Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

@astrojs/node

Ecosystem:
npm
Package URL:
pkg:npm/@astrojs/node
Total PRs:
1,209 Dependabot PRs
Latest PR:
6 days ago
Unique Repositories:
493 repositories
Unique Repos (30 days):
14 repositories
Security Advisories
Astro: Memory exhaustion DoS due to missing request body size limit in Server Islands
GHSA-3rmj-9m5h-8fpv CVE-2026-29772 MODERATE published 3 months ago • updated about 15 hours ago
### Summary Astro's Server Islands POST handler buffers and parses the full request body as JSON without enforcing a size limit. Because `JSON.par...
Astro is vulnerable to SSRF due to missing allowlist enforcement in remote image inferSize
GHSA-cj9f-h6r6-4cx2 CVE-2026-27829 MODERATE published 4 months ago • updated about 15 hours ago
## Summary A bug in Astro's image pipeline allows bypassing `image.domains` / `image.remotePatterns` restrictions, enabling the server to fetch co...
Astro has Full-Read SSRF in error rendering via Host: header injection
GHSA-qq67-mvv5-fw3g CVE-2026-25545 MODERATE published 4 months ago • updated about 15 hours ago
### Summary Server-Side Rendered pages that return an error with a prerendered custom error page (eg. `404.astro` or `500.astro`) are vulnerable t...
Astro has memory exhaustion DoS due to missing request body size limit in Server Actions
GHSA-jm64-8m5q-4qh8 CVE-2026-27729 MODERATE published 4 months ago • updated about 15 hours ago
## Summary Astro server actions have no default request body size limit, which can lead to memory exhaustion DoS. A single large POST to a valid a...
Astro allows unauthorized third-party images in _image endpoint
GHSA-xf8x-j4p2-f749 CVE-2025-55303 MODERATE published 10 months ago • updated about 15 hours ago
### Summary In affected versions of `astro`, the image optimization endpoint in projects deployed with on-demand rendering allows images from unau...
View all 7 advisories
Recent PRs
RSS Feed
build(deps): bump the npm_and_yarn group across 6 directories with 21 updates

milannakum/bun #7

9.1.3 → 10.0.0 Major PR
Closed 3 months ago 1 comment
milannakum
build(deps): bump the npm_and_yarn group across 6 directories with 21 updates

milannakum/bun #6

9.1.3 → 10.0.0 Major PR
Closed 3 months ago 1 comment
milannakum
chore(deps):(deps): bump the production-patches group across 1 directory with 26 updates

daggerstuff/pixelated #257

10.0.2 → 10.0.4 Patch PR
Open 3 months ago 2 comments
daggerstuff
build(deps): bump the npm_and_yarn group across 7 directories with 21 updates

milannakum/bun #5

9.1.3 → 10.0.0 Major PR
Closed 3 months ago 1 comment
milannakum
chore(deps): bump the npm_and_yarn group across 3 directories with 12 updates

trizist/platformatic #20

9.4.4 → 10.0.0 Major PR
Closed 3 months ago 1 comment
trizist
chore(deps):(deps): bump the production-patches group across 1 directory with 24 updates

daggerstuff/pixelated #251

10.0.2 → 10.0.3 Patch PR
Open 3 months ago 2 comments
daggerstuff
build(deps): bump the npm_and_yarn group across 9 directories with 21 updates

preechapon250/bun #11

9.1.3 → 10.0.0 Major PR
Closed 3 months ago 1 comment
preechapon250
Bump @astrojs/node from 9.5.5 to 10.0.0 in /frontend

betauia/betauia.net #213

9.5.5 → 10.0.0 Major PR
Closed 3 months ago 2 comments
betauia
chore(deps):(deps): bump the production-patches group across 1 directory with 18 updates

daggerstuff/pixelated #234

10.0.2 → 10.0.3 Patch PR
Closed 3 months ago 3 comments
daggerstuff
chore(deps): bump the npm_and_yarn group across 9 directories with 10 updates

awfixers-stuff/awplus #7

9.5.4 → 10.0.0 Major PR
Closed 3 months ago 2 comments
awfixers-stuff
Bump the npm_and_yarn group across 14 directories with 22 updates

thenexthub/Codira #35

9.1.3 → 10.0.0 Major PR
Closed 3 months ago 1 comment
thenexthub
Bump @astrojs/node from 9.5.2 to 10.0.0

vicmanbrile/SaludDigital #7

9.5.2 → 10.0.0 Major PR
Closed 3 months ago 1 comment
vicmanbrile
chore(deps): bump @astrojs/node from 9.5.1 to 10.0.0

heridotlife/heridotlife #115

9.5.1 → 10.0.0 Major PR
Closed 3 months ago 5 comments
heridotlife
chore(deps): bump @astrojs/node from 9.5.5 to 10.0.0

