Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

@sveltejs/kit

Ecosystem:
npm
Package URL:
pkg:npm/@sveltejs/kit
Total PRs:
8,005 Dependabot PRs
Latest PR:
about 21 hours ago
Unique Repositories:
1,733 repositories
Unique Repos (30 days):
131 repositories
Security Advisories
@sveltejs/kit vulnerable to XSS on dev mode 404 page
GHSA-rjjv-87mx-6x3h CVE-2024-53261 LOW published over 1 year ago • updated 5 days ago
### Summary "Unsanitized input from *the request URL* flows into `end`, where it is used to render an HTML page returned to the user. This may res...
@sveltejs/adapter-node has a BODY_SIZE_LIMIT bypass
GHSA-2crg-3p73-43xp CVE-2026-40073 HIGH published about 2 months ago • updated 3 days ago
Under certain circumstances, requests could bypass the `BODY_SIZE_LIMIT` on SvelteKit applications running with `adapter-node`. This bypass does no...
@sveltejs/kit: `query.batch` cross-talk
GHSA-hgv7-v322-mmgr MODERATE published 12 days ago • updated 9 days ago
`query.batch()` could, under very rare and specific timings, cause concurrent requests from different users to merge and resolve under single reque...
@sveltejs/kit: Unvalidated redirect in handle hook causes Denial-of-Service
GHSA-3f6h-2hrp-w5wx CVE-2026-40074 MODERATE published about 2 months ago • updated 9 days ago
`redirect`, when called from inside the `handle` server hook with a location parameter containing characters that are invalid in a HTTP header, wil...
SvelteKit is vulnerable to denial of service and possible SSRF when using prerendering
GHSA-j62c-4x62-9r35 CVE-2025-67647 HIGH published 5 months ago • updated 1 day ago
### Summary Versions of SvelteKit are vulnerable to a server side request forgery (SSRF) and denial of service (DoS) under certain conditions. ##...
View all 14 advisories
Recent PRs (filtered by: Patch PRs )
RSS Feed Clear filter
Bump @sveltejs/kit from 2.59.0 to 2.59.1

mit-spatial-action/whoownsmass-frontend #336

2.59.0 → 2.59.1 Patch PR
Open 22 days ago 1 comment
mit-spatial-action
Bump the svelte group with 4 updates

jborgese/metro-atl-transit-tracker #13

2.59.0 → 2.59.1 Patch PR
Closed 22 days ago 2 comments
jborgese
Bump the js-minor-patch group in /webapp/frontend with 5 updates

Sinsemilila/academIA #42

2.59.0 → 2.59.1 Patch PR
Closed 23 days ago 1 comment
Sinsemilila
upgrade(deps-dev): bump @sveltejs/kit from 2.59.0 to 2.59.1

GiroeStefanBogdan/rideshare-frontend #132

2.59.0 → 2.59.1 Patch PR
Closed 23 days ago 2 comments
GiroeStefanBogdan
deps: bump the svelte-ecosystem group in /ma-visualisation-sentiments with 3 updates

fmadore/IWAC-sentiment-analysis #42

2.59.0 → 2.59.1 Patch PR
Open 23 days ago 1 comment
fmadore
chore(deps): bump the dependencies group with 17 updates

Robin-w151/orfarchiv-ui #212

2.59.0 → 2.59.1 Patch PR
Closed 23 days ago 4 comments
Robin-w151
chore(deps): bump the console-all group in /console with 12 updates

nokodo-labs/os1 #414

2.59.0 → 2.59.1 Patch PR
Open 23 days ago 1 comment
nokodo-labs
chore(deps-dev): bump @sveltejs/kit from 2.59.0 to 2.59.1

RMalik777/FontCalc #717

2.59.0 → 2.59.1 Patch PR
Open 23 days ago 3 comments
RMalik777
chore(deps-dev): bump @sveltejs/kit from 2.59.0 to 2.59.1

RMalik777/LinkBook #706

2.59.0 → 2.59.1 Patch PR
Open 23 days ago 3 comments
RMalik777
chore(deps): bump the all-non-major group with 13 updates

dacrab/clubOS #95

2.59.0 → 2.59.1 Patch PR
Closed 24 days ago 1 comment
dacrab
Bump the dev-dependencies group with 3 updates

uikit/uikit-site #564

2.59.0 → 2.59.1 Patch PR
Closed 24 days ago 1 comment
uikit
build(deps-dev): bump @sveltejs/kit from 2.59.0 to 2.59.1

