Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

fastify

Ecosystem:
npm
Package URL:
pkg:npm/fastify
Total PRs:
2,642 Dependabot PRs
Latest PR:
about 4 hours ago
Unique Repositories:
969 repositories
Unique Repos (30 days):
158 repositories
Security Advisories
Fastify vulnerable to invalid content-type parsing, which could lead to validation bypass
GHSA-mg2h-6x62-wpwc CVE-2025-32442 HIGH published 11 months ago • updated 1 day ago
### Impact In applications that specify different validation strategies for different content types, it's possible to bypass the validation by pro...
Fastify: Incorrect Content-Type parsing can lead to CSRF attack
GHSA-3fjj-p79j-c9hh CVE-2022-41919 MODERATE published over 3 years ago • updated about 6 hours ago
### Impact The attacker can use the incorrect `Content-Type` to bypass the `Pre-Flight` checking of `fetch`. `fetch()` requests with Content-Type’...
fastify vulnerable to denial of service via malicious Content-Type
GHSA-455w-c45v-86rg CVE-2022-39288 HIGH published over 3 years ago • updated about 6 hours ago
### Impact An attacker can send an invalid `Content-Type` header that can cause the application to crash, leading to a possible Denial of Service a...
Denial of service in fastify
GHSA-xw5p-hw6r-2j98 CVE-2020-8192 MODERATE published over 5 years ago • updated about 6 hours ago
A denial of service vulnerability exists in Fastify v2.14.1 and v3.0.0-rc.4 that allows a malicious user to trigger resource exhaustion (when the a...
Fastify's Content-Type header tab character allows body validation bypass
GHSA-jx2c-rxcm-jvmq CVE-2026-25223 HIGH published about 1 month ago • updated 1 day ago
### Impact A validation bypass vulnerability exists in Fastify where request body validation schemas specified by Content-Type can be completely c...
View all 7 advisories
Recent PRs (filtered by: Patch PRs )
RSS Feed Clear filter
chore(deps): bump the test-versions group across 1 directory with 92 updates

DataDog/dd-trace-js #7698

5.7.1 → 5.7.4 Patch PR
Open about 4 hours ago 1 comment
DataDog
chore(deps): bump the test-versions group across 1 directory with 92 updates

DataDog/dd-trace-js #7649

5.7.1 → 5.7.4 Patch PR
Open 4 days ago 2 comments
DataDog
chore(deps): bump the test-versions group across 1 directory with 88 updates

DataDog/dd-trace-js #7623

5.7.1 → 5.7.4 Patch PR
Closed 9 days ago 4 comments
DataDog
chore(deps): bump the test-versions group across 1 directory with 87 updates

DataDog/dd-trace-js #7616

5.7.1 → 5.7.4 Patch PR
Closed 10 days ago 4 comments
DataDog
chore(deps): bump the production-dependencies group across 1 directory with 7 updates

neil-feris/certification-trainer #143

5.7.2 → 5.7.4 Patch PR
Open 11 days ago 2 comments
neil-feris
chore(deps): bump the dependencies group across 1 directory with 37 updates

agam-space/agam-space #48

5.7.2 → 5.7.4 Patch PR
Closed 13 days ago 1 comment
agam-space
chore(deps): bump the fastify group with 3 updates

plexica/plexica #18

5.7.3 → 5.7.4 Patch PR
Open 14 days ago 1 comment
plexica
chore(deps): bump the npm_and_yarn group across 1 directory with 3 updates

gingzaindy9999-a11y/vitest #2

5.7.2 → 5.7.3 Patch PR
Closed 14 days ago 1 comment
gingzaindy9999-a11y
build(deps): bump the npm-dependencies group across 1 directory with 18 updates

PatrionDigital/SURVIVOR #66

5.7.2 → 5.7.4 Patch PR
Closed 15 days ago 1 comment
PatrionDigital
chore(deps): bump the minor-and-patch group across 1 directory with 34 updates

zkorum/agora #564

5.7.3 → 5.7.4 Patch PR
Open 16 days ago 2 comments
zkorum
chore(deps-dev): bump fastify from 5.7.3 to 5.7.4

elastic/apm-agent-nodejs #4966

5.7.3 → 5.7.4 Patch PR
Open 17 days ago 1 comment
elastic
chore(deps): bump the test-versions group across 1 directory with 81 updates

DataDog/dd-trace-js #7553

5.7.1 → 5.7.4 Patch PR
Open 17 days ago 1 comment
DataDog
chore(deps-dev): bump fastify from 5.7.1 to 5.7.4 in /apps/api in the fastify-stack group