Trombach/astro-homepage #1002

9.5.5 → 10.0.0 Major PR
Closed 3 months ago 1 comment
Trombach
deps(deps): bump @astrojs/node from 9.5.4 to 10.0.0

llbbl/semantic-docs #43

9.5.4 → 10.0.0 Major PR
Closed 3 months ago 2 comments
llbbl
deps(deps): bump @astrojs/node from 9.5.2 to 10.0.0

naujrevilo/juanoliverdotnetv3 #37

9.5.2 → 10.0.0 Major PR
Open 3 months ago 3 comments
naujrevilo
build(deps): bump @astrojs/node from 9.5.5 to 10.0.3 in the npm_and_yarn group across 1 directory

datum-cloud/cloudvalid.com #19

9.5.5 → 10.0.3 Major PR
Open 3 months ago 2 comments
datum-cloud
chore(deps): bump @astrojs/node from 9.5.4 to 10.0.0 in /templates/astro in the npm_and_yarn group across 1 directory

shopware/frontends #2352

9.5.4 → 10.0.0 Major PR
Closed 3 months ago 2 comments
shopware
Bump @astrojs/node from 9.5.2 to 10.0.0 in /client

wilsonwong1990/pets-workshop #16

9.5.2 → 10.0.0 Major PR
Closed 3 months ago 1 comment
wilsonwong1990
chore(deps): bump @astrojs/node from 9.1.3 to 10.0.0 in /test/js/third_party/astro

3kho/bun #27

9.1.3 → 10.0.0 Major PR
Closed 3 months ago 1 comment
3kho
build(deps): bump @astrojs/node from 9.5.5 to 10.0.3 in /tests/resources/sites/astro in the npm_and_yarn group across 1 directory

satark-ops-org/appwrite #2

9.5.5 → 10.0.3 Major PR
Closed 3 months ago 1 comment
satark-ops-org
Bump @astrojs/node from 9.5.5 to 10.0.3 in /tests/resources/sites/astro in the npm_and_yarn group across 1 directory

bankfastapp/appwrite #3

9.5.5 → 10.0.3 Major PR
Closed 3 months ago 1 comment
bankfastapp
Bump @astrojs/node from 9.5.5 to 10.0.3 in /tests/resources/sites/astro in the npm_and_yarn group across 1 directory

paulpham157/appwrite-BaaS #3

9.5.5 → 10.0.3 Major PR
Closed 3 months ago 1 comment
paulpham157
Bump @astrojs/node from 9.5.4 to 10.0.0

lalmei/TavernHub #7

9.5.4 → 10.0.0 Major PR
Closed 3 months ago 1 comment
lalmei
Bump the npm_and_yarn group across 16 directories with 14 updates

ssushant0011/bun #50

9.1.3 → 9.5.4 Minor PR
Closed 3 months ago 1 comment
ssushant0011
Bump the npm_and_yarn group across 17 directories with 16 updates

bitamarghzar/bun #47

9.1.3 → 9.5.4 Minor PR
Closed 3 months ago 1 comment
bitamarghzar
chore(deps): Bump the astro group with 4 updates

dossierhq/dossierhq #1562

9.5.5 → 10.0.1 Major PR
Closed 3 months ago 2 comments
dossierhq
Bump the npm_and_yarn group across 8 directories with 4 updates

Ngocanhphuong/examples #6

8.3.4 → 10.0.3 Major PR
Closed 3 months ago 1 comment
Ngocanhphuong
build(deps): bump the npm_and_yarn group across 8 directories with 22 updates

preechapon250/bun #7

9.1.3 → 9.5.4 Minor PR
Closed 3 months ago 1 comment
preechapon250
chore(deps): bump the npm_and_yarn group across 1 directory with 15 updates

danielbodnar/vrite #1

6.0.0 → 9.5.4 Major PR
Open 3 months ago 2 comments
danielbodnar
Bump the npm_and_yarn group across 14 directories with 17 updates

ANT0071/bun #52

9.1.3 → 9.5.4 Minor PR
Closed 3 months ago 1 comment
ANT0071
build(deps): bump the npm_and_yarn group across 3 directories with 23 updates

preechapon250/bun #1

9.1.3 → 9.5.4 Minor PR
Closed 3 months ago 1 comment
preechapon250
chore(deps): bump the npm-version-updates group across 1 directory with 11 updates

zitadel/example-auth-astro #34

9.5.4 → 10.0.2 Major PR
Closed 3 months ago 1 comment
zitadel
chore(deps): bump @astrojs/node from 9.5.4 to 10.0.1

