`@sveltejs/kit`

Ecosystem:
npm

Package URL:
pkg:npm/@sveltejs/kit

Total PRs:
8,005 Dependabot PRs

Latest PR:
about 10 hours ago

Unique Repositories:
1,733 repositories

Unique Repos (30 days):
131 repositories

Security Advisories

SvelteKit is vulnerable to denial of service and possible SSRF when using prerendering

GHSA-j62c-4x62-9r35 CVE-2025-67647 HIGH published 5 months ago • updated about 16 hours ago

### Summary Versions of SvelteKit are vulnerable to a server side request forgery (SSRF) and denial of service (DoS) under certain conditions. ##...

View all 14 advisories

Recent PRs

RSS Feed

deps(deps-dev): bump @sveltejs/kit from 2.49.2 to 2.61.1

impact-dryer/passwordlesscrypt #90

2.49.2 → 2.61.1 Minor PR

Open about 10 hours ago 1 comment

Bump the npm_and_yarn group across 1 directory with 15 updates

EmilynnJ/gradio #1

2.49.0 → 2.60.1 Minor PR

Open about 11 hours ago 4 comments

chore(deps): bump the production-deps group across 1 directory with 17 updates

cinagroup/cinacoin #16

2.60.1 → 2.61.1 Minor PR

Open about 12 hours ago 3 comments

deps(js): bump the js-minor-patch group in /frontend with 5 updates

madmax1301/tonus #19

2.59.0 → 2.61.1 Minor PR

Open about 12 hours ago 1 comment

build(deps): bump the npm_and_yarn group across 2 directories with 8 updates

mitchlabeetch/Sanandem #67

2.49.0 → 2.60.1 Minor PR

Closed about 19 hours ago 2 comments

chore(deps): Bump the npm_and_yarn group across 1 directory with 4 updates

etzhayyim/root #656

2.52.0 → 2.60.1 Minor PR

Open 1 day ago 1 comment

chore(deps-dev): Bump @sveltejs/kit from 2.60.1 to 2.61.1 in /60-apps/ai-gftd-project-open-banking/worker/svelte

etzhayyim/root #518

2.60.1 → 2.61.1 Minor PR

Open 1 day ago 1 comment

chore: bump the dev-dependencies group with 11 updates

jaykerkar0405/Portfolio #9

2.60.1 → 2.61.1 Minor PR

Open 3 days ago 2 comments

chore(deps-dev): bump @sveltejs/kit from 2.49.2 to 2.60.1

obot-platform/nanobot #319

2.49.2 → 2.60.1 Minor PR

Closed 4 days ago 1 comment

dependabot: bump the minor-and-patch group across 2 directories with 5 updates

mirasen-io/chessboard #100

2.60.1 → 2.61.1 Minor PR

Closed 4 days ago 4 comments

chore(deps-dev): bump @sveltejs/kit from 2.54.0 to 2.61.1

OneSpiral/browser-hardware-diagnostics #61

2.54.0 → 2.61.1 Minor PR

Open 4 days ago 1 comment

dependabot: bump the minor-and-patch group across 1 directory with 13 updates

kt-npm-modules/svelte-adapter-azure-swa #227

2.60.1 → 2.61.1 Minor PR

Closed 4 days ago 6 comments

chore(deps-dev): bump the svelte-modules group across 2 directories with 3 updates

arielsrv/recipes #306

2.57.1 → 2.61.1 Minor PR

Open 5 days ago 1 comment

chore(deps): bump the production-deps group across 1 directory with 15 updates

cinagroup/cinacoin #3

2.60.1 → 2.61.1 Minor PR

Open 6 days ago 5 comments

deps: bump the svelte group with 2 updates

shenghaoc/prediction-tool-svelte #40

2.60.1 → 2.61.1 Minor PR

Closed 6 days ago 1 comment

Bump @sveltejs/kit from 2.57.1 to 2.61.1

mgrsskls/convert #574

2.57.1 → 2.61.1 Minor PR

Open 7 days ago 1 comment

chore(deps): bump the npm-minor-patch group across 1 directory with 12 updates

KaiErikNiermann/sts-stat-viewer #45

2.53.4 → 2.61.1 Minor PR

Closed 8 days ago 3 comments

chore(deps-dev): bump the minor-and-patch group across 1 directory with 13 updates

