Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

@sveltejs/kit

Ecosystem:
npm
Package URL:
pkg:npm/@sveltejs/kit
Total PRs:
4,629 Dependabot PRs
Latest PR:
about 2 hours ago
Unique Repositories:
901 repositories
Unique Repos (30 days):
387 repositories
Security Advisories
@sveltejs/kit vulnerable to XSS on dev mode 404 page
GHSA-rjjv-87mx-6x3h CVE-2024-53261 LOW published 10 months ago • updated 23 days ago
### Summary "Unsanitized input from *the request URL* flows into `end`, where it is used to render an HTML page returned to the user. This may res...
Sending a GET or HEAD request with a body crashes SvelteKit
GHSA-g5m6-hxpp-fc49 CVE-2024-23641 HIGH published over 1 year ago • updated 3 months ago
### Summary In SvelteKit 2 sending a GET request with a body eg `{}` to a SvelteKit app in preview or with `adapter-node` throws `Request with GET/...
@sveltejs/kit has unescaped error message included on error page
GHSA-mh2x-fcqh-fmqv CVE-2024-53262 LOW published 10 months ago • updated 29 days ago
### Summary The static error.html template for errors contains placeholders that are replaced without escaping the content first. ### Details Fr...
SvelteKit framework has Insufficient CSRF protection for CORS requests
GHSA-gv7g-x59x-wf8f CVE-2023-29008 HIGH published over 2 years ago • updated 3 months ago
### Summary The SvelteKit framework offers developers an option to create simple REST APIs. This is done by defining a `+server.js` file, containin...
@sveltejs/kit vulnerable to Cross-site Scripting via tracked search_params
GHSA-6q87-84jw-cjhp CVE-2025-32388 MODERATE published 5 months ago • updated 25 days ago
### Summary Unsanitized search param names cause XSS vulnerability. You are affected if you iterate over all entries of `event.url.searchParams` i...
View all 6 advisories
Recent PRs
RSS Feed
chore(deps-dev): bump the dev-dependencies-minor-patch group with 46 updates

unnoq/orpc #983

2.37.0 → 2.37.1 Patch PR
Open about 2 hours ago 2 comments
unnoq
Bump vite, @sveltejs/adapter-auto, @sveltejs/adapter-netlify, @sveltejs/adapter-static and @sveltejs/kit

InterlakeProgrammingClub/ihs-inquirer-website #12

1.27.6 → 2.37.1 Major PR
Open about 7 hours ago
InterlakeProgrammingClub
Bump vite, @sveltejs/adapter-auto and @sveltejs/kit

alandotcom/svelte-chatbot-gpt #1

1.30.3 → 2.37.1 Major PR
Open about 7 hours ago
alandotcom
chore(deps-ui): bump vite, @sveltejs/adapter-auto and @sveltejs/kit in /ui

ebarped/sego #19

1.30.3 → 2.37.1 Major PR
Open about 7 hours ago 1 comment
ebarped
Bump vite, @sveltejs/adapter-static and @sveltejs/kit in /generative-chatbots

GoogleCloudPlatform/contact-center-ai-samples #616

1.22.6 → 2.37.1 Major PR
Open about 7 hours ago
GoogleCloudPlatform
Bump the npm_and_yarn group across 6 directories with 3 updates

ewdlop/GenAIExamples #2

1.30.4 → 2.37.1 Major PR
Open about 8 hours ago
ewdlop
Bump the npm_and_yarn group across 1 directory with 14 updates

Archit-Jain-Github/ezmail #2

1.25.1 → 2.37.1 Major PR
Open about 8 hours ago
Archit-Jain-Github
Bump vite, @sveltejs/adapter-node, @sveltejs/adapter-auto and @sveltejs/kit

VanillaSixtySix/pxls-admin #8

1.0.7 → 2.37.1 Major PR
Open about 9 hours ago
VanillaSixtySix
Bump vite, @sveltejs/adapter-auto and @sveltejs/kit

kintone-workshops/intro-to-svelte #11

1.0.0-next.589 → 2.37.1 Major PR
Open about 9 hours ago
kintone-workshops
Bump vite, @sveltejs/adapter-auto, @sveltejs/adapter-static and @sveltejs/kit

daaanny90/dannyspina #76

1.30.4 → 2.37.1 Major PR
Open about 10 hours ago
daaanny90
Bump the npm_and_yarn group across 1 directory with 8 updates

aleksasiriski/analgral #46

2.5.0 → 2.20.6 Minor PR
Open about 10 hours ago
aleksasiriski
Bump vite, @sveltejs/adapter-auto and @sveltejs/kit

