Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

knex

Ecosystem:
npm
Package URL:
pkg:npm/knex
Total PRs:
143 Dependabot PRs
Latest PR:
4 days ago
Unique Repositories:
110 repositories
Unique Repos (30 days):
5 repositories
Security Advisories
Knex.js has a limited SQL injection vulnerability
GHSA-4jv9-3563-23j3 CVE-2016-20018 HIGH published over 3 years ago • updated 1 day ago
Knex Knex.js through 2.3.0 has a limited SQL injection vulnerability that can be exploited to ignore the WHERE clause of a SQL query. This vulnerab...
SQL Injection in knex
GHSA-58v4-qwx5-7f59 CVE-2019-10757 CRITICAL published over 6 years ago • updated about 7 hours ago
knex.js versions before 0.19.5 are vulnerable to SQL Injection attack. Identifiers are escaped incorrectly as part of the MSSQL dialect, allowing a...
Recent PRs (filtered by: Patch PRs )
RSS Feed Clear filter
chore(deps): bump knex from 3.2.5 to 3.2.10

kitsboy/satohash #10

3.2.5 → 3.2.10 Patch PR
Open 24 days ago 1 comment
kitsboy
build(deps): bump the bsv-workspace group across 1 directory with 59 updates

bsv-blockchain/ts-stack #149

3.2.9 → 3.2.10 Patch PR
Open 24 days ago 1 comment
bsv-blockchain
chore(deps): bump the bsv-workspace group across 1 directory with 56 updates

bsv-blockchain/ts-stack #124

3.2.9 → 3.2.10 Patch PR
Closed about 1 month ago 1 comment
bsv-blockchain
deps(server): bump knex from 3.2.9 to 3.2.10 in /server

EDOHWARES/SoroMint #614

3.2.9 → 3.2.10 Patch PR
Open about 1 month ago 1 comment
EDOHWARES
Bump the minor-patches group across 1 directory with 3 updates

Ed-Fi-Alliance-OSS/edfi-oneroster #76

3.2.8 → 3.2.9 Patch PR
Closed 2 months ago 1 comment
Ed-Fi-Alliance-OSS
build(deps): bump the dependencies group across 1 directory with 3 updates

SubStream-Protocol/SubStream-Protocol-Backend #126

3.2.8 → 3.2.9 Patch PR
Closed 2 months ago 1 comment
SubStream-Protocol
Bump knex from 3.2.8 to 3.2.9

anephenix/fastify-resource #212

3.2.8 → 3.2.9 Patch PR
Open 2 months ago 1 comment
anephenix
chore(deps): bump the production-dependencies group with 5 updates

cm2pt/condoos #12

3.2.7 → 3.2.9 Patch PR
Open 2 months ago 3 comments
cm2pt
chore(deps): bump the npm_and_yarn group across 1 directory with 8 updates

offsoc/wiki #10

3.0.0 → 3.0.1 Patch PR
Open 11 months ago
offsoc
chore(deps): bump the npm_and_yarn group across 1 directory with 7 updates

offsoc/wiki #9

3.0.0 → 3.0.1 Patch PR
Open 11 months ago
offsoc
chore(deps): bump the npm_and_yarn group across 1 directory with 7 updates

offsoc/wiki #7

2.5.0 → 2.5.1 Patch PR
Merged about 1 year ago
offsoc
Package Details
Name: knex
Ecosystem: npm
PURL Type: npm
Package URL: pkg:npm/knex
JSON API: View JSON
Security Advisories

2

Active advisories
CRITICAL 1
HIGH 1
View All npm Advisories
Package Information
Description:

A batteries-included SQL query & schema builder for PostgresSQL, MySQL, CockroachDB, MSSQL and SQLite3

Repository: https://github.com/knex/knex
Homepage: https://knex.github.io/documentation/
Latest Release: 3.1.0
over 2 years ago
Dependent Repos: 94,868
Dependent Packages: 3,407
Downloads: 8,435,615
Ranking: Top 0.1087% by dependent repos Top 0.1127% by downloads Top 0.0261% by dependent pkgs
PR Status
Open 55 (38.5%)
Merged 8 (5.6%)
Closed 73 (51.0%)
PR Types
Major 88 (61.5%)
Minor 35 (24.5%)
Patch 11 (7.7%)
Removal 2 (1.4%)