Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

express

Ecosystem:
npm
Package URL:
pkg:npm/express
Total PRs:
29,162 Dependabot PRs
Latest PR:
about 2 hours ago
Unique Repositories:
17,598 repositories
Unique Repos (30 days):
866 repositories
Security Advisories
Express.js Open Redirect in malformed URLs
GHSA-rv95-896h-c2vc CVE-2024-29041 MODERATE published almost 2 years ago • updated about 12 hours ago
### Impact Versions of Express.js prior to 4.19.2 and pre-release alpha and beta versions before 5.0.0-beta.3 are affected by an open redirect vul...
Express ressource injection
GHSA-cm5g-3pgc-8rg4 CVE-2024-10491 MODERATE published over 1 year ago • updated about 9 hours ago
A vulnerability has been identified in the Express response.links function, allowing for arbitrary resource injection in the Link header when unsan...
express vulnerable to XSS via response.redirect()
GHSA-qw6h-vgh9-j6wx CVE-2024-43796 LOW published over 1 year ago • updated about 9 hours ago
### Impact In express <4.20.0, passing untrusted user input - even after sanitizing it - to `response.redirect()` may execute untrusted code ### ...
No Charset in Content-Type Header in express
GHSA-gpvr-g6gh-9mc2 CVE-2014-6393 MODERATE published over 7 years ago • updated about 9 hours ago
Vulnerable versions of express do not specify a charset field in the content-type header while displaying 400 level response messages. The lack of ...
Express Open Redirect vulnerability
GHSA-jj78-5fmv-mv28 CVE-2024-9266 LOW published over 1 year ago • updated about 9 hours ago
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Express. This vulnerability affects the use of the Express Response object. Th...
Recent PRs
RSS Feed
chore(deps): bump qs and express

pinkycollie/NegraRosa #20

4.21.2 → 4.22.1 Minor PR
Open about 2 hours ago 1 comment
pinkycollie
chore(deps): bump express from 4.17.1 to 4.22.1

Jacke/metrics #422

4.17.1 → 4.22.1 Minor PR
Open about 2 hours ago 1 comment
Jacke
Bump express from 4.22.1 to 5.2.1

sehawq/sehawq.db #2

4.22.1 → 5.2.1 Major PR
Closed about 4 hours ago 4 comments
sehawq
Bump qs, body-parser and express in /cors/ecommapp

gengle/code-examples #193

4.17.1 → 4.22.1 Minor PR
Open about 6 hours ago 1 comment
gengle
chore(deps): bump the npm_and_yarn group across 1 directory with 35 updates

daudhiyaa/fp-grafkom #1

4.18.2 → 4.22.1 Minor PR
Open about 11 hours ago 1 comment
daudhiyaa
build(deps): bump qs, browser-sync and express

mirazhhi/VocabularyTrainer #34

4.17.1 → 4.22.1 Minor PR
Closed about 11 hours ago 1 comment
mirazhhi
chore(deps): bump qs, body-parser and express

quay/quay #5078

4.21.0 → 4.22.1 Minor PR
Closed about 18 hours ago 4 comments
quay
chore(deps): bump express from 4.22.1 to 5.2.1 in /apps/backend

greg-gzillion/TX #28

4.22.1 → 5.2.1 Major PR
Open about 21 hours ago 1 comment
greg-gzillion
chore(deps): bump the production-dependencies group across 1 directory with 9 updates

emo877135-netizen/automate #15

4.21.2 → 4.22.1 Minor PR
Open about 23 hours ago 1 comment
emo877135-netizen
Bump path-to-regexp and express in /react-frontend

JaminYip/portfolio #4

4.17.1 → 4.22.1 Minor PR
Open about 23 hours ago 2 comments
JaminYip
chore(deps): bump the production-dependencies group across 1 directory with 42 updates

sjkncs/UI-TARS-desktop #22

5.1.0 → 5.2.1 Minor PR
Open about 23 hours ago 1 comment
sjkncs
chore(deps): bump express from 4.22.1 to 5.2.1

bhavinvirani/habit-tracker-with-openclaw #20

4.22.1 → 5.2.1 Major PR
Closed 1 day ago 4 comments
bhavinvirani
chore(deps): bump express and @types/express in /apps/backend

greg-gzillion/TX #22

4.22.1 → 5.2.1 Major PR
Open 1 day ago 3 comments
greg-gzillion
Bump cookie and express