Pepetka/movies-app #131

5.7.1 → 5.7.4 Patch PR
Closed 17 days ago 1 comment
Pepetka
chore(deps-dev): bump fastify from 5.7.1 to 5.7.4 in /apps/api in the fastify-stack group

Pepetka/movies-app #110

5.7.1 → 5.7.4 Patch PR
Closed 17 days ago 1 comment
Pepetka
Bump fastify from 5.7.2 to 5.7.4 in the fastify group

noisebridge/donate-portal #27

5.7.2 → 5.7.4 Patch PR
Closed 18 days ago 1 comment
noisebridge
chore(deps-dev): bump fastify from 5.7.1 to 5.7.4 in /apps/api in the fastify-stack group

Pepetka/movies-app #67

5.7.1 → 5.7.4 Patch PR
Closed 18 days ago 1 comment
Pepetka
build(deps): Bump the fastify group across 1 directory with 3 updates

IlianMetre/app-template-backend #20

5.7.2 → 5.7.4 Patch PR
Open 21 days ago 1 comment
IlianMetre
chore(deps): bump the test-versions group across 1 directory with 76 updates

DataDog/dd-trace-js #7500

5.7.1 → 5.7.4 Patch PR
Open 23 days ago 4 comments
DataDog
BAU: Bump the production-dependencies group across 1 directory with 2 updates

govuk-one-login/account-components #465

5.7.3 → 5.7.4 Patch PR
Open 23 days ago 1 comment
govuk-one-login
build(deps): bump fastify from 5.7.2 to 5.7.3

BOTOOM/devmentorai #1

5.7.2 → 5.7.3 Patch PR
Open 24 days ago 2 comments
BOTOOM
BAU: Bump fastify from 5.7.3 to 5.7.4 in the production-dependencies group

govuk-one-login/account-components #460

5.7.3 → 5.7.4 Patch PR
Open 24 days ago 2 comments
govuk-one-login
chore(deps): bump the production-dependencies group with 37 updates

lootlog/monorepo #418

5.7.2 → 5.7.4 Patch PR
Open 25 days ago 2 comments
lootlog
chore(deps): bump the production-dependencies group across 1 directory with 4 updates

neil-feris/certification-trainer #128

5.7.2 → 5.7.4 Patch PR
Open 25 days ago 1 comment
neil-feris
deps: bump the dependencies group across 1 directory with 25 updates

white-board-io/white-board #60

5.7.0 → 5.7.4 Patch PR
Open 25 days ago 1 comment
white-board-io
chore(deps): bump the test-versions group across 1 directory with 73 updates

DataDog/dd-trace-js #7462

5.7.1 → 5.7.4 Patch PR
Open 26 days ago 3 comments
DataDog
deps: bump the production group across 1 directory with 43 updates

connorgallopo/Tracearr #338

5.7.1 → 5.7.4 Patch PR
Closed 27 days ago 1 comment
connorgallopo
build(deps): bump fastify from 5.7.2 to 5.7.4 in /backend

IT4Change/IT4C.dev #645

5.7.2 → 5.7.4 Patch PR
Open 28 days ago 1 comment
IT4Change
build(deps): bump fastify from 5.7.2 to 5.7.3 in /api

bojanrajkovic/unquote #1

5.7.2 → 5.7.3 Patch PR
Closed 30 days ago 2 comments
bojanrajkovic
Bump fastify from 5.7.2 to 5.7.4

lasmil/song-viewer-service #556

5.7.2 → 5.7.4 Patch PR
Closed about 1 month ago 1 comment
lasmil
Bump fastify from 5.7.2 to 5.7.3

graphql-hive/gateway #1911

5.7.2 → 5.7.3 Patch PR
Closed about 1 month ago 2 comments
graphql-hive
chore(deps): bump the npm-minor-patch group across 1 directory with 16 updates

Jeremy-Fleury/saas-boilerplate #55

5.7.2 → 5.7.4 Patch PR
Closed about 1 month ago 1 comment
Jeremy-Fleury
chore(deps): bump the test-versions group across 1 directory with 67 updates

