`node-forge`

Ecosystem:
npm

Package URL:
pkg:npm/node-forge

Total PRs:
5,677 Dependabot PRs

Latest PR:
about 23 hours ago

Unique Repositories:
4,621 repositories

Unique Repos (30 days):
127 repositories

Security Advisories

Improper Verification of Cryptographic Signature in node-forge

GHSA-cfm4-qjh2-4765 CVE-2022-24771 HIGH published about 4 years ago • updated 3 days ago

### Impact RSA PKCS#1 v1.5 signature verification code is lenient in checking the digest algorithm structure. This can allow a crafted structure t...

node-forge has an Interpretation Conflict vulnerability via its ASN.1 Validator Desynchronization

GHSA-5gfm-wpxj-wjgq CVE-2025-12816 HIGH published 6 months ago • updated 9 days ago

### Summary CVE-2025-12816 has been reserved by CERT/CC **Description** An Interpretation Conflict (CWE-436) vulnerability in node-forge versions...

View all 15 advisories

Recent PRs

RSS Feed

Bump the npm_and_yarn group across 5 directories with 23 updates

suitenumerique/meet #1371

1.3.3 → 1.4.0 Minor PR

Open about 23 hours ago 1 comment

Bump the npm_and_yarn group across 1 directory with 21 updates

EmilynnJ/twilio-video-app-react #1

1.3.1 → 1.4.0 Minor PR

Open 1 day ago 4 comments

Bump the npm_and_yarn group across 3 directories with 14 updates

Cyptopimpinainteazy/remix-project #1

1.3.1 → 1.4.0 Minor PR

Open 1 day ago 1 comment

chore(deps): bump the npm_and_yarn group across 9 directories with 14 updates

stevewithington/gcp-generative-ai #5

1.3.1 → 1.4.0 Minor PR

Closed 2 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 16 directories with 18 updates

ahump20/socket.io #30

1.3.1 → 1.4.0 Minor PR

Open 3 days ago 2 comments

Bump the npm_and_yarn group across 1 directory with 18 updates

gagneet/firefly-iii #11

1.3.1 → 1.4.0 Minor PR

Closed 4 days ago 1 comment

Bump the npm_and_yarn group across 1 directory with 25 updates

sam1am/auth-boilerplate #1

1.3.1 → 1.4.0 Minor PR

Open 4 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 1 directory with 28 updates

stevewithington/daytona #2

1.3.2 → 1.4.0 Minor PR

Closed 4 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 3 directories with 20 updates

theinsightcentre/generative-ai-google #9

1.3.1 → 1.4.0 Minor PR

Closed 5 days ago 1 comment

chore(deps): bump node-forge from 1.3.1 to 1.4.0

YoutacRandS-VA/webpack-cli #11

1.3.1 → 1.4.0 Minor PR

Open 5 days ago 1 comment

Bump the npm_and_yarn group across 1 directory with 31 updates

muhammadali1995/muck-23 #6

1.2.1 → 1.4.0 Minor PR

Open 5 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 2 directories with 13 updates

HarleyCoops/ai #1

1.3.1 → 1.4.0 Minor PR

Open 8 days ago 2 comments

Bump node-forge from 1.3.3 to 1.4.0 in /side-projects/firebase/functions in the npm_and_yarn group across 1 directory

makerpars/android-multi-app-framework-public #1

1.3.3 → 1.4.0 Minor PR

Closed 8 days ago 1 comment

Bump the npm_and_yarn group across 2 directories with 21 updates

rorymclaughlin432/admin-dashboard-charts #2

1.3.3 → 1.4.0 Minor PR

Open 9 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 13 directories with 13 updates