Audie80/personnel-beneteau-back #16

4.17.1 → 4.22.1 Minor PR
Closed 1 day ago 2 comments
Audie80
Bump path-to-regexp and express

Audie80/personnel-beneteau-back #14

4.17.1 → 4.22.1 Minor PR
Closed 1 day ago 2 comments
Audie80
Bump cookie and express

Audie80/lesptitscocosBack #7

4.18.2 → 4.22.1 Minor PR
Closed 1 day ago 1 comment
Audie80
Bump qs, @vue/cli-plugin-router and express in /vue-materialize-dock-modal

gouthamrangarajan/Vuejs #949

4.19.2 → 4.22.1 Minor PR
Closed 1 day ago 1 comment
gouthamrangarajan
deps(deps): bump the production-dependencies group across 1 directory with 57 updates

IndigoFenix/aac #7

4.21.2 → 4.22.1 Minor PR
Open 1 day ago 1 comment
IndigoFenix
Bump qs and express in /quiz-app

mtdowner/webdev #44

4.19.2 → 4.22.1 Minor PR
Open 2 days ago 1 comment
mtdowner
Bump qs and express

saadazghour/robot-friends #69

4.21.0 → 4.22.1 Minor PR
Closed 2 days ago 1 comment
saadazghour
chore(deps): bump express from 4.22.1 to 5.2.1

BlackRoad-OS/blackroad-ai-platform #7

4.22.1 → 5.2.1 Major PR
Open 2 days ago 1 comment
BlackRoad-OS
chore(deps): bump express and @types/express

omarespejel/SISNA #14

4.22.1 → 5.2.1 Major PR
Open 2 days ago 1 comment
omarespejel
Bump send and express

sejinjja/ePubReader #13

4.17.1 → 4.22.1 Minor PR
Closed 2 days ago 1 comment
sejinjja
Bump express from 4.18.2 to 4.22.0

jesusgm/mockapi #13

4.18.2 → 4.22.0 Minor PR
Closed 2 days ago 1 comment
jesusgm
Bump express from 4.22.1 to 5.2.1

TitanCore-Engine/servidor-motor #3

4.22.1 → 5.2.1 Major PR
Open 2 days ago 1 comment
TitanCore-Engine
Bump qs and express in /front-end

aesthetic-runs/aesthetic-runs #84

4.19.2 → 4.22.1 Minor PR
Closed 2 days ago 1 comment
aesthetic-runs
Bump express from 4.21.2 to 5.2.1

chillguyaQ-cmd/petezahgames-681c1 #2

4.21.2 → 5.2.1 Major PR
Open 2 days ago 1 comment
chillguyaQ-cmd
chore(deps): bump the npm_and_yarn group across 1 directory with 3 updates

Dargon789/web3.js #50

4.19.2 → 4.22.0 Minor PR
Open 2 days ago 1 comment
Dargon789
Bump send and express

zirodium/checker #5

4.18.2 → 4.22.1 Minor PR
Open 2 days ago 1 comment
zirodium
Bump express from 4.22.1 to 5.2.1 in /inventory-app/server

Vakiloc/Inventory #14

4.22.1 → 5.2.1 Major PR
Closed 2 days ago 2 comments
Vakiloc
Bump body-parser and express

HakierGrzonzo/reviewShuffle #8

4.18.2 → 4.22.1 Minor PR
Open 2 days ago 1 comment
HakierGrzonzo
Bump send and express

HakierGrzonzo/reviewShuffle #7

4.18.2 → 4.22.1 Minor PR
Open 2 days ago 1 comment
HakierGrzonzo
Bump express from 4.18.2 to 4.22.1