DataDog/dd-trace-js #7417

5.7.1 → 5.7.2 Patch PR
Open about 1 month ago 2 comments
DataDog
chore(deps): bump fastify from 5.7.2 to 5.7.4

mdn/mdn-http-observatory #425

5.7.2 → 5.7.4 Patch PR
Open about 1 month ago 2 comments
mdn
chore(deps): Bump fastify from 5.7.2 to 5.7.4 in /apps/api

madfam-org/dhanam #216

5.7.2 → 5.7.4 Patch PR
Open about 1 month ago 1 comment
madfam-org
Bump fastify from 5.7.1 to 5.7.3 in the npm_and_yarn group across 1 directory

mrrfv/kvdb #89

5.7.1 → 5.7.3 Patch PR
Closed about 1 month ago 1 comment
mrrfv
Bump fastify from 5.7.1 to 5.7.3 in the npm_and_yarn group across 1 directory

friedemannsommer/astro-node-fastify #357

5.7.1 → 5.7.3 Patch PR
Closed about 1 month ago 1 comment
friedemannsommer
chore(deps): bump fastify from 5.7.1 to 5.7.3

jeboehm/fetchmailmgr #88

5.7.1 → 5.7.3 Patch PR
Closed about 1 month ago 1 comment
jeboehm
chore(deps): bump fastify from 5.7.2 to 5.7.3 in /packages/static-server

versini-org/node-cli #499

5.7.2 → 5.7.3 Patch PR
Closed about 1 month ago 1 comment
versini-org
chore(deps): bump fastify from 5.7.2 to 5.7.3

Menahra/lasl #4

5.7.2 → 5.7.3 Patch PR
Closed about 1 month ago 2 comments
Menahra
chore(deps): bump fastify from 5.7.2 to 5.7.3

Jeremy-Fleury/project-horizon #53

5.7.2 → 5.7.3 Patch PR
Closed about 1 month ago 1 comment
Jeremy-Fleury
build(deps): bump fastify from 5.7.2 to 5.7.4

mihaur/node-fastify-template #553

5.7.2 → 5.7.4 Patch PR
Closed about 1 month ago 1 comment
mihaur
chore(deps): bump fastify from 5.7.1 to 5.7.3

FWU-DE/telli-api #124

5.7.1 → 5.7.3 Patch PR
Open about 1 month ago 1 comment
FWU-DE
deps(server): bump fastify from 5.7.2 to 5.7.3 in /server

montrellcruse/quorum-sql #61

5.7.2 → 5.7.3 Patch PR
Open about 1 month ago 1 comment
montrellcruse
chore(deps-dev): bump fastify from 5.7.2 to 5.7.3

middleapi/orpc #1406

5.7.2 → 5.7.3 Patch PR
Open about 1 month ago 4 comments
middleapi
chore(deps): bump fastify from 5.7.2 to 5.7.3

soonland/video-game-manager #217

5.7.2 → 5.7.3 Patch PR
Closed about 1 month ago 2 comments
soonland
Bump fastify from 5.7.1 to 5.7.3 in /test/e2e_apps/app_for_mfa_totp

anephenix/auth #86

5.7.1 → 5.7.3 Patch PR
Open about 1 month ago 1 comment
anephenix
build(deps): bump fastify from 5.7.2 to 5.7.3

lolwierd/toolbox #1

5.7.2 → 5.7.3 Patch PR
Open about 1 month ago 1 comment
lolwierd
Bump fastify from 5.7.2 to 5.7.3

tranthanhbinh-ttbi/GI #28

5.7.2 → 5.7.3 Patch PR
Closed about 1 month ago 2 comments
tranthanhbinh-ttbi
chore(deps): bump the npm_and_yarn group across 2 directories with 1 update

ibiscum/Node.js-Design-Patterns-Fourth-Edition #34

5.7.0 → 5.7.3 Patch PR
Closed about 1 month ago 1 comment
ibiscum
chore(deps-dev): bump fastify from 5.7.1 to 5.7.3

toomuchdesign/openapi-ts-json-schema #515

5.7.1 → 5.7.3 Patch PR
Closed about 1 month ago 1 comment
toomuchdesign
Package Details
Name: fastify
Ecosystem: npm
PURL Type: npm
Package URL: pkg:npm/fastify
JSON API: View JSON
Security Advisories

7

Active advisories
HIGH 4
MODERATE 2
LOW 1
View All npm Advisories
Package Information
Description:

Fast and low overhead web framework, for Node.js

Repository: https://github.com/fastify/fastify
Homepage: https://fastify.dev/
Latest Release: 5.3.3
10 months ago
Dependent Repos: 16,712
Dependent Packages: 3,270
Downloads: 10,856,076
Ranking: Top 0.206% by dependent repos Top 0.1136% by downloads Top 0.0251% by dependent pkgs
PR Status
Open 1,281 (48.5%)
Merged 308 (11.7%)
Closed 845 (32.0%)
PR Types
Removal 32 (1.2%)
Minor 1,319 (49.9%)
Major 513 (19.4%)
Patch 566 (21.4%)