loveyou001/genkit #67

1.3.1 → 1.4.0 Minor PR

Open 9 days ago 9 comments

Bump the npm_and_yarn group across 5 directories with 7 updates

jinhua115/workers-sdk #16

1.3.1 → 1.4.0 Minor PR

Closed 9 days ago 1 comment

build(deps): bump the npm_and_yarn group across 1 directory with 22 updates

huynguyenjv/VN-Law #33

1.3.1 → 1.4.0 Minor PR

Closed 9 days ago 1 comment

Bump the npm_and_yarn group across 1 directory with 8 updates

HarleyCoops/workflow-use #7

1.3.1 → 1.4.0 Minor PR

Open 9 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 5 directories with 18 updates

commercetools-demo/contentools #55

1.3.3 → 1.4.0 Minor PR

Closed 9 days ago 2 comments

Bump the npm_and_yarn group across 4 directories with 7 updates

rshan1515/workers-sdk #22

1.3.1 → 1.4.0 Minor PR

Closed 9 days ago 3 comments

Bump the npm_and_yarn group across 1 directory with 12 updates

tcpipuk/maubot #32

1.3.1 → 1.4.0 Minor PR

Closed 9 days ago 1 comment

build(deps): bump the npm_and_yarn group across 1 directory with 19 updates

DesarrolloORT/ngx-whats-new #68

1.3.1 → 1.4.0 Minor PR

Closed 9 days ago 1 comment

fix: bump the npm-security group across 1 directory with 20 updates

janbiasi/rollup-plugin-sbom #313

1.3.3 → 1.4.0 Minor PR

Closed 10 days ago 2 comments

Bump the npm_and_yarn group across 15 directories with 24 updates

1042422227/react #9

1.3.1 → 1.4.0 Minor PR

Closed 10 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 2 directories with 27 updates

Kaairofelipe/ai-lab-recipes #2

1.3.1 → 1.4.0 Minor PR

Closed 10 days ago 1 comment

build(deps): bump the npm_and_yarn group across 5 directories with 17 updates

alejandrocuba/angular #3

1.3.1 → 1.4.0 Minor PR

Closed 10 days ago 1 comment

Bump node-forge from 1.3.1 to 1.4.0

ediheid/reverberation-frontend #41

1.3.1 → 1.4.0 Minor PR

Closed 11 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 1 directory with 19 updates

atze1210/aa-sdk #277

1.3.1 → 1.4.0 Minor PR

Open 12 days ago 2 comments

chore(deps): bump the npm_and_yarn group across 2 directories with 20 updates

thirdweb-dev/engine #942

1.3.1 → 1.4.0 Minor PR

Open 12 days ago 2 comments

build(deps): bump the security-all group across 1 directory with 30 updates

seven-io/desktop #30

1.3.1 → 1.4.0 Minor PR

Closed 12 days ago 1 comment

Bump the npm_and_yarn group across 2 directories with 23 updates

dragonflycapital/gitpod #74

1.3.1 → 1.4.0 Minor PR

Closed 13 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 13 directories with 13 updates

loveyou001/genkit #64

1.3.3 → 1.4.0 Minor PR

Open 13 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 1 directory with 23 updates

Rytass/Utils #202

1.3.1 → 1.4.0 Minor PR

Open 13 days ago 2 comments

chore(deps): bump the npm_and_yarn group across 1 directory with 17 updates

Rytass/Utils #193

1.3.1 → 1.4.0 Minor PR

Closed 13 days ago 2 comments

chore(deps): bump node-forge from 1.3.3 to 1.4.0

yasushi-honda/Calendar-Hub #131

1.3.3 → 1.4.0 Minor PR

Closed 14 days ago 3 comments

Bump the npm-minor group across 1 directory with 14 updates

actions-marketplace-validations/github_codeql-action #26

1.3.3 → 1.4.0 Minor PR

Open 14 days ago 1 comment

build(deps): bump the npm_and_yarn group across 2 directories with 21 updates

cptthura-alt/supabase-js #41

1.3.1 → 1.4.0 Minor PR

Closed 14 days ago 1 comment

Bump the npm_and_yarn group across 1 directory with 42 updates

LautaroDerose/DeroseEcommerceCoderhouse #3

1.3.1 → 1.4.0 Minor PR

Open 14 days ago 4 comments

Bump the npm_and_yarn group across 1 directory with 25 updates

realbrodiwhite/royalgamesclient #36

1.3.1 → 1.4.0 Minor PR

Open 16 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 2 directories with 16 updates

