Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

node-forge

Ecosystem:
npm
Package URL:
pkg:npm/node-forge
Total PRs:
3,777 Dependabot PRs
Latest PR:
about 20 hours ago
Unique Repositories:
3,416 repositories
Unique Repos (30 days):
231 repositories
Security Advisories
node-forge has ASN.1 Unbounded Recursion
GHSA-554w-wpv2-vw27 CVE-2025-66031 HIGH published 3 months ago • updated 17 days ago
### Summary An Uncontrolled Recursion (CWE-674) vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to ...
node-forge has an Interpretation Conflict vulnerability via its ASN.1 Validator Desynchronization
GHSA-5gfm-wpxj-wjgq CVE-2025-12816 HIGH published 3 months ago • updated 12 days ago
### Summary CVE-2025-12816 has been reserved by CERT/CC **Description** An Interpretation Conflict (CWE-436) vulnerability in node-forge versions...
Prototype Pollution in node-forge debug API.
GHSA-5rrq-pxf6-6jx5 LOW published about 4 years ago • updated 1 day ago
### Impact The `forge.debug` API had a potential prototype pollution issue if called with untrusted input. The API was only used for internal debug...
URL parsing in node-forge could lead to undesired behavior.
GHSA-gf8q-jrpm-jvxq LOW published about 4 years ago • updated 1 day ago
### Impact The regex used for the `forge.util.parseUrl` API would not properly parse certain inputs resulting in a parsed data structure that could...
Open Redirect in node-forge
GHSA-8fr3-hfg3-gpgp CVE-2022-0122 MODERATE published about 4 years ago • updated 1 day ago
parseUrl functionality in node-forge mishandles certain uses of backslash such as `https:/\/\/\` and interprets the URI as a relative path.
View all 11 advisories
Recent PRs
RSS Feed
Bump node-forge from 1.3.0 to 1.3.3

dgrinbergs/sticky-board #14

1.3.0 → 1.3.3 Patch PR
Open about 20 hours ago 1 comment
dgrinbergs
chore(deps): bump the npm_and_yarn group across 1 directory with 13 updates

chdelucia/hunt-the-bishomalo #38

1.3.1 → 1.3.3 Patch PR
Open 1 day ago 1 comment
chdelucia
chore(deps-dev): bump node-forge from 1.3.1 to 1.3.3

NanashiTheNameless/cors-proxy #4

1.3.1 → 1.3.3 Patch PR
Closed 3 days ago 1 comment
NanashiTheNameless
chore(deps): bump the npm_and_yarn group across 3 directories with 6 updates

asleekgeek/docusaurus #171

1.3.1 → 1.3.3 Patch PR
Open 3 days ago 3 comments
asleekgeek
build(deps): bump the npm_and_yarn group across 7 directories with 16 updates

suissa/openreplay #20

1.3.1 → 1.3.3 Patch PR
Closed 3 days ago 1 comment
suissa
chore(deps): bump the npm_and_yarn group across 1 directory with 37 updates

mrheyday/app #12

1.3.1 → 1.3.3 Patch PR
Open 3 days ago 2 comments
mrheyday
Bump the npm_and_yarn group across 2 directories with 36 updates

batuhan-basoglu/Hospital-Management-System #92

1.3.1 → 1.3.3 Patch PR
Closed 3 days ago 1 comment
batuhan-basoglu
chore(deps): bump the npm_and_yarn group across 1 directory with 36 updates

mrheyday/app #11

1.3.1 → 1.3.3 Patch PR
Open 3 days ago 3 comments
mrheyday
build(deps): bump the npm_and_yarn group across 1 directory with 9 updates

ControlCore-Project/concore-editor #363

1.3.1 → 1.3.3 Patch PR
Open 3 days ago 1 comment
ControlCore-Project
Bump the npm_and_yarn group across 1 directory with 37 updates

JT5D/create-react-app-auth-amplify #1

1.3.0 → 1.3.3 Patch PR
Open 4 days ago 1 comment
JT5D
Bump the npm_and_yarn group across 2 directories with 36 updates

batuhan-basoglu/Hospital-Management-System #91

1.3.1 → 1.3.3 Patch PR
Closed 4 days ago 1 comment
batuhan-basoglu
Bump node-forge from 1.3.1 to 1.3.3 in /components/dash-table

Merchandising-Solutions/dash-fork #14

1.3.1 → 1.3.3 Patch PR
Open 4 days ago 1 comment
Merchandising-Solutions
Upgrade: Bump the npm_and_yarn group across 1 directory with 28 updates

goodgollyholly/hint #26

1.3.1 → 1.3.3 Patch PR
Open 4 days ago 2 comments
goodgollyholly
Bump the npm_and_yarn group across 4 directories with 23 updates

ammar-knowledge/storybook #449

1.3.1 → 1.3.3 Patch PR
Open 4 days ago 3 comments
ammar-knowledge
Bump the npm_and_yarn group across 1 directory with 6 updates

zym9863/Pian-Ai #1

1.3.1 → 1.3.3 Patch PR
Open 4 days ago 2 comments
zym9863
Bump the npm_and_yarn group across 1 directory with 19 updates

seanclancy/universalviewer #8

1.3.1 → 1.3.3 Patch PR
Closed 5 days ago 1 comment
seanclancy
Bump the npm_and_yarn group across 1 directory with 8 updates