GaryB432/accomplishedh #141

2.59.0 → 2.59.1 Patch PR
Closed 28 days ago 2 comments
GaryB432
chore(deps): bump the all-dependencies group across 1 directory with 12 updates

oszuidwest/zwfm-knabbel #9

2.57.0 → 2.57.1 Patch PR
Closed about 1 month ago 1 comment
oszuidwest
build(deps): bump the dependencies group with 14 updates

eserlan/Codex-Cryptica #628

2.57.0 → 2.57.1 Patch PR
Open about 2 months ago 1 comment
eserlan
dependabot: bump the minor-and-patch group across 1 directory with 15 updates

kt-npm-modules/svelte-adapter-azure-swa #207

2.57.0 → 2.57.1 Patch PR
Open about 2 months ago 5 comments
kt-npm-modules
Bump @sveltejs/kit from 2.57.0 to 2.57.1 in /dokassist

vGsteiger/RamDoc #237

2.57.0 → 2.57.1 Patch PR
Open about 2 months ago 1 comment
vGsteiger
chore(deps)(deps): bump the minor-and-patch group with 4 updates

AM-Digital-Research-Environment/WissKI-dashboard #4

2.57.0 → 2.57.1 Patch PR
Closed about 2 months ago 2 comments
AM-Digital-Research-Environment
chore(deps-dev): bump the prod-dependencies group across 1 directory with 3 updates

getarcaneapp/website #349

2.57.0 → 2.57.1 Patch PR
Open about 2 months ago 2 comments
getarcaneapp
chore(deps-dev): bump @sveltejs/kit from 2.57.0 to 2.57.1

sdanialraza/sdanialraza #606

2.57.0 → 2.57.1 Patch PR
Closed about 2 months ago 1 comment
sdanialraza
chore(deps-dev): bump the devdependencies group across 1 directory with 12 updates

KingBain/status-page-sveltekit #37

2.53.1 → 2.53.4 Patch PR
Closed 3 months ago 1 comment
KingBain
chore(deps-dev): bump the minor-patches group with 14 updates

cartabinaria/dynamik #534

2.53.3 → 2.53.4 Patch PR
Open 3 months ago 1 comment
cartabinaria
Bump the minor-and-patch group across 1 directory with 13 updates

twangodev/twangodev #72

2.53.0 → 2.53.4 Patch PR
Closed 3 months ago 1 comment
twangodev
chore: bump the minor-and-patch group across 1 directory with 11 updates

gatortarheel/netrock-experiment-2026 #6

2.53.0 → 2.53.4 Patch PR
Closed 3 months ago 2 comments
gatortarheel
chore: bump the minor-and-patch group across 1 directory with 11 updates

fpindej/netrock-demo #17

2.53.0 → 2.53.4 Patch PR
Closed 3 months ago 1 comment
fpindej
build(deps-dev): bump @sveltejs/kit from 2.53.0 to 2.53.4

jansinger/tss2012 #1640

2.53.0 → 2.53.4 Patch PR
Open 3 months ago 3 comments
jansinger
chore(deps-dev): bump the dev-deps group across 1 directory with 18 updates

alexanderczigler/middag #64

2.53.0 → 2.53.4 Patch PR
Closed 3 months ago 1 comment
alexanderczigler
Bump the all-dependencies group across 1 directory with 20 updates

opencruit/opencruit #8

2.53.0 → 2.53.4 Patch PR
Closed 3 months ago 1 comment
opencruit
chore(deps-dev): bump @sveltejs/kit from 2.53.0 to 2.53.3

ghostdevv/ghostsui #60

2.53.0 → 2.53.3 Patch PR
Open 3 months ago 2 comments
ghostdevv
chore(deps-dev): bump the dev-dependencies-minor-patch group across 1 directory with 43 updates

middleapi/orpc #1459

2.53.3 → 2.53.4 Patch PR
Open 3 months ago 3 comments
middleapi
chore(deps-dev): bump @sveltejs/kit from 2.53.2 to 2.53.4 in /frontend

uprightbass360/automatic-ripping-machine-ui #62

2.53.2 → 2.53.4 Patch PR
Open 3 months ago 2 comments
uprightbass360
chore(deps): bump the all-minor-patch group across 1 directory with 6 updates

rai-osu/connect #62

2.53.3 → 2.53.4 Patch PR
Open 3 months ago 1 comment
rai-osu
Bump the development-dependencies group across 1 directory with 7 updates

d135-1r43/akzedia.com #275

2.53.0 → 2.53.4 Patch PR
Closed 3 months ago 1 comment
d135-1r43
chore(deps): bump the npm_and_yarn group across 3 directories with 3 updates

kali113/Anglicus #23

2.53.2 → 2.53.3 Patch PR
Open 3 months ago 1 comment
kali113
build(deps-dev): bump the dependencies group with 6 updates

tiagoflino/rustymail #7

2.53.2 → 2.53.4 Patch PR
Closed 3 months ago 1 comment
tiagoflino
chore(deps-dev): bump the devdependencies group across 1 directory with 8 updates

