Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

express

Ecosystem:
npm
Package URL:
pkg:npm/express
Total PRs:
31,577 Dependabot PRs
Latest PR:
about 7 hours ago
Unique Repositories:
19,327 repositories
Unique Repos (30 days):
328 repositories
Security Advisories
Express ressource injection
GHSA-cm5g-3pgc-8rg4 CVE-2024-10491 MODERATE published over 1 year ago • updated 18 days ago
A vulnerability has been identified in the Express response.links function, allowing for arbitrary resource injection in the Link header when unsan...
express vulnerable to XSS via response.redirect()
GHSA-qw6h-vgh9-j6wx CVE-2024-43796 LOW published over 1 year ago • updated 2 days ago
### Impact In express <4.20.0, passing untrusted user input - even after sanitizing it - to `response.redirect()` may execute untrusted code ### ...
Express Open Redirect vulnerability
GHSA-jj78-5fmv-mv28 CVE-2024-9266 LOW published over 1 year ago • updated about 1 month ago
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Express. This vulnerability affects the use of the Express Response object. Th...
Express.js Open Redirect in malformed URLs
GHSA-rv95-896h-c2vc CVE-2024-29041 MODERATE published about 2 years ago • updated 2 days ago
### Impact Versions of Express.js prior to 4.19.2 and pre-release alpha and beta versions before 5.0.0-beta.3 are affected by an open redirect vul...
No Charset in Content-Type Header in express
GHSA-gpvr-g6gh-9mc2 CVE-2014-6393 MODERATE published over 7 years ago • updated about 17 hours ago
Vulnerable versions of express do not specify a charset field in the content-type header while displaying 400 level response messages. The lack of ...
Recent PRs
RSS Feed
Bump express from 4.22.1 to 5.2.1

ironclawdevs27/Argus #5

4.22.1 → 5.2.1 Major PR
Open about 7 hours ago 1 comment
ironclawdevs27
Bump the npm_and_yarn group across 1 directory with 13 updates

Dct555/1inch-token #3

4.19.2 → 4.22.2 Minor PR
Open about 12 hours ago 1 comment
Dct555
build(deps): bump the production-deps group with 19 updates

rojaspardopaul/deyanira-web #16

4.22.1 → 5.2.1 Major PR
Open about 13 hours ago 1 comment
rojaspardopaul
build(deps): bump express from 4.17.1 to 4.22.2 in /single-page-application

tekitouuser2018/BingNewsSearch #13

4.17.1 → 4.22.2 Minor PR
Closed about 18 hours ago 1 comment
tekitouuser2018
chore(deps): bump the npm-dependencies group across 1 directory with 10 updates

bfoster59/SSH-Commander #8

4.22.2 → 5.2.1 Major PR
Closed about 21 hours ago 2 comments
bfoster59
chore(deps): bump express and @types/express in /server

maringelix/dx03 #21

4.22.2 → 5.2.1 Major PR
Closed 2 days ago 3 comments
maringelix
Bump express from 4.22.1 to 5.2.1 in /scraper

peterdsp/Magnetio #11

4.22.1 → 5.2.1 Major PR
Closed 2 days ago 2 comments
peterdsp
Bump the npm_and_yarn group across 1 directory with 16 updates

ali963git/keycloak-nodejs-connect #11

4.21.2 → 4.22.0 Minor PR
Open 3 days ago 3 comments
ali963git
Bump the npm_and_yarn group across 1 directory with 16 updates

zhjngli/the-principles-and-feelings-cookbook #70

4.18.1 → 4.22.2 Minor PR
Closed 3 days ago 2 comments
zhjngli
Bump the npm-dependencies group across 1 directory with 21 updates

Abhi190702/DeploySense #18

4.22.2 → 5.2.1 Major PR
Open 4 days ago 1 comment
Abhi190702
chore(deps): bump qs and express

shazzar00ni/paperlyte-v2 #1022

4.22.1 → 4.22.2 Patch PR
Closed 4 days ago 6 comments
shazzar00ni
Bump qs and express

bameyrick/animated-weather-icon #85

4.21.2 → 4.22.2 Minor PR
Open 4 days ago 1 comment
bameyrick
chore(deps): bump qs and express

