Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

fastify

Ecosystem:
npm
Package URL:
pkg:npm/fastify
Total PRs:
3,328 Dependabot PRs
Latest PR:
6 days ago
Unique Repositories:
1,285 repositories
Unique Repos (30 days):
47 repositories
Security Advisories
Denial of Service vulnerability with large JSON payloads in fastify
GHSA-mq6c-fh97-4gwv CVE-2018-3711 HIGH published almost 8 years ago • updated 4 days ago
Affected versions of `fastify` are vulnerable to a denial of service when processing a request with `Content-Type` set to `application/json` and a ...
Fastify vulnerable to invalid content-type parsing, which could lead to validation bypass
GHSA-mg2h-6x62-wpwc CVE-2025-32442 HIGH published about 1 year ago • updated 4 days ago
### Impact In applications that specify different validation strategies for different content types, it's possible to bypass the validation by pro...
Fastify's Content-Type header tab character allows body validation bypass
GHSA-jx2c-rxcm-jvmq CVE-2026-25223 HIGH published 4 months ago • updated 16 days ago
### Impact A validation bypass vulnerability exists in Fastify where request body validation schemas specified by Content-Type can be completely c...
fastify vulnerable to denial of service via malicious Content-Type
GHSA-455w-c45v-86rg CVE-2022-39288 HIGH published over 3 years ago • updated 4 days ago
### Impact An attacker can send an invalid `Content-Type` header that can cause the application to crash, leading to a possible Denial of Service a...
Fastify: Incorrect Content-Type parsing can lead to CSRF attack
GHSA-3fjj-p79j-c9hh CVE-2022-41919 MODERATE published over 3 years ago • updated 4 days ago
### Impact The attacker can use the incorrect `Content-Type` to bypass the `Pre-Flight` checking of `fetch`. `fetch()` requests with Content-Type’...
View all 10 advisories
Recent PRs
RSS Feed
chore(deps): bump the npm_and_yarn group across 2 directories with 3 updates

Kaairofelipe/flowgram.ai #3

4.29.1 → 5.8.5 Major PR
Closed 6 days ago 1 comment
Kaairofelipe
build(deps): bump the npm_and_yarn group across 2 directories with 20 updates

beauNate/happier #3

5.8.4 → 5.8.5 Patch PR
Closed 6 days ago 1 comment
beauNate
chore(deps): bump the patch-production group with 10 updates

HeadySystems/heady-ai #168

5.8.4 → 5.8.5 Patch PR
Closed 6 days ago 1 comment
HeadySystems
chore(deps): bump the dependencies group across 1 directory with 20 updates

singi-labs/barazo-api #227

5.7.4 → 5.8.5 Minor PR
Open 13 days ago 4 comments
singi-labs
build(deps): bump the npm_and_yarn group across 1 directory with 5 updates

prof-guifonseca/gota-certa #38

4.28.1 → 5.8.5 Major PR
Closed 13 days ago 3 comments
prof-guifonseca
build(deps): Bump fastify from 4.29.1 to 5.8.5

masreykangtrade-oss/polymarket-aldilla #10

4.29.1 → 5.8.5 Major PR
Closed 14 days ago 2 comments
masreykangtrade-oss
Bump the npm_and_yarn group across 1 directory with 3 updates

c6ai/stagehand #15

5.6.2 → 5.8.5 Minor PR
Closed 15 days ago 1 comment
c6ai
chore(deps): bump the npm_and_yarn group across 3 directories with 4 updates

quinnjr/armature #194

5.7.4 → 5.8.5 Minor PR
Open 15 days ago 1 comment
quinnjr
chore(deps): bump the npm_and_yarn group across 2 directories with 3 updates

quinnjr/armature #193

5.7.4 → 5.8.5 Minor PR
Open 15 days ago 1 comment
quinnjr
chore(deps): bump the npm_and_yarn group across 4 directories with 17 updates

AlDracuX/RuVector #5

4.29.1 → 5.8.5 Major PR
Closed 16 days ago 1 comment
AlDracuX
chore(deps): bump the npm_and_yarn group across 3 directories with 7 updates

Metatronsdoob369/Domicile #36

5.3.3 → 5.8.5 Minor PR
Open 16 days ago 1 comment
Metatronsdoob369
chore(deps): bump the npm_and_yarn group across 1 directory with 6 updates

stvn101/typescript-sdk #1

5.8.4 → 5.8.5 Patch PR
Open 16 days ago 2 comments
stvn101
chore(deps): Bump the minor-and-patch group with 34 updates