HakierGrzonzo/reviewShuffle #3

4.18.2 → 4.22.1 Minor PR
Closed 2 days ago 2 comments
HakierGrzonzo
chore(deps): bump the production-dependencies group across 1 directory with 41 updates

sjkncs/UI-TARS-desktop #15

5.1.0 → 5.2.1 Minor PR
Open 2 days ago 1 comment
sjkncs
build(deps): bump express from 4.19.2 to 4.22.0

cathiele/website-starter #16

4.19.2 → 4.22.0 Minor PR
Closed 2 days ago 1 comment
cathiele
chore(deps)(deps): bump express from 4.22.1 to 5.2.1 in /server

deedk822-lang/vaal-ai-empire-site #47

4.22.1 → 5.2.1 Major PR
Closed 2 days ago 3 comments
deedk822-lang
build(deps): bump express and @types/express in /backend

selimhehe1/pattamap #109

4.22.1 → 5.2.1 Major PR
Open 3 days ago 7 comments
selimhehe1
Bump qs and express in /testing/fake-llm-server

HeXx123321/proteaos-demo #4

4.21.2 → 4.22.1 Minor PR
Open 3 days ago 1 comment
HeXx123321
Bump qs and express in /sky/dashboard

gerg-org/skypilot #20

4.21.2 → 4.22.1 Minor PR
Open 3 days ago 2 comments
gerg-org
Bump qs and express

UMAYAL-N/mmm #13

4.21.2 → 4.22.1 Minor PR
Open 3 days ago 1 comment
UMAYAL-N
Bump qs and express

UMAYAL-N/mapmymemoir #14

4.21.2 → 4.22.1 Minor PR
Open 3 days ago 1 comment
UMAYAL-N
chore(deps): bump qs and express in /@ecomplus/storefront-framework/functions

CertifiedWebMaster/Netlify-GoogleStudio-GitHub #4

4.21.2 → 4.22.1 Minor PR
Open 3 days ago 1 comment
CertifiedWebMaster
Bump qs, body-parser and express

different-Breed/studio #9

4.21.2 → 4.22.1 Minor PR
Open 3 days ago 1 comment
different-Breed
build(deps): bump qs and express

yashrajdighe/my-react-workspace #12

4.21.2 → 4.22.1 Minor PR
Open 3 days ago 1 comment
yashrajdighe
build(deps): bump qs and express

balmasi/GlobalGlossary #8

4.21.2 → 4.22.1 Minor PR
Open 3 days ago 1 comment
balmasi
chore(deps): bump qs and express in /docs

massalabs/miden-vm #8

4.21.2 → 4.22.1 Minor PR
Open 3 days ago 1 comment
massalabs
🔒 [Security](deps): Bump qs and express

BlackRoad-OS/blackroad-os-docs #84

4.21.2 → 4.22.1 Minor PR
Open 3 days ago 3 comments
BlackRoad-OS
Bump qs and express in /javascript/files-up-and-down/hr_app_streaming

naamonbird6-eng/oracle-db-examples #6

4.21.2 → 4.22.1 Minor PR
Open 3 days ago 3 comments
naamonbird6-eng
Bump qs and express

alialobidm/dgbstats-server #7

4.21.2 → 4.22.1 Minor PR
Open 3 days ago 1 comment
alialobidm
Bump qs and express

Abhisheksinha1506/IdeaAvoid #9

4.21.2 → 4.22.1 Minor PR
Open 3 days ago 1 comment
Abhisheksinha1506
Package Details
Name: express
Ecosystem: npm
PURL Type: npm
Package URL: pkg:npm/express
JSON API: View JSON
Security Advisories

5

Active advisories
MODERATE 3
LOW 2
View All npm Advisories
Package Information
Description:

Fast, unopinionated, minimalist web framework

Repository: https://github.com/expressjs/express
Homepage: https://expressjs.com/
Latest Release: 5.1.0
11 months ago
Dependent Repos: 1,853,938
Dependent Packages: 93,237
Downloads: 187,306,052
Ranking: Top 0.0174% by dependent repos Top 0.0112% by downloads Top 0.001% by dependent pkgs
PR Status
Open 12,026 (41.3%)
Merged 2,649 (9.1%)
Closed 12,514 (42.9%)
PR Types
Removal 17 (0.1%)
Minor 22,052 (75.7%)
Major 3,086 (10.6%)
Patch 1,723 (5.9%)