v1.18.1 | 直接依赖 | go |
| electron-store | 8.1.0 | 间接依赖 | npm |
| starlette | 0.27.0 | 间接依赖 | pip |
| typing-inspect | 0.9.0 | 间接依赖 | pip |
| p-finally | 1.0.0 | 间接依赖 | npm |
| openapi-schema-pydantic | 1.2.4 | 间接依赖 | pip |
| multidict | 6.0.4 | 间接依赖 | pip |
| llama-cpp-python | 0.1.81 | 间接依赖 | pip |
| p-retry | 4.6.2 | 间接依赖 | npm |
| node-fetch | 2.7.0 | 间接依赖 | npm |
| argparse | 2.0.1 | 间接依赖 | npm |
| logform | 2.5.1 | 间接依赖 | npm |
| fn.name | 1.1.0 | 间接依赖 | npm |
| github.com/go-playground/universal-translator | v0.18.1 | 间接依赖 | go |
| is-obj | 2.0.0 | 间接依赖 | npm |
| base-64 | 0.1.0 | 间接依赖 | npm |
| golang.org/x/exp | v0.0.0-20230817173708-d852ddb80c63 | 直接依赖 | go |
| string_decoder | 1.3.0 | 间接依赖 | npm |
| json-schema-typed | 7.0.3 | 间接依赖 | npm |
| overrides | 7.4.0 | 间接依赖 | pip |
| opt-einsum | 3.3.0 | 间接依赖 | pip |
| feedparser | 6.0.10 | 间接依赖 | pip |
| tensorflow-hub | 0.14.0 | 间接依赖 | pip |
| ieee754 | 1.2.1 | 间接依赖 | npm |
| python-dateutil | 2.8.2 | 间接依赖 | pip |
| rsa | 4.9 | 间接依赖 | pip |
| pandoc | 2.3 | 间接依赖 | pip |
| @lukeed/csprng | 1.1.0 | 间接依赖 | npm |
| humanize-ms | 1.2.1 | 间接依赖 | npm |
| p-timeout | 3.2.0 | 间接依赖 | npm |
| toggle-selection | 1.0.6 | 间接依赖 | npm |
| github.com/mitchellh/colorstring | v0.0.0-20190213212951-d06e56a500db | 直接依赖 | go |
| github.com/go-playground/validator/v10 | v10.14.0 | 间接依赖 | go |
| fecha | 4.2.3 | 间接依赖 | npm |
| github.com/mattn/go-runewidth | v0.0.14 | 直接依赖 | go |
| base64-js | 1.5.1 | 间接依赖 | npm |
| eventemitter3 | 4.0.7 | 间接依赖 | npm |
| delayed-stream | 1.0.0 | 间接依赖 | npm |
| color-string | 1.9.1 | 间接依赖 | npm |
| github.com/google/go-cmp | v0.5.9 | 间接依赖 | go |
| marshmallow | 3.20.1 | 间接依赖 | pip |
| semver | 7.5.3 | 间接依赖 | npm |
| debounce-fn | 4.0.0 | 间接依赖 | npm |
| winston | 3.10.0 | 间接依赖 | npm |
| SQLAlchemy | 2.0.19 | 间接依赖 | pip |
| dataclasses-json | 0.5.14 | 间接依赖 | pip |
| github.com/go-playground/locales | v0.14.1 | 间接依赖 | go |
| frozenlist | 1.4.0 | 间接依赖 | pip |
| pycparser | 2.21 | 间接依赖 | pip |
| dset | 3.1.2 | 间接依赖 | npm |
| mimic-fn | 3.1.0 | 间接依赖 | npm |
| mattsollamatools | 0.0.8 | 间接依赖 | pip |
| beautifulsoup4 | 4.12.2 | 间接依赖 | pip |
| idna | 3.4 | 间接依赖 | pip |
| js-tiktoken | 1.0.7 | 间接依赖 | npm |
| ajv | 8.12.0 | 间接依赖 | npm |
| filetype | 1.2.0 | 间接依赖 | pip |
