{"id":20227792,"url":"https://github.com/niesfisch/dependency_report","last_synced_at":"2026-04-15T10:31:43.885Z","repository":{"id":138399007,"uuid":"359393645","full_name":"niesfisch/dependency_report","owner":"niesfisch","description":"Generate HTML report of projects dependencies (terraform, maven, gradle)","archived":false,"fork":false,"pushed_at":"2021-04-19T11:51:38.000Z","size":111,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-01-13T23:41:36.981Z","etag":null,"topics":["dependencies","devops","gradle","management","maven","python","report","terraform"],"latest_commit_sha":null,"homepage":"","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/niesfisch.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-04-19T09:01:10.000Z","updated_at":"2021-04-19T13:04:25.000Z","dependencies_parsed_at":"2023-03-19T18:36:15.411Z","dependency_job_id":null,"html_url":"https://github.com/niesfisch/dependency_report","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/niesfisch%2Fdependency_report","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/niesfisch%2Fdependency_report/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/niesfisch%2Fdependency_report/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/niesfisch%2Fdependency_report/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/niesfisch","download_url":"https://codeload.github.com/niesfisch/dependency_report/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":241670153,"owners_count":20000327,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["dependencies","devops","gradle","management","maven","python","report","terraform"],"created_at":"2024-11-14T07:26:43.134Z","updated_at":"2026-04-15T10:31:38.842Z","avatar_url":"https://github.com/niesfisch.png","language":"Shell","funding_links":[],"categories":[],"sub_categories":[],"readme":"# What\n\nThis tool is a _very_ naive approach to analyzing a projects dependencies. It uses native tools like maven, gradle, terraform and some shell tricks to do the job (instead of real parsers).\nIn order for the tool to be runnable you need to execute it on a machine that has the necessary tools installed (if your project is using the tools).\nAt the moment to following dependency types are supported: \n\n- maven\n- gradle \n- terraform\n\nWhat you'll need to run the report (installed on the machine where the report is generated.\nThis could also be a github action runner in a pipeline which should have all the tools needed.\n\n- *nix system\n- maven (if it's maven project)\n- gradle (if it's gradle project)\n- terraform (if your project is using terraform)\n- a personal github access token to clone the repositories (which are potentially in private org repos)\n  - see [config sample](./.dependency_report_sample) for details\n- python \u003e 3.8 (for the report generation)\n\nThe result will be a single page HTML report that looks like this:\n\n![Report](./doc/report.png)\n\nor matching the [config sample](./.dependency_report_sample)\n\n![Report](./doc/report2.png)\n\nDo yourself a favour and use something like [Dependabot](https://github.com/dependabot) :)\n\n# How / Setup\n\n```\n# 1. clone repo\n$ git clone dependency_report\n$ cd dependency_report\n\n# 2. copy sample config and change values yourself\n$ cp .dependency_report_sample ~/.dependency_report\n\n# 3. generate report\nmake report\n\n# 4. check the generated report\n```\n\n# Process\n\nThe Tool runs in two steps:\n\n1. Generate intermediate csv report for each dependency type\n2. Generate single HTML report page\n\n```\n# beware: directories depend on your config!\n$ cd dependency_report\n$ ~/dependency_report: ls -al\ndrwxrwxr-x   4 user user 4096 Apr 14 11:29 .\ndrwxr-xr-x 106 user user 4096 Apr 14 11:29 ..\ndrwxrwxr-x   2 user user 4096 Apr 14 11:22 report  \u003c- html report\ndrwxrwxr-x   2 user user 4096 Apr 14 11:22 results \u003c- intermediate csv\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fniesfisch%2Fdependency_report","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fniesfisch%2Fdependency_report","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fniesfisch%2Fdependency_report/lists"}