Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

jspdf

Ecosystem:
npm
Package URL:
pkg:npm/jspdf
Total PRs:
2,124 Dependabot PRs
Latest PR:
3 days ago
Unique Repositories:
1,314 repositories
Unique Repos (30 days):
18 repositories
Security Advisories
jsPDF Affected by Client-Side/Server-Side Denial of Service via Malicious GIF Dimensions
GHSA-67pg-wm7f-q7fj CVE-2026-25535 HIGH published 4 months ago • updated 3 days ago
### Impact User control of the first argument of the `addImage` method results in denial of service. If given the possibility to pass unsanitized...
jsPDF Bypass Regular Expression Denial of Service (ReDoS)
GHSA-w532-jxjh-hjhj CVE-2025-29907 HIGH published about 1 year ago • updated about 1 month ago
### Impact User control of the first argument of the `addImage` method results in CPU utilization and denial of service. If given the possibility ...
Cross-site scripting in jspdf
GHSA-vh59-v9r5-4mh4 CVE-2020-7690 MODERATE published about 5 years ago • updated 2 days ago
Affected versions of this package are vulnerable to Cross-site Scripting (XSS). It's possible to inject JavaScript code via the `html` method.
jsPDF has a PDF Object Injection via FreeText color
GHSA-7x6v-j9x4-qf24 CVE-2026-31898 HIGH published 3 months ago • updated 17 days ago
### Impact User control of arguments of the `createAnnotation` method allows users to inject arbitrary PDF objects, such as JavaScript actions. I...
jsPDF Vulnerable to Stored XMP Metadata Injection (Spoofing & Integrity Violation)
GHSA-vm32-vv63-w422 CVE-2026-24043 MODERATE published 4 months ago • updated 11 days ago
### Impact User control of the first argument of the `addMetadata` function allows users to inject arbitrary XML. If given the possibility to pas...
View all 15 advisories
Recent PRs (filtered by: Patch PRs )
RSS Feed Clear filter
Bump the npm_and_yarn group across 1 directory with 10 updates

tylerdean1/Macadamy #42

4.2.0 → 4.2.1 Patch PR
Closed 3 days ago 5 comments
tylerdean1
Bump the npm_and_yarn group across 1 directory with 17 updates

patelarthAI/New-Arthformat #2

4.2.0 → 4.2.1 Patch PR
Open 4 days ago 1 comment
patelarthAI
chore(deps): bump the npm_and_yarn group across 1 directory with 10 updates

cjc-it-ltd/CIPP #121

4.2.0 → 4.2.1 Patch PR
Closed 10 days ago 3 comments
cjc-it-ltd
build(deps-dev): bump the dev-dependencies group across 1 directory with 15 updates

Life-Navigator/life-nav-mvp #50

4.2.0 → 4.2.1 Patch PR
Open 29 days ago 3 comments
Life-Navigator
chore(deps): bump the minor-and-patch group across 1 directory with 26 updates

orekoapp/oreko #77

4.2.0 → 4.2.1 Patch PR
Open 29 days ago 1 comment
orekoapp
chore(deps)(deps): Bump the minor-and-patch group with 15 updates

OneGoodArea/OneGoodArea #24

4.2.0 → 4.2.1 Patch PR
Open about 1 month ago 2 comments
OneGoodArea
build(deps): bump the minor-and-patch group across 1 directory with 13 updates

Life-Navigator/life-nav-mvp #46

4.2.0 → 4.2.1 Patch PR
Open about 1 month ago 3 comments
Life-Navigator
chore(deps): bump the all-npm-dependencies group across 1 directory with 25 updates

giovanniclopes/serena #35

4.2.0 → 4.2.1 Patch PR
Open about 1 month ago 2 comments
giovanniclopes
build(deps): Bump the production-deps group across 1 directory with 34 updates

skycruzer/fleet-management-v2 #47

4.2.0 → 4.2.1 Patch PR
Open about 1 month ago 3 comments
skycruzer
build(deps): bump the npm-dependencies group across 1 directory with 34 updates