Obelyth/GoProQuikPlus #52

4.22.1 → 4.22.2 Patch PR
Open 4 days ago 4 comments
Obelyth
chore(deps): bump the production-patches group across 1 directory with 5 updates

lovely1day/ai-animation-factory #21

4.22.1 → 4.22.2 Patch PR
Open 4 days ago 3 comments
lovely1day
Bump qs, body-parser and express

choan312/choan_portfolio #68

4.22.1 → 4.22.2 Patch PR
Closed 4 days ago 1 comment
choan312
Bump the npm_and_yarn group across 1 directory with 31 updates

muhammadali1995/muck-23 #6

4.17.2 → 4.22.2 Minor PR
Open 4 days ago 1 comment
muhammadali1995
chore(deps): bump the production-dependencies group across 1 directory with 16 updates

mebratu21-arch/choco-ops-cloud #59

4.22.1 → 5.2.1 Major PR
Open 5 days ago 2 comments
mebratu21-arch
build(deps): bump the all group in /api with 17 updates

gsaraiva2109/VinylVault #94

4.22.1 → 5.2.1 Major PR
Open 5 days ago 2 comments
gsaraiva2109
deps(deps): bump express from 4.22.2 to 5.2.1

farhanzamir7/CSP451-CheckPoint3-Farhan #5

4.22.2 → 5.2.1 Major PR
Open 5 days ago 1 comment
farhanzamir7
deps(functions): bump express from 4.22.1 to 4.22.2 in /functions

jdealtia-sys/nobigdealwithjoedeal.com #542

4.22.1 → 4.22.2 Patch PR
Open 5 days ago 1 comment
jdealtia-sys
build(deps): Bump express from 4.22.2 to 5.2.1 in /examples/nodejs-app

kirilurbonas/pipeline-armor #9

4.22.2 → 5.2.1 Major PR
Open 5 days ago 6 comments
kirilurbonas
build(deps): bump the bsv-workspace group across 1 directory with 59 updates

bsv-blockchain/ts-stack #149

4.22.1 → 5.2.1 Major PR
Open 5 days ago 1 comment
bsv-blockchain
chore(deps-server): bump the server-minor-patch group across 1 directory with 16 updates

trendywink247-afk/GeekSpace2.0 #335

4.22.1 → 4.22.2 Patch PR
Open 5 days ago 3 comments
trendywink247-afk
chore(deps): bump the production-dependencies group across 1 directory with 44 updates

zone17/sovren #267

4.22.1 → 4.22.2 Patch PR
Open 6 days ago 2 comments
zone17
npm: bump the express-stack group across 1 directory with 3 updates

mehmetyasinuzun/UniScheduler #12

4.22.1 → 5.2.1 Major PR
Open 6 days ago 1 comment
mehmetyasinuzun
chore(deps): bump the server-deps group across 1 directory with 14 updates

Builder106/MedCore #9

4.22.1 → 5.2.1 Major PR
Open 6 days ago 2 comments
Builder106
chore(deps): bump express from 4.22.2 to 5.2.1

ChuYanLon/telegram.nvim #11

4.22.2 → 5.2.1 Major PR
Closed 6 days ago 3 comments
ChuYanLon
deps: bump the production-dependencies group across 1 directory with 55 updates

GeorgeMwiki/BOSSNYUMBA101 #161

4.22.1 → 5.2.1 Major PR
Open 6 days ago 1 comment
GeorgeMwiki
build(deps): Bump qs and express

CrashBytes/volarybrowser #1

4.22.1 → 4.22.2 Patch PR
Open 6 days ago 1 comment
CrashBytes
Bump the npm_and_yarn group across 16 directories with 20 updates

jcstein/next.js #21

4.17.0 → 4.22.0 Minor PR
Closed 6 days ago 1 comment
jcstein
Bump the production-dependencies group across 1 directory with 21 updates

abishkar123/Resume-optimization-api #23

5.1.0 → 5.2.1 Minor PR
Open 6 days ago 1 comment
abishkar123
chore(deps): bump qs and express in /website

jarvis-terragon/hermes-agent #4

4.22.1 → 4.22.2 Patch PR
Closed 6 days ago 1 comment
jarvis-terragon
Bump qs and express in /web