khjzzm/mail-app #4

1.30.4 → 2.37.1 Major PR
Open about 10 hours ago 1 comment
khjzzm
Bump the npm_and_yarn group across 1 directory with 9 updates

jadenblack/serge #2

2.4.1 → 2.37.1 Minor PR
Open about 12 hours ago
jadenblack
Bump vite, @sveltejs/adapter-node, @sveltejs/adapter-auto, @sveltejs/adapter-static and @sveltejs/kit in /OllamWebUi

kalleantero/Aspire.OpenAI #14

1.30.3 → 2.37.1 Major PR
Open about 12 hours ago
kalleantero
chore(deps-dev): bump vite, @sveltejs/adapter-auto, @sveltejs/adapter-static and @sveltejs/kit in /apps/maps

cal-itp/data-infra #4269

1.30.4 → 2.37.1 Major PR
Open about 12 hours ago
cal-itp
Bump the npm_and_yarn group across 1 directory with 3 updates

thisiscoding1234/tech1 #1

2.19.0 → 2.37.1 Minor PR
Open about 12 hours ago
thisiscoding1234
Bump the npm_and_yarn group across 5 directories with 17 updates

ivansotelo12-pixel/gradio #2

2.5.20 → 2.20.6 Minor PR
Open about 13 hours ago
ivansotelo12-pixel
build(deps): bump the npm_and_yarn group across 1 directory with 14 updates

paulpham157/LLocalSearch #3

2.5.4 → 2.37.1 Minor PR
Open about 13 hours ago
paulpham157
chore(deps-dev): bump the prod-dependencies group with 13 updates

ofkm/arcane #419

2.31.1 → 2.37.1 Minor PR
Merged about 13 hours ago
ofkm
Bump the npm_and_yarn group across 1 directory with 18 updates

wenlien/generative-ai-on-aws #1

1.30.4 → 2.37.1 Major PR
Open about 14 hours ago
wenlien
chore(deps): bump the npm_and_yarn group across 1 directory with 18 updates

AcidicSoil/open-webui #1

1.30.4 → 2.37.1 Major PR
Open about 14 hours ago
AcidicSoil
chore(deps): bump vite, @sveltejs/adapter-node, @sveltejs/adapter-auto, @sveltejs/adapter-static and @sveltejs/kit

fishke22/open-webui #2

1.30.4 → 2.37.1 Major PR
Open about 14 hours ago
fishke22
Bump vite, @sveltejs/adapter-auto, @sveltejs/adapter-static and @sveltejs/kit

AHollowedHunter/ahollowedhunter.github.io #56

1.30.4 → 2.37.1 Major PR
Closed about 14 hours ago
AHollowedHunter
Bump the npm_and_yarn group across 4 directories with 18 updates

DarthGigi/svgl #2

2.5.7 → 2.20.6 Minor PR
Open about 14 hours ago
DarthGigi
Bump the updates group across 1 directory with 6 updates

BenSlabbert/vertx-dagger-app #1176

2.36.1 → 2.37.1 Minor PR
Open about 15 hours ago
BenSlabbert
chore(deps-dev): bump the npm_and_yarn group across 1 directory with 4 updates

childmindresearch/ctk-webapp #218

2.22.0 → 2.37.1 Minor PR
Merged about 15 hours ago
childmindresearch
Bump devalue, @sveltejs/adapter-static and @sveltejs/kit in /frontend

childmindresearch/cross-species-mapper #71

1.30.4 → 2.37.1 Major PR
Closed about 16 hours ago 1 comment
childmindresearch
Bump @sveltejs/kit and @sveltejs/adapter-static

Darintuga/darintuga.github.io #2

1.30.4 → 2.37.1 Major PR
Open about 17 hours ago
Darintuga
Bump @sveltejs/kit from 2.37.0 to 2.37.1

sockmaster27/svader #296

2.37.0 → 2.37.1 Patch PR
Merged about 19 hours ago
sockmaster27
Bump devalue, @sveltejs/adapter-auto, @sveltejs/adapter-static, @sveltejs/adapter-vercel and @sveltejs/kit

jolehuit/weazic #1

1.27.2 → 2.37.1 Major PR
Open about 20 hours ago 1 comment
jolehuit
Bump devalue, @sveltejs/adapter-auto and @sveltejs/kit

akiomik/nosli #94

1.30.4 → 2.37.1 Major PR
Open 1 day ago
akiomik
build(deps): bump the npm-updates group with 15 updates

Eurora-Labs/eurora #276

2.37.0 → 2.37.1 Patch PR
Merged 1 day ago 1 comment
eurora-labs
chore(deps): bump the all-dependencies group with 9 updates