Champ-Deep/ChamPDF #57

4.2.0 → 4.2.1 Patch PR
Closed about 1 month ago 1 comment
Champ-Deep
chore(deps): bump the production-deps group across 1 directory with 31 updates

eltahawyomar001-eng/SchichtPlan #24

4.2.0 → 4.2.1 Patch PR
Open about 1 month ago 2 comments
eltahawyomar001-eng
Bump the npm_and_yarn group across 1 directory with 10 updates

first5455/vibe-tournament-organization #49

4.2.0 → 4.2.1 Patch PR
Closed about 1 month ago 1 comment
first5455
chore(deps): bump the npm_and_yarn group across 1 directory with 10 updates

cjc-it-ltd/CIPP #107

4.2.0 → 4.2.1 Patch PR
Closed about 1 month ago 3 comments
cjc-it-ltd
chore(deps): bump the npm_and_yarn group across 1 directory with 9 updates

cjc-it-ltd/CIPP #106

4.2.0 → 4.2.1 Patch PR
Closed about 1 month ago 3 comments
cjc-it-ltd
chore(deps): bump the npm_and_yarn group across 1 directory with 9 updates

cjc-it-ltd/CIPP #104

4.2.0 → 4.2.1 Patch PR
Closed about 1 month ago 3 comments
cjc-it-ltd
chore(deps): bump the npm_and_yarn group across 2 directories with 22 updates

valle808/Humanese #81

4.2.0 → 4.2.1 Patch PR
Closed about 1 month ago 2 comments
valle808
chore(deps): bump the npm_and_yarn group across 1 directory with 8 updates

henryperkins/tarot #67

4.2.0 → 4.2.1 Patch PR
Open about 1 month ago 3 comments
henryperkins
chore(deps): Bump the minor-and-patch group across 1 directory with 25 updates

sergiodiazsch/young-owls-studio #14

4.2.0 → 4.2.1 Patch PR
Open about 1 month ago 1 comment
sergiodiazsch
chore(deps): bump the production-dependencies group across 1 directory with 33 updates

araeLaver/petchecky #27

4.2.0 → 4.2.1 Patch PR
Open about 1 month ago 1 comment
araeLaver
chore(deps): bump the npm-minor group across 1 directory with 16 updates

0xReLogic/Zeltra #77

4.2.0 → 4.2.1 Patch PR
Open about 1 month ago 2 comments
0xReLogic
build(deps): bump the production-deps group across 1 directory with 19 updates

Kaczor4444/kompas-seniora #1

3.0.3 → 3.0.4 Patch PR
Closed about 1 month ago 2 comments
Kaczor4444
chore(deps): bump the npm-user-minor-patch group across 1 directory with 20 updates

CarterPerez-dev/CertGames-Core #259

4.2.0 → 4.2.1 Patch PR
Open about 1 month ago 2 comments
CarterPerez-dev
chore(deps): bump the production-deps group across 1 directory with 25 updates

eltahawyomar001-eng/SchichtPlan #22

4.2.0 → 4.2.1 Patch PR
Open about 2 months ago 2 comments
eltahawyomar001-eng
chore(deps): bump the minor-and-patch group across 1 directory with 42 updates

Rieki777/ReGenCivics.Earth #12

4.2.0 → 4.2.1 Patch PR
Open about 2 months ago 1 comment
Rieki777
build(deps): Bump the production-deps group across 1 directory with 34 updates

skycruzer/fleet-management-v2 #41

4.2.0 → 4.2.1 Patch PR
Open about 2 months ago 3 comments
skycruzer
chore(deps): bump the npm-user-minor-patch group across 1 directory with 19 updates

CarterPerez-dev/CertGames-Core #240

4.2.0 → 4.2.1 Patch PR
Open about 2 months ago 4 comments
CarterPerez-dev
build(deps): Bump jspdf from 4.2.0 to 4.2.1

fazeel0010/Baraka-Kitchen #1

4.2.0 → 4.2.1 Patch PR
Open 2 months ago 2 comments
fazeel0010
chore(deps): bump the npm_and_yarn group across 2 directories with 19 updates

valle808/Humanese #72

4.2.0 → 4.2.1 Patch PR
Closed 2 months ago 2 comments
valle808
Bump the production-deps group across 1 directory with 20 updates

ikildani/terrain #22

4.2.0 → 4.2.1 Patch PR
Open 2 months ago 2 comments
ikildani
chore(deps): bump the minor-and-patch group with 26 updates

orekoapp/oreko #44

4.2.0 → 4.2.1 Patch PR
Open 2 months ago 1 comment
orekoapp
chore(deps): bump the npm_and_yarn group across 1 directory with 13 updates

valle808/Humanese #67

4.2.0 → 4.2.1 Patch PR
Open 2 months ago 1 comment
valle808
chore(deps): bump the npm-user-minor-patch group across 1 directory with 17 updates