servrox-solutions/punktaro-app #6

1.3.1 → 1.4.0 Minor PR

Open 16 days ago 1 comment

Bump the npm_and_yarn group across 2 directories with 20 updates

erikside/scaff #9

1.3.1 → 1.4.0 Minor PR

Closed 16 days ago 1 comment

Bump the npm_and_yarn group across 1 directory with 14 updates

stupidkubik/kanban-board-app #10

1.3.3 → 1.4.0 Minor PR

Open 17 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 2 directories with 13 updates

mycodexvantaos/mycodexvantaos #21

1.3.3 → 1.4.0 Minor PR

Open 17 days ago 7 comments

chore(deps): bump the npm_and_yarn group across 4 directories with 14 updates

Dargon789/safe-apps-sdk #199

1.3.1 → 1.4.0 Minor PR

Open 17 days ago 2 comments

chore(deps): bump the npm_and_yarn group across 2 directories with 13 updates

mycodexvantaos/mycodexvantaos #20

1.3.3 → 1.4.0 Minor PR

Closed 17 days ago 2 comments

Bump the npm_and_yarn group across 1 directory with 6 updates

georgyo/ipfs-hls #13

1.3.3 → 1.4.0 Minor PR

Open 17 days ago 1 comment

Bump node-forge from 1.3.1 to 1.4.0

EchoCog/bolt.marduk #37

1.3.1 → 1.4.0 Minor PR

Open 17 days ago 1 comment

chore(deps): Bump the npm_and_yarn group across 1 directory with 16 updates

poupe-ui/eslint-config #243

1.3.1 → 1.4.0 Minor PR

Open 17 days ago 2 comments

chore(deps): Bump the npm_and_yarn group across 1 directory with 15 updates

poupe-ui/eslint-config #242

1.3.1 → 1.4.0 Minor PR

Closed 17 days ago 4 comments

build(deps): bump node-forge from 1.3.3 to 1.4.0 in /docsv

sqlfluff/sqlfluff #7853

1.3.3 → 1.4.0 Minor PR

Closed 17 days ago 2 comments

Package Details

Name:	`node-forge`
Ecosystem:	npm
PURL Type:	npm
Package URL:	`pkg:npm/node-forge`
JSON API:	View JSON

Security Advisories

15

Active advisories

HIGH 9

MODERATE 3

LOW 3

View All npm Advisories

Package Information

Description:

JavaScript implementations of network transports, cryptography, ciphers, PKI, message digests, and various utilities.

Repository:	https://github.com/digitalbazaar/forge
Homepage:	https://github.com/digitalbazaar/forge
Latest Release:	`1.3.1` about 4 years ago
Dependent Repos:	3,039,204
Dependent Packages:	2,329
Downloads:	99,242,131
Ranking:	Top 0.0058% by dependent repos Top 0.0211% by downloads Top 0.0344% by dependent pkgs

PR Status

Open 2,958 (52.1%)

Merged 58 (1.0%)

Closed 2,637 (46.5%)

PR Types

Major 1,165 (20.5%)

Minor 1,513 (26.7%)

Patch 2,923 (51.5%)

Removal 42 (0.7%)

node-forge

Security Advisories

Improper Verification of Cryptographic Signature in node-forge

node-forge has an Interpretation Conflict vulnerability via its ASN.1 Validator Desynchronization

Improper Verification of Cryptographic Signature in node-forge

Forge has signature forgery in Ed25519 due to missing S > L check

node-forge has ASN.1 Unbounded Recursion

Recent PRs

Package Details

Security Advisories

15

Package Information

PR Status

PR Types

`node-forge`