twangodev/twangodev #91

2.57.1 → 2.61.1 Minor PR

Closed 8 days ago 3 comments

Bump the npm-minor-and-patch group with 3 updates

BattlefieldDuck/turnstile-svelte #59

2.60.1 → 2.61.1 Minor PR

Closed 8 days ago 1 comment

Bump the tooling-dependencies group across 5 directories with 25 updates

mmolotov/femi #53

2.8.4 → 2.60.1 Minor PR

Closed 8 days ago 2 comments

chore(deps): bump the dependencies group across 1 directory with 15 updates

Robin-w151/orfarchiv-ui #220

2.60.1 → 2.61.0 Minor PR

Open 8 days ago 2 comments

chore(deps-dev): bump @sveltejs/kit from 2.60.1 to 2.61.1 in /frontend

KyleDerZweite/spellbook #69

2.60.1 → 2.61.1 Minor PR

Closed 8 days ago 2 comments

deps: bump the svelte group in /dashboard with 2 updates

vladkesler/initrunner #131

2.60.1 → 2.61.1 Minor PR

Open 8 days ago 1 comment

chore(deps-dev): Bump the minor-and-patch group in /frontend with 5 updates

jaapstronks/woobuddy #71

2.60.1 → 2.61.1 Minor PR

Closed 8 days ago 1 comment

chore(deps): bump the svelte group across 1 directory with 2 updates

MoldyTaint/Cinephage #366

2.60.1 → 2.61.1 Minor PR

Open 8 days ago 1 comment

chore(deps): bump the dependencies group with 14 updates

Robin-w151/orfarchiv-ui #219

2.60.1 → 2.61.0 Minor PR

Closed 8 days ago 3 comments

fix(deps-dev): bump the svelte group with 2 updates

kellenmurphy/samlguy #47

2.60.1 → 2.61.1 Minor PR

Open 8 days ago 1 comment

chore(deps): Bump the patch-minor group across 1 directory with 15 updates

kydecker/genderswap.fm #392

2.60.1 → 2.61.1 Minor PR

Open 8 days ago 1 comment

fix(deps): bump the all-minor-patch group with 8 updates

SkeLLLa/klopit #33

2.60.1 → 2.61.1 Minor PR

Open 8 days ago 3 comments

chore(deps): bump the npm_and_yarn group across 2 directories with 2 updates

ReinerKnudsen/chaplaincy-domain #432

2.57.1 → 2.61.0 Minor PR

Open 10 days ago 2 comments

chore(deps): bump the dependencies group with 32 updates

tekbreed/tekmemo #13

2.59.1 → 2.61.0 Minor PR

Open 10 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 5 directories with 22 updates

michaelhughes2501/ruflo #4

2.52.2 → 2.61.0 Minor PR

Closed 10 days ago 1 comment

Bump the all group with 9 updates

FrederikNorlyk/svelte-wanikani-mobile #23

2.55.0 → 2.61.0 Minor PR

Open 10 days ago 1 comment

Bump @sveltejs/kit from 2.59.1 to 2.61.0

NathanielRand/OmniPlot #4

2.59.1 → 2.61.0 Minor PR

Open 10 days ago 1 comment

Bump @sveltejs/kit from 2.59.0 to 2.61.0

pkd2512/pkd2512.github.io #18

2.59.0 → 2.61.0 Minor PR

Open 10 days ago 1 comment

chore(deps-dev): bump the svelte-and-vite group across 1 directory with 5 updates

andrewpucci/chroma11y #210

2.60.1 → 2.61.0 Minor PR

Open 10 days ago 2 comments

chore(deps-dev): bump the npm-minor-patch group across 1 directory with 11 updates