ThaiMedeiros/ecoleta #128

4.21.1 → 4.22.2 Minor PR
Closed 6 days ago 1 comment
ThaiMedeiros
Bump the npm_and_yarn group across 13 directories with 20 updates

jcstein/next.js #19

4.17.0 → 4.22.0 Minor PR
Closed 6 days ago 1 comment
jcstein
chore(deps): bump qs and express in /client

bondigoo-admin/bondigoo-platform #704

4.21.2 → 4.22.2 Minor PR
Open 6 days ago 2 comments
bondigoo-admin
chore(deps)(deps): bump express and @types/express in /apps/backend

tobias363/Spillorama-system #1760

4.22.1 → 5.2.1 Major PR
Open 6 days ago 7 comments
tobias363
build(deps): bump path-to-regexp and express

RajSanjel/blogFI-backend #8

4.21.1 → 4.22.2 Minor PR
Open 7 days ago 1 comment
RajSanjel
chore(deps-dev): bump express and @types/express in /packages/mpp

mishrasanjeev/grantex #424

4.22.1 → 5.2.1 Major PR
Open 7 days ago 2 comments
mishrasanjeev
chore(deps-dev): bump express and @types/express in /packages/express

mishrasanjeev/grantex #410

4.22.2 → 5.2.1 Major PR
Open 7 days ago 1 comment
mishrasanjeev
chore(deps): bump express from 5.1.0 to 5.2.1 in /server

KamilDziuk/yourAssistantAI #10

5.1.0 → 5.2.1 Minor PR
Closed 7 days ago 1 comment
KamilDziuk
build(deps): bump path-to-regexp and express

MikkyPrestige/machala-laundry #22

4.18.2 → 4.22.2 Minor PR
Closed 7 days ago 3 comments
MikkyPrestige
chore(deps): bump express from 4.22.1 to 5.2.1 in /server

WxboySuper/Graphical-Forecast-Creator #337

4.22.1 → 5.2.1 Major PR
Open 7 days ago 5 comments
WxboySuper
chore(deps):(deps): bump qs and express

Universal-Standard/PROJECT-SWARM #106

4.22.1 → 4.22.2 Patch PR
Open 7 days ago 4 comments
Universal-Standard
Bump qs and express in /samples/NodeJSElectron

bilbospocketses/velopack #10

4.22.1 → 4.22.2 Patch PR
Closed 7 days ago 1 comment
bilbospocketses
chore(deps): bump the npm-version-updates group with 85 updates

wmishak404/laica #104

4.22.1 → 5.2.1 Major PR
Closed 7 days ago 3 comments
wmishak404
build(deps): Bump qs and express

voiceboxi/PlanMaster #3

4.22.1 → 4.22.2 Patch PR
Open 7 days ago 1 comment
voiceboxi
chore(deps): bump qs and express

srotzin/hive-mcp-barter #5

4.22.1 → 4.22.2 Patch PR
Open 7 days ago 2 comments
srotzin
chore(deps): bump qs, body-parser and express

natechsa/ZureMap #66

4.22.1 → 4.22.2 Patch PR
Closed 7 days ago 4 comments
natechsa
build(deps): bump qs and express

nathanmcnulty/nodoc #50

4.22.1 → 4.22.2 Patch PR
Open 7 days ago 1 comment
nathanmcnulty
Bump qs and express in /backend

jtrinidad1987/weatherApp #15

4.22.1 → 4.22.2 Patch PR
Open 7 days ago 4 comments
jtrinidad1987
Package Details
Name: express
Ecosystem: npm
PURL Type: npm
Package URL: pkg:npm/express
JSON API: View JSON
Security Advisories

5

Active advisories
MODERATE 3
LOW 2
View All npm Advisories
Package Information
Description:

Fast, unopinionated, minimalist web framework

Repository: https://github.com/expressjs/express
Homepage: https://expressjs.com/
Latest Release: 5.1.0
about 1 year ago
Dependent Repos: 1,853,938
Dependent Packages: 93,237
Downloads: 187,306,052
Ranking: Top 0.0174% by dependent repos Top 0.0112% by downloads Top 0.001% by dependent pkgs
PR Status
Open 12,765 (40.4%)
Merged 2,651 (8.4%)
Closed 14,200 (45.0%)
PR Types
Major 3,517 (11.1%)
Minor 23,787 (75.3%)
Patch 1,980 (6.3%)
Removal 19 (0.1%)