Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

bootstrap

Ecosystem:
npm
Package URL:
pkg:npm/bootstrap
Total PRs:
4,079 Dependabot PRs
Latest PR:
about 12 hours ago
Unique Repositories:
2,144 repositories
Unique Repos (30 days):
11 repositories
Security Advisories
Bootstrap Cross-site Scripting vulnerability
GHSA-4p24-vmcr-4gqj CVE-2016-10735 MODERATE published about 7 years ago • updated about 22 hours ago
In Bootstrap 2.x from 2.0.4, 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute. Note that this is a d...
Bootstrap Vulnerable to Cross-Site Scripting
GHSA-9v3m-8fp8-mj99 CVE-2019-8331 MODERATE published almost 7 years ago • updated about 20 hours ago
Versions of `bootstrap` prior to 3.4.1 for 3.x and 4.3.1 for 4.x are vulnerable to Cross-Site Scripting (XSS). The `data-template` attribute of th...
Bootstrap Cross-Site Scripting (XSS) vulnerability for data-* attributes
GHSA-vxmc-5x29-h64v CVE-2024-6485 MODERATE published over 1 year ago • updated about 14 hours ago
A security vulnerability has been discovered in bootstrap that could enable Cross-Site Scripting (XSS) attacks. The vulnerability is associated wit...
Moderate severity vulnerability that affects bootstrap and bootstrap-sass
GHSA-wh77-3x4m-4q9g CVE-2019-8331 MODERATE published almost 7 years ago • updated 5 days ago
In Bootstrap 4 before 4.3.1 and Bootstrap 3 before 3.4.1, XSS is possible in the tooltip or popover data-template attribute. For more information, ...
Bootstrap Cross-site Scripting vulnerability
GHSA-7mvr-5x2g-wfc8 CVE-2018-14042 MODERATE published over 7 years ago • updated about 22 hours ago
In Bootstrap starting in version 2.3.0 and prior to versions 3.4.0 and 4.1.2, XSS is possible in the data-container property of tooltip. This is s...
View all 10 advisories
Recent PRs
RSS Feed
Bump the npm_and_yarn group across 1 directory with 2 updates

bettysteger/showmaniac #6

3.4.1 → 5.0.0 Major PR
Open about 12 hours ago 2 comments
bettysteger
Bump bootstrap from 4.6.2 to 5.3.8

Edirom/ViFE-website #89

4.6.2 → 5.3.8 Major PR
Closed 1 day ago 2 comments
Edirom
Bump the all-ui-deps group across 1 directory with 77 updates

craftercms/studio-ui #4754

5.3.7 → 5.3.8 Patch PR
Open 4 days ago 1 comment
craftercms
Bump the npm_and_yarn group across 1 directory with 6 updates

injust/mitmproxy #2

3.4.1 → 5.0.0 Major PR
Closed 5 days ago 1 comment
injust
Bump the npm-dependencies group across 1 directory with 27 updates

SamYuan1990/Probe #270

5.3.3 → 5.3.8 Patch PR
Closed 8 days ago 1 comment
SamYuan1990
front: bump bootstrap from 4.3.1 to 5.3.8 in /front

OpenRailAssociation/osrd #14707

4.3.1 → 5.3.8 Major PR
Closed 10 days ago 4 comments
OpenRailAssociation
Bump the npm_and_yarn group across 2 directories with 4 updates

Mika3578/Medusa #20

3.4.1 → 5.0.0 Major PR
Closed 12 days ago 2 comments
Mika3578
chore(deps): bump the npm_and_yarn group across 1 directory with 21 updates

cf5146/PttChrome #1

3.4.1 → 5.0.0 Major PR
Open 14 days ago 1 comment
cf5146
chore(deps): bump the npm_and_yarn group across 2 directories with 3 updates

herodevs/cli #458

3.1.1 → 5.0.0 Major PR
Closed 18 days ago 1 comment
herodevs
build(deps): bump the minor-and-patch group across 1 directory with 11 updates

CircuitVerse/CircuitVerse #6549

5.3.3 → 5.3.8 Patch PR
Open 20 days ago 3 comments
CircuitVerse
security(deps): bump bootstrap from 5.1.3 to 5.3.8

userlip/warcmachine #7

5.1.3 → 5.3.8 Minor PR
Open 25 days ago 3 comments
userlip
Bump bootstrap from 5.3.6 to 5.3.8

manyfold3d/manyfold #5207

5.3.6 → 5.3.8 Patch PR
Open about 1 month ago 2 comments
manyfold3d
chore(deps): bump bootstrap from 5.3.3 to 5.3.8 in the production-dependencies group

mpbarbosa/monitora_vagas #14

5.3.3 → 5.3.8 Patch PR
Closed about 1 month ago 2 comments
mpbarbosa
fix(deps): bump the minorandpatch group across 1 directory with 10 updates