| node-domexception | 1.0.0 | 间接依赖 | npm |
| ajv-formats | 2.1.1 | 间接依赖 | npm |
| pyasn1-modules | 0.3.0 | 间接依赖 | pip |
| github.com/pbnjay/memory | v0.0.0-20210728143218-7b4eea64cf58 | 直接依赖 | go |
| ml-array-sum | 1.1.6 | 间接依赖 | npm |
| anyio | 3.7.1 | 间接依赖 | pip |
| libclang | 16.0.6 | 间接依赖 | pip |
| github.com/bytedance/sonic | v1.9.1 | 间接依赖 | go |
| click | 8.1.6 | 间接依赖 | pip |
| tensorflow-estimator | 2.13.0 | 间接依赖 | pip |
| tr46 | 0.0.3 | 间接依赖 | npm |
| copy-to-clipboard | 3.3.3 | 间接依赖 | npm |
| ansi-styles | 5.2.0 | 间接依赖 | npm |
| mypy-extensions | 1.0.0 | 间接依赖 | pip |
| termcolor | 2.3.0 | 间接依赖 | pip |
| is-stream | 2.0.1 | 间接依赖 | npm |
| langsmith | 0.0.21 | 间接依赖 | pip |
| tensorboard | 2.13.0 | 间接依赖 | pip |
| github.com/chenzhuoyu/base64x | v0.0.0-20221115062448-fe3a3abad311 | 间接依赖 | go |
| safe-buffer | 5.2.1 | 间接依赖 | npm |
| is-buffer | 1.1.6 | 间接依赖 | npm |
| react-dom | 18.2.0 | 间接依赖 | npm |
| flatbuffers | 23.5.26 | 间接依赖 | pip |
| agentkeepalive | 4.5.0 | 间接依赖 | npm |
| github.com/modern-go/concurrent | v0.0.0-20180306012644-bacd9c7ef1dd | 间接依赖 | go |
| get_url_for_topic | 间接依赖 | pip | |
| moment | 2.29.4 | 间接依赖 | npm |
| simple-swizzle | 0.2.2 | 间接依赖 | npm |
| react | 18.2.0 | 间接依赖 | npm |
| scikit_learn | 1.3.0 | 间接依赖 | pip |
| github.com/twitchyliquid64/golang-asm | v0.15.1 | 间接依赖 | go |
| astunparse | 1.6.3 | 间接依赖 | pip |
| openai | 4.4.0 | 间接依赖 | npm |
| requests-oauthlib | 1.3.1 | 间接依赖 | pip |
| golang.org/x/term | v0.13.0 | 直接依赖 | go |
| monotonic | 1.6 | 间接依赖 | pip |
| absl-py | 1.4.0 | 间接依赖 | pip |
| google.golang.org/protobuf | v1.30.0 | 间接依赖 | go |
| httptools | 0.6.0 | 间接依赖 | pip |
| @heroicons/react | 2.0.18 | 间接依赖 | npm |
| async-timeout | 4.0.3 | 间接依赖 | pip |
| winston-daily-rotate-file | 4.7.1 | 间接依赖 | npm |
| extract-msg | 0.45.0 | 间接依赖 | pip |
| mpmath | 1.3.0 | 间接依赖 | pip |
| uuid | 9.0.1 | 间接依赖 | npm |
| object-hash | 2.2.0 | 间接依赖 | npm |
| is-any-array | 2.0.1 | 间接依赖 | npm |
| lxml | 4.9.3 | 间接依赖 | pip |
| retry | 0.13.1 | 间接依赖 | npm |
| fast-deep-equal | 3.1.3 | 间接依赖 | npm |
| unstructured | 0.10.8 | 间接依赖 | pip |
| grpcio | 1.57.0 | 间接依赖 | pip |
| openapi-types | 12.1.3 | 间接依赖 | npm |
| whatwg-url | 5.0.0 | 间接依赖 | npm |
| Markdown | 3.4.4 | 间接依赖 | pip |
| yarl | 1.9.2 | 间接依赖 | pip |
| soupsieve | 2.4.1 | 间接依赖 | pip |