LanternOps/breeze #244

9.5.4 → 10.0.1 Major PR
Closed 3 months ago 4 comments
LanternOps
chore(deps)(deps): Bump @astrojs/node from 9.5.4 to 10.0.1 in /frontend

gilmry/koprogo #287

9.5.4 → 10.0.1 Major PR
Closed 3 months ago 3 comments
gilmry
Bump the npm_and_yarn group across 3 directories with 19 updates

awfixer/awfixerme #3

9.1.3 → 9.5.4 Minor PR
Closed 3 months ago 1 comment
awfixer
build(deps): bump the patch-updates group with 18 updates

bahua123/firefly-astro #1

9.5.4 → 9.5.5 Patch PR
Open 3 months ago 1 comment
bahua123
Bump the npm_and_yarn group across 15 directories with 17 updates

CaffeeLake/bun #199

9.1.3 → 9.5.4 Minor PR
Open 3 months ago 1 comment
CaffeeLake
Bump the npm_and_yarn group across 11 directories with 23 updates

thenexthub/Codira #19

9.1.3 → 9.5.4 Minor PR
Closed 3 months ago 1 comment
thenexthub
Bump @astrojs/node from 9.5.4 to 10.0.0

joshmcarthur/canopy-reading #25

9.5.4 → 10.0.0 Major PR
Closed 3 months ago 1 comment
joshmcarthur
Bump the npm_and_yarn group across 18 directories with 14 updates

ssushant0011/bun #34

9.1.3 → 9.5.4 Minor PR
Closed 3 months ago 1 comment
ssushant0011
deps(deps): bump the astro group across 1 directory with 3 updates

naujrevilo/juanoliverdotnetv3 #32

9.5.2 → 9.5.4 Patch PR
Open 3 months ago 3 comments
naujrevilo
build(deps): bump the npm_and_yarn group across 1 directory with 7 updates

SeanStaffiery/web-check #8

9.4.1 → 9.5.4 Minor PR
Closed 4 months ago 1 comment
SeanStaffiery
Bump the npm_and_yarn group across 10 directories with 23 updates

thenexthub/Codira #12

9.1.3 → 9.5.4 Minor PR
Closed 4 months ago 1 comment
thenexthub
Bump the npm-production group in /client with 2 updates

sorrentmutie/tailspin-toys #2

9.5.2 → 9.5.4 Patch PR
Closed 4 months ago 1 comment
sorrentmutie
chore(deps):(deps): bump the production-patches group across 1 directory with 19 updates

pixelatedempathy/pixelated #611

9.5.2 → 9.5.4 Patch PR
Open 4 months ago 3 comments
pixelatedempathy
Bump the npm_and_yarn group across 16 directories with 16 updates

CaffeeLake/bun #184

9.1.3 → 9.5.4 Minor PR
Open 4 months ago 1 comment
CaffeeLake
Bump the npm-production group in /client with 2 updates

nickwestbrook/pets-workshop #2

9.5.2 → 9.5.4 Patch PR
Closed 4 months ago 1 comment
nickwestbrook
chore(deps): bump the npm-production group in /client with 2 updates

cajetzer/copilot-cli-workshop #2

9.5.2 → 9.5.4 Patch PR
Closed 4 months ago 1 comment
cajetzer
chore(deps): bump the npm_and_yarn group across 2 directories with 18 updates

trizist/platformatic #8

9.4.4 → 9.5.4 Minor PR
Closed 4 months ago 1 comment
trizist
Package Details
Name: @astrojs/node
Ecosystem: npm
PURL Type: npm
Package URL: pkg:npm/@astrojs/node
JSON API: View JSON
Security Advisories

7

Active advisories
MODERATE 7
View All npm Advisories
Package Information
Description:

Deploy your site to a Node.js server

Repository: https://github.com/withastro/astro
Homepage: https://docs.astro.build/en/guides/integrations-guide/node/
Latest Release: 9.2.2
about 1 year ago
Dependent Repos: 1,089
Dependent Packages: 29
Downloads: 503,259
Ranking: Top 0.5707% by dependent repos Top 0.7457% by downloads Top 1.1871% by dependent pkgs
PR Status
Open 565 (46.7%)
Merged 82 (6.8%)
Closed 540 (44.7%)
PR Types
Major 144 (11.9%)
Minor 697 (57.7%)
Patch 346 (28.6%)