KohlbacherLab/homepage #249

5.3.5 → 5.3.8 Patch PR
Open about 1 month ago 1 comment
KohlbacherLab
Bump the development-dependencies group across 1 directory with 10 updates

gifhuppp/icons #159

5.3.7 → 5.3.8 Patch PR
Closed about 2 months ago 1 comment
gifhuppp
Bump the npm_and_yarn group across 1 directory with 3 updates

ONSdigital/sdc-responses-dashboard #196

3.4.1 → 5.0.0 Major PR
Open about 2 months ago 2 comments
ONSdigital
NPM-dependencies: Bump the npm-updates group across 3 directories with 16 updates

Harvester57/keysas #22

5.3.5 → 5.3.8 Patch PR
Closed about 2 months ago 1 comment
Harvester57
Bump bootstrap from 5.1.3 to 5.3.8

RMITLibrary/rmit-ui #329

5.1.3 → 5.3.8 Minor PR
Closed about 2 months ago 3 comments
RMITLibrary
Bump the npm_and_yarn group across 1 directory with 4 updates

otvorenesudy/otvorenesudy-prokuratura #42

4.0.0 → 5.0.0 Major PR
Open about 2 months ago 5 comments
otvorenesudy
fix(deps): bump the minorandpatch group with 35 updates

authup/authup #2751

5.3.7 → 5.3.8 Patch PR
Closed about 2 months ago 3 comments
authup
DEPENDABOT VERSION UPDATES: Bump bootstrap from 5.3.1 to 5.3.8 in /frontend

qqwayne/mona-demo-20251125 #4

5.3.1 → 5.3.8 Patch PR
Open about 2 months ago 1 comment
qqwayne
Bump bootstrap from 5.1.3 to 5.3.8

VardaPanchal005/Portfolio #48

5.1.3 → 5.3.8 Minor PR
Open about 2 months ago 2 comments
VardaPanchal005
web: bump bootstrap from 4.6.2 to 5.3.8 in /web

goauthentik/authentik #18248

4.6.2 → 5.3.8 Major PR
Open 2 months ago 5 comments
goauthentik
chore(deps): bump bootstrap from 3.1.1 to 5.0.0 in /e2e/fixtures/npm/simple in the npm_and_yarn group across 1 directory

herodevs/cli #421

3.1.1 → 5.0.0 Major PR
Closed 2 months ago 1 comment
herodevs
chore(deps-dev): bump bootstrap from 4.6.2 to 5.3.8

tdamsma/yeptrainingen #476

4.6.2 → 5.3.8 Major PR
Open 2 months ago 2 comments
tdamsma
Bump the all-updates group across 1 directory with 22 updates

brandonladen/My_Digital_Portfolio #16

5.3.6 → 5.3.8 Patch PR
Open 2 months ago 1 comment
brandonladen
DEPENDABOT VERSION UPDATES: Bump bootstrap from 5.3.1 to 5.3.8 in /frontend

im-sandbox-williamtinfomagnus/mona-demo #1

5.3.1 → 5.3.8 Patch PR
Open 2 months ago 2 comments
im-sandbox-williamtinfomagnus
build(deps): bump bootstrap from 5.3.3 to 5.3.8

Lucs1590/Personal_Site #574

5.3.3 → 5.3.8 Patch PR
Open 2 months ago 2 comments
Lucs1590
Bump bootstrap from 5.3.7 to 5.3.8

aserto-dev/topaz-console #115

5.3.7 → 5.3.8 Patch PR
Open 2 months ago 1 comment
aserto-dev
Bump bootstrap from 5.3.3 to 5.3.8

Gaurav-vats-12/finance_manager #197

5.3.3 → 5.3.8 Patch PR
Open 2 months ago 2 comments
Gaurav-vats-12
Bump the all-ui-deps group across 1 directory with 69 updates

craftercms/studio-ui #4699

5.3.7 → 5.3.8 Patch PR
Open 3 months ago 1 comment
craftercms
Bump the all-ui-deps group across 1 directory with 68 updates

craftercms/studio-ui #4695

5.3.7 → 5.3.8 Patch PR
Open 3 months ago 1 comment
craftercms
Bump bootstrap from 5.3.7 to 5.3.8

JonnyIvan24/admin-lte-2025B #7

5.3.7 → 5.3.8 Patch PR
Open 3 months ago 2 comments
JonnyIvan24
Bump the npm_and_yarn group across 2 directories with 9 updates