Blogem/rechtebank #30

2.59.0 → 2.60.1 Minor PR

Closed 11 days ago 1 comment

Bump @sveltejs/kit from 2.57.1 to 2.60.1 in /src/learningfoundry/sveltekit_template

pointmatic/learningfoundry #16

2.57.1 → 2.60.1 Minor PR

Closed 11 days ago 2 comments

chore(deps): bump the npm_and_yarn group across 4 directories with 9 updates

BAS-More/ruflo #89

2.52.2 → 2.60.1 Minor PR

Closed 12 days ago 1 comment

chore(deps): Bump the npm_and_yarn group across 10 directories with 7 updates

WhatIfWeDigDeeper/application-tracker #332

2.57.1 → 2.60.1 Minor PR

Closed 12 days ago 1 comment

chore(deps): bump @sveltejs/kit from 2.59.1 to 2.60.1

kaelys-js/heron #72

2.59.1 → 2.60.1 Minor PR

Open 12 days ago 3 comments

chore(deps-dev): bump @sveltejs/kit from 2.59.1 to 2.60.1

BradNut/personal-website-sveltekit #66

2.59.1 → 2.60.1 Minor PR

Open 12 days ago 2 comments

chore(deps-dev): bump @sveltejs/kit from 2.59.1 to 2.60.1

tiennm99/loto #6

2.59.1 → 2.60.1 Minor PR

Closed 12 days ago 2 comments

chore(deps-dev): bump @sveltejs/kit from 2.58.0 to 2.60.1 in /examples/sveltekit

synaptent/aragora #7421

2.58.0 → 2.60.1 Minor PR

Open 12 days ago 1 comment

build(deps-dev): bump @sveltejs/kit from 2.59.1 to 2.60.1

AmadeusITGroup/Svelvunity #275

2.59.1 → 2.60.1 Minor PR

Open 12 days ago 1 comment

chore(deps-dev): bump @sveltejs/kit from 2.57.1 to 2.60.1

massimilianolapuma/cubelite #220

2.57.1 → 2.60.1 Minor PR

Open 12 days ago 2 comments

build(deps-dev): bump @sveltejs/kit from 2.57.1 to 2.60.1

Pandoks/pandoks.com #56

2.57.1 → 2.60.1 Minor PR

Closed 12 days ago 2 comments

Bump the npm_and_yarn group across 2 directories with 3 updates

p5hzehxa/Foundry-Local #30

2.55.0 → 2.60.1 Minor PR

Closed 12 days ago 1 comment

build(deps-dev): bump @sveltejs/kit from 2.57.1 to 2.60.1

nais/nais.github.io #139

2.57.1 → 2.60.1 Minor PR

Open 12 days ago 1 comment

Bump @sveltejs/kit from 2.57.1 to 2.60.1

immccn123/benbensbs-web #137

2.57.1 → 2.60.1 Minor PR

Open 12 days ago 2 comments

Package Details

Name:	`@sveltejs/kit`
Ecosystem:	npm
PURL Type:	npm
Package URL:	`pkg:npm/@sveltejs/kit`
JSON API:	View JSON

Security Advisories

14

Active advisories

HIGH 6

MODERATE 5

LOW 3

View All npm Advisories

Package Information

Description:

SvelteKit is the fastest way to build Svelte apps

Repository:	https://github.com/sveltejs/kit
Homepage:	https://svelte.dev
Latest Release:	`2.21.2` 12 months ago
Dependent Repos:	17,842
Dependent Packages:	3,630
Downloads:	2,265,474
Ranking:	Top 0.2122% by dependent repos Top 0.2722% by downloads Top 0.0325% by dependent pkgs

PR Status

Open 3,429 (42.8%)

Merged 1,429 (17.9%)

Closed 2,644 (33.0%)

PR Types

Major 334 (4.2%)

Minor 5,423 (67.7%)

Patch 1,739 (21.7%)

@sveltejs/kit

Security Advisories

@sveltejs/kit vulnerable to XSS on dev mode 404 page

@sveltejs/adapter-node has a BODY_SIZE_LIMIT bypass

@sveltejs/kit: `query.batch` cross-talk

@sveltejs/kit: Unvalidated redirect in handle hook causes Denial-of-Service

SvelteKit is vulnerable to denial of service and possible SSRF when using prerendering

Recent PRs

Package Details

Security Advisories

14

Package Information

PR Status

PR Types

`@sveltejs/kit`