KingBain/status-page-sveltekit #34

2.53.1 → 2.53.4 Patch PR
Closed 3 months ago 1 comment
KingBain
build(deps-dev): bump @sveltejs/kit from 2.53.0 to 2.53.4

codilechasseur/yield #37

2.53.0 → 2.53.4 Patch PR
Closed 3 months ago 1 comment
codilechasseur
build(deps-dev): bump the minor-and-patch group across 1 directory with 3 updates

Serraniel/Sweetfolio #66

2.53.3 → 2.53.4 Patch PR
Open 3 months ago 4 comments
Serraniel
chore(deps-dev): bump the dev-dependencies-minor-patch group across 1 directory with 23 updates

middleapi/orpc #1454

2.53.3 → 2.53.4 Patch PR
Open 3 months ago 3 comments
middleapi
build(deps-dev): bump the nodejs-dependencies group with 5 updates

locusts-r-us/locusts #396

2.53.3 → 2.53.4 Patch PR
Closed 3 months ago 1 comment
locusts-r-us
build(deps-dev): bump @sveltejs/kit from 2.53.0 to 2.53.4 in /ui

ESPresense/ESPresense #2198

2.53.0 → 2.53.4 Patch PR
Closed 3 months ago 1 comment
ESPresense
chore(deps-dev): bump the minor group with 6 updates

nick-ng/bld #297

2.53.0 → 2.53.4 Patch PR
Closed 3 months ago 1 comment
nick-ng
chore(deps-dev): bump the minor-patches group across 1 directory with 10 updates

VaiTon/almaaule #129

2.53.0 → 2.53.4 Patch PR
Open 3 months ago 1 comment
VaiTon
chore: bump the minor-and-patch group in /src/frontend with 7 updates

fpindej/netrock #399

2.53.0 → 2.53.4 Patch PR
Closed 3 months ago 1 comment
fpindej
chore(deps): Bump @sveltejs/kit from 2.53.3 to 2.53.4 in /web

EliasMarine/NetTap #74

2.53.3 → 2.53.4 Patch PR
Open 3 months ago 1 comment
EliasMarine
chore(deps): bump @sveltejs/kit from 2.53.3 to 2.53.4

ktung/cookbook #217

2.53.3 → 2.53.4 Patch PR
Closed 3 months ago 1 comment
ktung
chore(deps): bump the all-minor-patch group with 4 updates

rai-osu/connect #58

2.53.3 → 2.53.4 Patch PR
Open 3 months ago 2 comments
rai-osu
chore(deps):(deps-dev): bump the development-dependencies group with 8 updates

emse-students/MiGallery #194

2.53.0 → 2.53.4 Patch PR
Open 3 months ago 1 comment
emse-students
chore(deps): bump the dependencies group with 11 updates

dacrab/clubOS #60

2.53.0 → 2.53.4 Patch PR
Closed 3 months ago 1 comment
dacrab
chore(deps): Bump @sveltejs/kit from 2.53.1 to 2.53.4

fdsouvenir/falcon-dash #295

2.53.1 → 2.53.4 Patch PR
Closed 3 months ago 2 comments
fdsouvenir
Bump @sveltejs/kit from 2.53.0 to 2.53.3

theodore-s-beers/rmnz #18

2.53.0 → 2.53.3 Patch PR
Closed 3 months ago 1 comment
theodore-s-beers
Package Details
Name: @sveltejs/kit
Ecosystem: npm
PURL Type: npm
Package URL: pkg:npm/@sveltejs/kit
JSON API: View JSON
Security Advisories

14

Active advisories
HIGH 6
MODERATE 5
LOW 3
View All npm Advisories
Package Information
Description:

SvelteKit is the fastest way to build Svelte apps

Repository: https://github.com/sveltejs/kit
Homepage: https://svelte.dev
Latest Release: 2.21.2
12 months ago
Dependent Repos: 17,842
Dependent Packages: 3,630
Downloads: 2,265,474
Ranking: Top 0.2122% by dependent repos Top 0.2722% by downloads Top 0.0325% by dependent pkgs
PR Status
Open 3,429 (42.8%)
Merged 1,429 (17.9%)
Closed 2,644 (33.0%)
PR Types
Major 334 (4.2%)
Minor 5,423 (67.7%)
Patch 1,739 (21.7%)