| requests | 2.27.1 | 间接依赖 | pip |
| @dabh/diagnostics | 2.0.3 | 间接依赖 | npm |
| backoff | 2.2.1 | 间接依赖 | pip |
| buffer | 6.0.3 | 间接依赖 | npm |
| tabulate | 0.9.0 | 间接依赖 | pip |
| crypt | 0.0.2 | 间接依赖 | npm |
| tenacity | 8.2.2 | 间接依赖 | pip |
| conf | 10.2.0 | 间接依赖 | npm |
| uuid | 9.0.0 | 间接依赖 | npm |
| jsonpointer | 5.0.1 | 间接依赖 | npm |
| @electron/remote | 2.0.10 | 间接依赖 | npm |
| gopkg.in/yaml.v3 | v3.0.1 | 间接依赖 | go |
| pydantic | 1.10.12 | 间接依赖 | pip |
| async | 3.2.4 | 间接依赖 | npm |
| inherits | 2.0.4 | 间接依赖 | npm |
| github.com/inconshreveable/mousetrap | v1.1.0 | 间接依赖 | go |
| github.com/spf13/pflag | v1.0.5 | 间接依赖 | go |
| commander | 10.0.1 | 间接依赖 | npm |
| charset-normalizer | 3.2.0 | 间接依赖 | pip |
| six | 1.16.0 | 间接依赖 | pip |
| stack-trace | 0.0.10 | 间接依赖 | npm |
| fastapi | 0.99.1 | 间接依赖 | pip |
| urllib3 | 2.0.4 | 间接依赖 | pip |
| is-arrayish | 0.3.2 | 间接依赖 | npm |
| tokenizers | 0.13.3 | 间接依赖 | pip |
| @types/node | 18.18.4 | 间接依赖 | npm |
| ml-distance | 4.0.1 | 间接依赖 | npm |
| watchfiles | 0.19.0 | 间接依赖 | pip |
| ml-distance-euclidean | 2.0.0 | 间接依赖 | npm |
| sent_tokenize | 间接依赖 | pip | |
| golang.org/x/crypto | v0.14.0 | 直接依赖 | go |
| joblib | 1.3.2 | 间接依赖 | pip |
| tqdm | 4.66.1 | 间接依赖 | pip |
| attrs | 23.1.0 | 间接依赖 | pip |
| zod | 3.22.4 | 间接依赖 | npm |
| certifi | 2023.7.22 | 间接依赖 | pip |
| github.com/spf13/cobra | v1.7.0 | 直接依赖 | go |
| pypandoc | 1.11 | 间接依赖 | pip |
| camelcase | 6.3.0 | 间接依赖 | npm |
| winston-transport | 4.5.0 | 间接依赖 | npm |
| @types/retry | 0.12.0 | 间接依赖 | npm |
| one-time | 1.0.0 | 间接依赖 | npm |
| require-from-string | 2.0.2 | 间接依赖 | npm |
| github.com/json-iterator/go | v1.1.12 | 间接依赖 | go |
| num-sort | 2.1.0 | 间接依赖 | npm |
| bs4 | 0.0.1 | 间接依赖 | pip |
| humanfriendly | 10.0 | 间接依赖 | pip |
| color | 3.2.1 | 间接依赖 | npm |
| yallist | 4.0.0 | 间接依赖 | npm |
| golang.org/x/net | v0.17.0 | 间接依赖 | go |
| mime-db | 1.52.0 | 间接依赖 | npm |
| onetime | 5.1.2 | 间接依赖 | npm |
| md5 | 2.3.0 | 间接依赖 | npm |
| github.com/modern-go/reflect2 | v1.0.2 | 间接依赖 | go |
| abort-controller | 3.0.0 | 间接依赖 | npm |
| websockets | 11.0.3 | 间接依赖 | pip |
| debug | 2.6.9 | 间接依赖 | npm |
| color-convert | 1.9.3 | 间接依赖 | npm |
| unstructured | 0.9.2 | 间接依赖 | pip |
| uri-js | 4.4.1 | 间接依赖 | npm |
| langchain | 0.0.261 | 间接依赖 | pip |