CarterPerez-dev/CertGames-Core #234

4.2.0 → 4.2.1 Patch PR
Open 2 months ago 2 comments
CarterPerez-dev
chore(deps): bump the npm_and_yarn group across 2 directories with 16 updates

valle808/Humanese #63

4.2.0 → 4.2.1 Patch PR
Closed 2 months ago 2 comments
valle808
chore(deps)(deps): bump jspdf from 4.2.0 to 4.2.1

fmadore/stias-dh-ai-workshop-2026 #9

4.2.0 → 4.2.1 Patch PR
Open 2 months ago 1 comment
fmadore
chore(deps): bump the npm_and_yarn group across 1 directory with 8 updates

cjc-it-ltd/CIPP #94

4.2.0 → 4.2.1 Patch PR
Closed 2 months ago 2 comments
cjc-it-ltd
chore(deps): bump the npm_and_yarn group across 2 directories with 16 updates

valle808/Humanese #62

4.2.0 → 4.2.1 Patch PR
Closed 2 months ago 2 comments
valle808
Bump the npm_and_yarn group across 3 directories with 15 updates

FuzzysTodd/remix-project #9

4.2.0 → 4.2.1 Patch PR
Open 2 months ago 1 comment
FuzzysTodd
chore(deps): bump jspdf from 4.2.0 to 4.2.1 in /frontend

zyclope0/mathakine #93

4.2.0 → 4.2.1 Patch PR
Open 2 months ago 3 comments
zyclope0
Bump the npm_and_yarn group across 1 directory with 5 updates

first5455/vibe-tournament-organization #43

4.2.0 → 4.2.1 Patch PR
Closed 2 months ago 1 comment
first5455
chore(deps): bump the production-deps group across 1 directory with 32 updates

skycruzer/fleet-management-v2 #27

4.2.0 → 4.2.1 Patch PR
Open 2 months ago 4 comments
skycruzer
build(deps): bump the minor-and-patch group across 1 directory with 12 updates

AnjinHatamoto/antigravity #11

4.2.0 → 4.2.1 Patch PR
Open 2 months ago 1 comment
AnjinHatamoto
chore(deps): bump the npm_and_yarn group across 2 directories with 16 updates

valle808/Humanese #59

4.2.0 → 4.2.1 Patch PR
Closed 2 months ago 2 comments
valle808
chore(deps): bump the production-deps group across 1 directory with 21 updates

eltahawyomar001-eng/SchichtPlan #18

4.2.0 → 4.2.1 Patch PR
Open 2 months ago 2 comments
eltahawyomar001-eng
chore(deps): bump the production-dependencies group across 1 directory with 7 updates

localnotes-app/localnotes #20

4.2.0 → 4.2.1 Patch PR
Closed 2 months ago 2 comments
localnotes-app
build(deps): bump the production-dependencies group across 1 directory with 5 updates

NesiciCoding/korfstat-pro #21

4.2.0 → 4.2.1 Patch PR
Open 2 months ago 1 comment
NesiciCoding
chore(deps): bump jspdf from 4.2.0 to 4.2.1 in /frontend

Ndifreke000/stellar-insights #1056

4.2.0 → 4.2.1 Patch PR
Open 2 months ago 1 comment
Ndifreke000
chore(deps): bump the npm_and_yarn group across 1 directory with 8 updates

cjc-it-ltd/CIPP #91

4.2.0 → 4.2.1 Patch PR
Closed 2 months ago 2 comments
cjc-it-ltd
Bump the npm_and_yarn group across 1 directory with 8 updates

Buiteman-IT/CIPP #15

4.2.0 → 4.2.1 Patch PR
Closed 2 months ago 2 comments
Buiteman-IT
Bump the npm_and_yarn group across 3 directories with 12 updates

FuzzysTodd/remix-project #4

4.2.0 → 4.2.1 Patch PR
Closed 2 months ago 2 comments
FuzzysTodd
chore(deps): bump the npm_and_yarn group across 1 directory with 12 updates

valle808/Humanese #56

4.2.0 → 4.2.1 Patch PR
Open 2 months ago 1 comment
valle808
Package Details
Name: jspdf
Ecosystem: npm
PURL Type: npm
Package URL: pkg:npm/jspdf
JSON API: View JSON
Security Advisories

15

Active advisories
CRITICAL 2
HIGH 9
MODERATE 4
View All npm Advisories
Package Information
Description:

PDF Document creation from JavaScript

Repository: https://github.com/MrRio/jsPDF
Homepage: https://github.com/mrrio/jspdf
Latest Release: 3.0.1
about 1 year ago
Dependent Repos: 21,994
Dependent Packages: 1,518
Downloads: 9,933,691
Ranking: Top 0.198% by dependent repos Top 0.1479% by downloads Top 0.0558% by dependent pkgs
PR Status
Open 1,113 (52.4%)
Merged 156 (7.3%)
Closed 822 (38.7%)
PR Types
Major 1,109 (52.2%)
Minor 354 (16.7%)
Patch 627 (29.5%)