Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

ash_authentication

Ecosystem:
hex
Package URL:
pkg:hex/ash_authentication
Total PRs:
49 Dependabot PRs
Latest PR:
3 months ago
Unique Repositories:
8 repositories
Unique Repos (30 days):
1 repository
Security Advisories
OAuth2/OIDC account takeover in AshAuthentication via email-based user matching
EEF-CVE-2026-49757 GHSA-777c-2fxx-qr28 CVE-2026-49757 CRITICAL published 4 days ago • updated about 13 hours ago
## Summary Authentication Bypass by Spoofing vulnerability in team-alembic AshAuthentication allows account takeover of local users via OAuth2/OID...
ash_authentication has email link auto-click account confirmation vulnerability
GHSA-3988-q8q7-p787 CVE-2025-32782 MODERATE published about 1 year ago • updated 20 days ago
### Impact The confirmation flow for account creation currently uses a GET request triggered by clicking a link sent via email. Some email clients...
Ash Authentication has flawed token revocation checking logic in actions generated by `mix ash_authentication.install`
GHSA-qrm9-f75w-hg4c CVE-2025-25202 MODERATE published over 1 year ago • updated 18 days ago
### Impact Applications which have been bootstrapped by the new igniter installer (since AshAuthentication v4.1.0) and who have used the magic lin...
Recent PRs (filtered by: Open , Patch PRs )
RSS Feed Clear filter
chore(deps): bump the patch-updates group across 1 directory with 24 updates

zebbra/data_aggregator #911

4.9.2 → 4.9.9 Patch PR
Open 9 months ago
zebbra
chore(deps): bump the patch-updates group across 1 directory with 22 updates

zebbra/data_aggregator #903

4.9.2 → 4.9.9 Patch PR
Open 10 months ago
zebbra
chore(deps): bump the patch-updates group across 1 directory with 23 updates

zebbra/data_aggregator #901

4.9.2 → 4.9.9 Patch PR
Open 10 months ago 1 comment
zebbra
chore(deps): bump the patch-updates group across 1 directory with 22 updates

zebbra/data_aggregator #900

4.9.2 → 4.9.9 Patch PR
Open 10 months ago 1 comment
zebbra
chore(deps): bump the patch-updates group across 1 directory with 21 updates

zebbra/data_aggregator #891

4.9.2 → 4.9.9 Patch PR
Open 10 months ago
zebbra
chore(deps): bump the patch-updates group across 1 directory with 24 updates

zebbra/data_aggregator #887

4.9.2 → 4.9.9 Patch PR
Open 10 months ago 1 comment
zebbra
chore(deps): bump the patch-updates group across 1 directory with 19 updates

zebbra/data_aggregator #880

4.9.2 → 4.9.9 Patch PR
Open 10 months ago
zebbra
build(deps): bump the ash-dependencies group across 1 directory with 8 updates

MikaelFangel/CaseManager #394

4.9.0 → 4.9.9 Patch PR
Open 11 months ago 1 comment
MikaelFangel
chore(deps): bump ash_authentication from 4.9.5 to 4.9.8 in the production-dependencies group across 1 directory

team-alembic/ash_authentication_phoenix #652

4.9.5 → 4.9.8 Patch PR
Open 11 months ago
team-alembic
chore(deps): bump the production-dependencies group with 6 updates

ash-project/ash_ai #85

4.9.4 → 4.9.5 Patch PR
Open 12 months ago
ash-project
build(deps): bump the ash-dependencies group with 5 updates

MikaelFangel/CaseManager #364

4.8.3 → 4.8.6 Patch PR
Open about 1 year ago 1 comment
MikaelFangel
Package Details
Name: ash_authentication
Ecosystem: hex
PURL Type: hex
Package URL: pkg:hex/ash_authentication
JSON API: View JSON
Security Advisories

3

Active advisories
CRITICAL 1
MODERATE 2
View All hex Advisories
Package Information
Description:

Authentication extension for the Ash Framework.

Homepage: https://github.com/team-alembic/ash_authentication_phoenix
Latest Release: 4.8.7
about 1 year ago
Dependent Repos: 5
Dependent Packages: 1
Downloads: 273,472
Ranking: Top 8.6474% by dependent repos Top 11.6692% by downloads Top 10.6198% by dependent pkgs
PR Status
Open 14 (28.6%)
Merged 12 (24.5%)
Closed 19 (38.8%)
PR Types
Minor 16 (32.7%)
Patch 29 (59.2%)