Yambr/openwhispr-server #6

5.0.0 → 5.8.5 Minor PR
Closed 16 days ago 1 comment
Yambr
chore(deps): bump fastify from 4.29.1 to 5.8.5 in /packages/runtime/nodejs in the npm_and_yarn group across 1 directory

Kaairofelipe/flowgram.ai #1

4.29.1 → 5.8.5 Major PR
Closed 16 days ago 1 comment
Kaairofelipe
Bump fastify from 5.8.2 to 5.8.5

w1ck3ds0d4/VeilBreak #206

5.8.2 → 5.8.5 Patch PR
Open 17 days ago 2 comments
w1ck3ds0d4
chore(deps): bump the npm_and_yarn group across 2 directories with 27 updates

towan912/misskey #1

5.6.2 → 5.8.5 Minor PR
Open 17 days ago 1 comment
towan912
chore(deps): bump the npm_and_yarn group across 2 directories with 20 updates

thirdweb-dev/engine #942

4.29.0 → 5.8.5 Major PR
Open 19 days ago 2 comments
thirdweb-dev
chore(deps)(deps): bump the production-dependencies group across 1 directory with 34 updates

Outboxy/outboxy #32

5.8.1 → 5.8.5 Patch PR
Open 19 days ago 1 comment
Outboxy
chore(deps): Bump the backend-minor-patch group across 1 directory with 13 updates

Lexcom-Systems-Group-Inc/esexpress-v2 #23

5.8.4 → 5.8.5 Patch PR
Open 20 days ago 2 comments
Lexcom-Systems-Group-Inc
chore(deps): bump the production-dependencies group across 1 directory with 4 updates

tbmobb813/United-Dev-Platform- #110

5.8.2 → 5.8.5 Patch PR
Open 21 days ago 7 comments
tbmobb813
chore(deps): bump the npm-dependencies group across 1 directory with 15 updates

macel94/ip-geo-analytics #98

5.8.2 → 5.8.5 Patch PR
Closed 21 days ago 1 comment
macel94
chore(deps): bump the production-dependencies group with 16 updates

KwakuBoohene/casual-padel-tourneys #4

5.8.2 → 5.8.5 Patch PR
Closed 21 days ago 1 comment
KwakuBoohene
⬆️ Bump fastify from 5.7.4 to 5.8.5

David-Antolick/ytvd #5

5.7.4 → 5.8.5 Minor PR
Open 23 days ago 1 comment
David-Antolick
Bump the npm_and_yarn group across 1 directory with 2 updates

PhillyUrbs/PowerPlatformTemplate #1

4.29.1 → 5.8.5 Major PR
Closed 23 days ago 1 comment
PhillyUrbs
chore(deps): bump the npm_and_yarn group across 3 directories with 24 updates

anumethod/openai-agents-js #29

5.3.3 → 5.8.5 Minor PR
Open 24 days ago 2 comments
anumethod
Bump the npm_and_yarn group across 12 directories with 20 updates

CaffeeLake/bun #337

5.2.2 → 5.8.5 Minor PR
Open 24 days ago 1 comment
CaffeeLake
Bump the npm_and_yarn group across 11 directories with 22 updates

CaffeeLake/bun #335

5.2.2 → 5.8.5 Minor PR
Open 24 days ago 2 comments
CaffeeLake
Bump the npm_and_yarn group across 11 directories with 17 updates

CaffeeLake/bun #334

5.2.2 → 5.8.5 Minor PR
Open 24 days ago 1 comment
CaffeeLake
chore(deps): Bump the backend-minor-patch group across 1 directory with 12 updates

Lexcom-Systems-Group-Inc/esexpress-v2 #22

5.8.4 → 5.8.5 Patch PR
Open 24 days ago 2 comments
Lexcom-Systems-Group-Inc
Bump the npm_and_yarn group across 11 directories with 17 updates

CaffeeLake/bun #332

5.2.2 → 5.8.5 Minor PR
Closed 24 days ago 2 comments
CaffeeLake
chore(deps): bump the npm_and_yarn group across 3 directories with 4 updates

GlacierEQ/openai-agents-js #25

5.8.3 → 5.8.5 Patch PR
Closed 24 days ago 3 comments
GlacierEQ
chore(deps): bump the npm_and_yarn group across 4 directories with 13 updates

imrulo/ai #5

5.1.0 → 5.8.5 Minor PR
Open 25 days ago 2 comments
imrulo
chore(deps): bump the npm_and_yarn group across 3 directories with 18 updates

alialobidm/lodestar #6

4.26.2 → 5.8.5 Major PR
Open 25 days ago 1 comment
alialobidm
chore(deps): bump the npm_and_yarn group across 1 directory with 19 updates

fork-the-planet/agents #44

5.8.2 → 5.8.5 Patch PR
Closed 25 days ago 1 comment
fork-the-planet
chore(deps): bump the npm_and_yarn group across 4 directories with 6 updates

qkal/openai-agents #23

5.7.3 → 5.8.5 Minor PR
Closed 25 days ago 1 comment
qkal
chore(deps): bump the npm_and_yarn group across 3 directories with 12 updates