Profiidev/positron_components #111

2.37.0 → 2.37.1 Patch PR
Merged 1 day ago
Profiidev
Bump the all group with 4 updates

danielosw/danielosw.github.io #218

2.37.0 → 2.37.1 Patch PR
Merged 1 day ago
danielosw
build(deps-dev): bump @sveltejs/kit from 2.33.0 to 2.37.1 in /sveltekit-advanced

wuchalejs/examples #100

2.33.0 → 2.37.1 Minor PR
Merged 1 day ago
wuchalejs
chore(deps-dev): bump the build group with 5 updates

minvws/nl-rdo-manon #1032

2.36.3 → 2.37.1 Minor PR
Merged 1 day ago
minvws
Bump the other group with 8 updates

nais/ds-svelte-community #319

2.37.0 → 2.37.1 Patch PR
Open 2 days ago
nais
chore(deps-dev): Bump the dev-dependencies group across 1 directory with 15 updates

yanneves/browser.icu #305

2.37.0 → 2.37.1 Patch PR
Open 2 days ago 2 comments
yanneves
chore: bump @sveltejs/kit from 2.37.0 to 2.37.1

rafal-majewski/geni-prioritizer #249

2.37.0 → 2.37.1 Patch PR
Open 2 days ago
rafal-majewski
Bump @sveltejs/kit from 2.37.0 to 2.37.1

fsargent/approval-vote #151

2.37.0 → 2.37.1 Patch PR
Open 2 days ago
fsargent
Bump devalue and @sveltejs/kit

Soloknir/new-year-game #2

1.0.0-next.560 → 2.37.1 Major PR
Open 2 days ago
Soloknir
build(deps-dev): bump @sveltejs/kit from 2.23.0 to 2.37.1

njord-rs/njord-rs.github.io #127

2.23.0 → 2.37.1 Minor PR
Open 2 days ago
njord-rs
chore(deps): Bump the patch-minor group with 9 updates

evadecker/genderswap.fm #362

2.37.0 → 2.37.1 Patch PR
Open 2 days ago
evadecker
build(deps-dev): bump @sveltejs/kit from 2.37.0 to 2.37.1

samply/bbmri-sample-locator #126

2.37.0 → 2.37.1 Patch PR
Open 2 days ago
samply
chore(deps): bump the dependencies group with 10 updates

Robin-w151/coffee-pal #120

2.37.0 → 2.37.1 Patch PR
Open 2 days ago
Robin-w151
chore(deps-dev): bump the with-svelte group in /examples/with-svelte with 4 updates

vercel/turborepo #10835

2.36.1 → 2.37.1 Minor PR
Closed 2 days ago 1 comment
vercel
build(deps-dev): Bump @sveltejs/kit from 2.36.2 to 2.37.1

Knoblauchpilze/user-dashboard #276

2.36.2 → 2.37.1 Minor PR
Merged 2 days ago
Knoblauchpilze
Bump @sveltejs/kit from 2.36.3 to 2.37.1

EducationalTools/src #486

2.36.3 → 2.37.1 Minor PR
Open 2 days ago 1 comment
EducationalTools
build(deps-dev): bump @sveltejs/kit from 1.30.4 to 2.37.1

gustavo180591/DocuFlow #10

1.30.4 → 2.37.1 Major PR
Open 2 days ago 1 comment
gustavo180591
Bump @sveltejs/kit from 2.26.1 to 2.37.1 in /src/main/frontend

fatihcatalkaya/RoomieFunds #149

2.26.1 → 2.37.1 Minor PR
Open 2 days ago
fatihcatalkaya
Package Details
Name: @sveltejs/kit
Ecosystem: npm
PURL Type: npm
Package URL: pkg:npm/@sveltejs/kit
JSON API: View JSON
Security Advisories

6

Active advisories
HIGH 3
MODERATE 1
LOW 2
View All npm Advisories
Package Information
Description:

SvelteKit is the fastest way to build Svelte apps

Repository: https://github.com/sveltejs/kit
Homepage: https://svelte.dev
Latest Release: 2.21.2
3 months ago
Dependent Repos: 17,842
Dependent Packages: 3,630
Downloads: 2,265,474
Ranking: Top 0.2122% by dependent repos Top 0.2722% by downloads Top 0.0325% by dependent pkgs
PR Status
Open 1,863 (40.4%)
Merged 1,080 (23.4%)
Closed 1,168 (25.3%)
PR Types
Minor 2,853 (61.8%)
Major 182 (3.9%)
Patch 1,070 (23.2%)