Mika3578/Medusa #10

3.4.1 → 5.0.0 Major PR
Closed 3 months ago 1 comment
Mika3578
Bump the npm_and_yarn group across 3 directories with 11 updates

Mika3578/Medusa #7

3.4.1 → 5.0.0 Major PR
Closed 3 months ago 1 comment
Mika3578
Bump the sub-major group with 14 updates

PolicyEngine/policyengine-app #2793

5.3.7 → 5.3.8 Patch PR
Open 3 months ago 1 comment
PolicyEngine
chore(deps-dev): bump the development-dependencies group across 1 directory with 32 updates

LouisBarranqueiro/reapop #582

5.3.7 → 5.3.8 Patch PR
Closed 3 months ago 1 comment
LouisBarranqueiro
chore(deps): bump bootstrap from 3.4.1 to 5.3.8 in /superset-frontend

snsinahub-org/superset #85

3.4.1 → 5.3.8 Major PR
Open 3 months ago 1 comment
snsinahub-org
fix(deps): bump the minorandpatch group across 1 directory with 17 updates

tada5hi/vuecs #1458

5.3.5 → 5.3.8 Patch PR
Open 3 months ago 2 comments
tada5hi
fix(deps): bump the minorandpatch group across 1 directory with 17 updates

dnpm-dip/portal #1119

5.3.7 → 5.3.8 Patch PR
Closed 3 months ago 1 comment
dnpm-dip
chore(deps): bump bootstrap from 3.1.1 to 5.0.0 in /e2e/fixtures/npm/simple in the npm_and_yarn group across 1 directory

herodevs/cli #401

3.1.1 → 5.0.0 Major PR
Closed 3 months ago 1 comment
herodevs
build(deps): bump the minor-and-patch group across 1 directory with 9 updates

CircuitVerse/CircuitVerse #6317

5.3.3 → 5.3.8 Patch PR
Closed 3 months ago 3 comments
CircuitVerse
Bump bootstrap from 5.2.0-beta1 to 5.3.8

Wheel00/iRep-Air #290

5.2.0-beta1 → 5.3.8 Minor PR
Closed 3 months ago 4 comments
Wheel00
chore(deps-dev): Bump the node-dependencies group across 1 directory with 13 updates

peasee/roll #62

5.3.7 → 5.3.8 Patch PR
Closed 3 months ago 1 comment
peasee
chore(deps): bump bootstrap from 5.3.6 to 5.3.8 in /client

pandavolador/boxahe #3

5.3.6 → 5.3.8 Patch PR
Open 3 months ago 1 comment
pandavolador
chore(deps-dev): bump bootstrap from 4.6.2 to 5.3.8

hamza094/ProFresh #33

4.6.2 → 5.3.8 Major PR
Open 3 months ago 2 comments
hamza094
Bump bootstrap from 5.2.2 to 5.3.8 in /big-dipper

faisalnaveedRNS/pylons #1165

5.2.2 → 5.3.8 Minor PR
Open 3 months ago 2 comments
faisalnaveedRNS
Bump the all-ui-deps group across 1 directory with 65 updates

craftercms/studio-ui #4684

5.3.7 → 5.3.8 Patch PR
Open 3 months ago 2 comments
craftercms
Bump the npm group across 1 directory with 8 updates

THE-BWC/opserv #238

5.3.7 → 5.3.8 Patch PR
Closed 3 months ago 1 comment
THE-BWC
Bump the patch-updates group across 1 directory with 13 updates

afarago/blpy.attilafarago.hu #139

5.3.7 → 5.3.8 Patch PR
Open 3 months ago 3 comments
afarago
Package Details
Name: bootstrap
Ecosystem: npm
PURL Type: npm
Package URL: pkg:npm/bootstrap
JSON API: View JSON
Security Advisories

10

Active advisories
MODERATE 10
View All npm Advisories
Package Information
Description:

The most popular front-end framework for developing responsive, mobile first projects on the web.

Repository: https://github.com/twbs/bootstrap
Homepage: https://getbootstrap.com/
Latest Release: 5.3.6
9 months ago
Dependent Repos: 874,564
Dependent Packages: 17,952
Downloads: 20,752,506
Ranking: Top 0.0383% by dependent repos Top 0.0595% by downloads Top 0.0059% by dependent pkgs
PR Status
Open 1,996 (48.9%)
Merged 780 (19.1%)
Closed 920 (22.6%)
PR Types
Removal 2 (0.0%)
Minor 332 (8.1%)
Major 824 (20.2%)
Patch 2,536 (62.2%)