← Back to the AI Dependency AtlasExact repository supply-chain dossier

RAG

f13/microservices/rag
pypi

This dossier retains 3 exact component occurrences from 2 published evidence files at one immutable repository commit.

opencode:5710bc4c6f3f1125project ID + commit SHA + exact evidence path

Published dependency evidence does not prove deployment, productive use, procurement or runtime reachability.

project ID + commit SHA + exact evidence path
3exact component occurrences
2package identities
2evidence files
0OSV records returned
Exact published evidence

Files that resolve this repository’s dependencies

Every file remains tied to the observed commit. A parse error stays visible and never becomes a zero.

Evidence pathrequirements-dev.txt
Format
exact-manifest-pin
Parser state
parsed
Resolved components
2
Open exact source ↗
Evidence pathrequirements.txt
Format
exact-manifest-pin
Parser state
parsed
Resolved components
1
Open exact source ↗
Observed relations

Package identities at this commit

pypiOllama SDKpypi:ollama
1 Occurrence0.6.2
MIT
pypiOpenAI SDKpypi:openai
2 Occurrences2.44.0
Apache-2.0
Interpretation boundary

Exact identities in, explicit limits out

The collector reads bounded lockfiles, SBOMs and exact double-equals pins at one immutable commit. Version ranges are never resolved by assumption.

Retrieval, parsing, matching and publishing use no generative AI model.

i6eal (2026): RAG — exact AI dependency evidence dossier, data state 19 Jul 2026. https://i6eal.de/en/tools/ki-abhaengigkeitsatlas/repository/opencode-5710/

Reading this dossier

Does this repository dossier prove deployment?
No. It documents dependencies published at one observed commit, not a deployed environment.
Why are exact versions required?
OSV and registry metadata can be linked reproducibly only to an observed package@version tuple. The collector never substitutes a newest release for a range.
Does a missing row mean the dependency is absent?
No. It means not observed within the bounded files and repository checkpoint. Incomplete trees and parser failures remain explicit.

Need a permanent dependency evidence trail for another public code cohort?

We build source-backed data products with stable identities, reproducible joins and boundaries that remain visible.

Discuss a data projectExplore all tools