| nltk | 3.8.1 | 间接依赖 | pip |
| PyMuPDF | 1.23.5 | 间接依赖 | pip |
| enabled | 2.0.0 | 间接依赖 | npm |
| @segment/analytics-core | 1.3.0 | 间接依赖 | npm |
| p-queue | 6.6.2 | 间接依赖 | npm |
| langsmith | 0.0.42 | 间接依赖 | npm |
| uvloop | 0.17.0 | 间接依赖 | pip |
| tensorboard-data-server | 0.7.1 | 间接依赖 | pip |
| regex | 2023.8.8 | 间接依赖 | pip |
| triple-beam | 1.4.1 | 间接依赖 | npm |
| pdf2image | 1.16.3 | 间接依赖 | pip |
| github.com/goccy/go-json | v0.10.2 | 间接依赖 | go |
| github.com/gabriel-vasile/mimetype | v1.4.2 | 间接依赖 | go |
| github.com/rivo/uniseg | v0.2.0 | 间接依赖 | go |
| github.com/mattn/go-isatty | v0.0.19 | 间接依赖 | go |
| object-hash | 3.0.0 | 间接依赖 | npm |
| github.com/gin-gonic/gin | v1.9.1 | 直接依赖 | go |
| find-up | 3.0.0 | 间接依赖 | npm |
| safe-stable-stringify | 2.4.3 | 间接依赖 | npm |
| newspaper3k | 0.2.8 | 间接依赖 | pip |
| punycode | 2.3.0 | 间接依赖 | npm |
| cachetools | 5.3.1 | 间接依赖 | pip |
| python-magic | 0.4.27 | 间接依赖 | pip |
| github.com/ugorji/go/codec | v1.2.11 | 间接依赖 | go |
| mime-types | 2.1.35 | 间接依赖 | npm |
| form-data-encoder | 1.7.2 | 间接依赖 | npm |
| yaml | 2.3.2 | 间接依赖 | npm |
| github.com/pelletier/go-toml/v2 | v2.0.8 | 间接依赖 | go |
| zod-to-json-schema | 3.21.4 | 间接依赖 | npm |
| readable-stream | 3.6.2 | 间接依赖 | npm |
| gpt4all | 1.0.8 | 间接依赖 | pip |
| langchain | 0.0.274 | 间接依赖 | pip |
| binary-extensions | 2.2.0 | 间接依赖 | npm |
| langchainhub | 0.0.6 | 间接依赖 | npm |
| expr-eval | 2.0.2 | 间接依赖 | npm |
| charenc | 0.0.2 | 间接依赖 | npm |
| chardet | 5.2.0 | 间接依赖 | pip |
| github.com/dustin/go-humanize | v1.0.1 | 直接依赖 | go |
| ms | 2.1.3 | 间接依赖 | npm |
| numpy | 1.24.3 | 间接依赖 | pip |
| gast | 0.4.0 | 间接依赖 | pip |
| dot-prop | 6.0.1 | 间接依赖 | npm |
| Requests | 2.31.0 | 间接依赖 | pip |
| color-name | 1.1.4 | 间接依赖 | npm |
| PyYAML | 6.0.1 | 间接依赖 | pip |
| coloredlogs | 15.0.1 | 间接依赖 | pip |
| combined-stream | 1.0.8 | 间接依赖 | npm |
| util-deprecate | 1.0.2 | 间接依赖 | npm |
| @colors/colors | 1.5.0 | 间接依赖 | npm |
| Chroma | 0.2.0 | 间接依赖 | pip |
| numexpr | 2.8.5 | 间接依赖 | pip |
| atomically | 1.7.0 | 间接依赖 | npm |
| js-tokens | 4.0.0 | 间接依赖 | npm |
| golang.org/x/arch | v0.3.0 | 间接依赖 | go |
| text-hex | 1.0.0 | 间接依赖 | npm |
| chromadb | 0.4.7 | 间接依赖 | pip |
| scheduler | 0.23.0 | 间接依赖 | npm |
| pdfminer | 20191125 | 间接依赖 | pip |
| chromadb | 0.4.5 | 间接依赖 | pip |