JT5D/openai-agents-js #25

5.3.3 → 5.8.5 Minor PR
Closed 26 days ago 1 comment
JT5D
chore(deps): bump the npm_and_yarn group across 3 directories with 8 updates

Metatronsdoob369/Domicile #32

5.3.3 → 5.8.5 Minor PR
Closed 26 days ago 2 comments
Metatronsdoob369
chore(deps): bump the npm_and_yarn group across 3 directories with 12 updates

GlacierEQ/openai-agents-js #23

5.3.3 → 5.8.5 Minor PR
Open 26 days ago 2 comments
GlacierEQ
chore(deps): bump the minor-and-patch group across 1 directory with 43 updates

pohlai88/AFENDA-NEXUS #24

5.7.4 → 5.8.5 Minor PR
Open 27 days ago 1 comment
pohlai88
chore(deps): bump the npm_and_yarn group across 10 directories with 20 updates

Surfndez/bun #27

5.2.2 → 5.8.5 Minor PR
Closed 27 days ago 1 comment
Surfndez
chore(deps): bump the npm_and_yarn group across 3 directories with 8 updates

Metatronsdoob369/Domicile #31

5.3.3 → 5.8.5 Minor PR
Open 27 days ago 1 comment
Metatronsdoob369
chore(deps): bump the minor-and-patch group across 1 directory with 16 updates

zkorum/agora #1043

5.8.4 → 5.8.5 Patch PR
Closed 28 days ago 3 comments
zkorum
Bump the runtime-dependencies group across 5 directories with 17 updates

mmolotov/femi #45

5.8.4 → 5.8.5 Patch PR
Open 28 days ago 2 comments
mmolotov
deps: bump the minor-and-patch group across 1 directory with 64 updates

steiner385/reasonbridge #1269

5.8.4 → 5.8.5 Patch PR
Closed 28 days ago 1 comment
steiner385
Bump the production-minor-patch group with 35 updates

percy-main/website-v2 #267

5.8.3 → 5.8.5 Patch PR
Open 28 days ago 2 comments
percy-main
Bump fastify from 4.29.1 to 5.8.5 in /server

ShAuRyA-Noodle/Child-Development-Intelligence #1

4.29.1 → 5.8.5 Major PR
Closed 28 days ago 2 comments
ShAuRyA-Noodle
chore(deps): bump fastify from 4.29.1 to 5.8.5

collinsezedike/meridian #33

4.29.1 → 5.8.5 Major PR
Closed 29 days ago 3 comments
collinsezedike
Bump the npm_and_yarn group across 5 directories with 8 updates

CaffeeLake/bun #312

5.2.2 → 5.8.5 Minor PR
Closed 29 days ago 1 comment
CaffeeLake
chore(deps): bump the npm_and_yarn group across 5 directories with 10 updates

rohit-gohri/yarn-lock-to-package-json #93

4.15.0 → 4.29.1 Minor PR
Open 30 days ago 1 comment
rohit-gohri
chore(deps): bump the npm_and_yarn group across 3 directories with 22 updates

AntwerpDesignsIonity/RuVector #10

4.29.1 → 5.8.5 Major PR
Closed 30 days ago 1 comment
AntwerpDesignsIonity
Package Details
Name: fastify
Ecosystem: npm
PURL Type: npm
Package URL: pkg:npm/fastify
JSON API: View JSON
Security Advisories

10

Active advisories
HIGH 5
MODERATE 4
LOW 1
View All npm Advisories
Package Information
Description:

Fast and low overhead web framework, for Node.js

Repository: https://github.com/fastify/fastify
Homepage: https://fastify.dev/
Latest Release: 5.3.3
about 1 year ago
Dependent Repos: 16,712
Dependent Packages: 3,270
Downloads: 10,856,076
Ranking: Top 0.206% by dependent repos Top 0.1136% by downloads Top 0.0251% by dependent pkgs
PR Status
Open 1,549 (46.5%)
Merged 308 (9.3%)
Closed 1,263 (38.0%)
PR Types
Major 649 (19.5%)
Minor 1,681 (50.5%)
Patch 748 (22.5%)
Removal 36 (1.1%)