Jonathangadeaharder/Poker #121

1.3.1 → 1.3.3 Patch PR
Closed 5 days ago 1 comment
Jonathangadeaharder
Bump node-forge from 1.3.1 to 1.3.3 in /docker-workshop-2-angular

ekstend/docker-workshop #10

1.3.1 → 1.3.3 Patch PR
Open 5 days ago 1 comment
ekstend
Bump the npm_and_yarn group across 1 directory with 8 updates

alokkulkarni/ephemeralenvironments #78

1.3.1 → 1.3.3 Patch PR
Closed 5 days ago 1 comment
alokkulkarni
Bump the npm_and_yarn group across 6 directories with 22 updates

alokkulkarni/backstage #10

1.3.1 → 1.3.3 Patch PR
Closed 5 days ago 1 comment
alokkulkarni
Bump the npm_and_yarn group across 5 directories with 23 updates

sizzlebop/databag #12

1.3.1 → 1.3.3 Patch PR
Closed 5 days ago 1 comment
sizzlebop
Bump the npm_and_yarn group across 8 directories with 17 updates

CaffeeLake/AugmentOS #21

0.10.0 → 1.3.3 Major PR
Open 5 days ago 1 comment
CaffeeLake
Bump the npm_and_yarn group across 6 directories with 21 updates

alokkulkarni/backstage #9

1.3.1 → 1.3.3 Patch PR
Closed 5 days ago 1 comment
alokkulkarni
build(deps): bump the npm_and_yarn group across 1 directory with 15 updates

zym9863/Do-Not-Say-Goodbye #1

1.3.1 → 1.3.3 Patch PR
Open 5 days ago 1 comment
zym9863
Bump the npm_and_yarn group across 5 directories with 23 updates

ammar-knowledge/storybook #448

1.3.1 → 1.3.3 Patch PR
Open 5 days ago 3 comments
ammar-knowledge
Bump the npm_and_yarn group across 1 directory with 13 updates

zym9863/Xiamen-Tourism-Website #2

1.3.1 → 1.3.3 Patch PR
Open 5 days ago 2 comments
zym9863
Bump the npm_and_yarn group across 1 directory with 5 updates

Leo-march/mobile-pragasCana #23

1.3.1 → 1.3.3 Patch PR
Closed 5 days ago 1 comment
Leo-march
Bump the npm_and_yarn group across 4 directories with 8 updates

rshan1515/workers-sdk #6

1.3.1 → 1.3.2 Patch PR
Open 5 days ago 2 comments
rshan1515
Bump the npm_and_yarn group across 6 directories with 21 updates

alokkulkarni/backstage #8

1.3.1 → 1.3.3 Patch PR
Closed 5 days ago 1 comment
alokkulkarni
Bump the npm_and_yarn group across 1 directory with 15 updates

Robs68/pwndoc #8

1.3.1 → 1.3.3 Patch PR
Closed 5 days ago 1 comment
Robs68
chore(deps): bump the npm_and_yarn group across 4 directories with 13 updates

sizzlebop/docusaurus #5

1.3.1 → 1.3.3 Patch PR
Closed 5 days ago 1 comment
sizzlebop
chore(deps): bump the npm_and_yarn group across 3 directories with 6 updates

ivan09069/docusaurus #26

1.3.1 → 1.3.3 Patch PR
Open 5 days ago 4 comments
ivan09069
build(deps): bump the npm_and_yarn group across 7 directories with 16 updates

suissa/openreplay #18

1.3.1 → 1.3.3 Patch PR
Closed 5 days ago 1 comment
suissa
build(deps): bump the npm_and_yarn group across 4 directories with 17 updates

ASISBusiness/sui #12

1.3.1 → 1.3.3 Patch PR
Open 5 days ago 3 comments
ASISBusiness
chore(deps): bump the npm_and_yarn group across 1 directory with 13 updates

jillmnolan/jitsi-meet #14

1.3.1 → 1.3.3 Patch PR
Closed 5 days ago 1 comment
jillmnolan
chore(deps): bump the npm_and_yarn group across 3 directories with 6 updates

asleekgeek/docusaurus #165

1.3.1 → 1.3.3 Patch PR
Open 5 days ago 3 comments
asleekgeek
build(deps): bump the npm_and_yarn group across 1 directory with 10 updates

coutureb/anubis #4

1.3.1 → 1.3.3 Patch PR
Closed 5 days ago 1 comment
coutureb
build(deps): bump the npm_and_yarn group across 1 directory with 7 updates

theGunner295/seerr #7

1.3.1 → 1.3.3 Patch PR
Closed 5 days ago 1 comment
theGunner295
Bump the npm_and_yarn group across 4 directories with 7 updates

fork-the-planet/workers-sdk #3

1.3.1 → 1.3.2 Patch PR
Closed 5 days ago 1 comment
fork-the-planet
Bump the npm_and_yarn group across 4 directories with 9 updates

rshan1515/workers-sdk #4

1.3.1 → 1.3.2 Patch PR
Open 6 days ago 2 comments
rshan1515
Bump the npm_and_yarn group across 1 directory with 13 updates

realbrodiwhite/royalgamesclient #18

1.3.1 → 1.3.3 Patch PR
Open 6 days ago 1 comment
realbrodiwhite
Bump the npm_and_yarn group across 1 directory with 7 updates

alokkulkarni/ephemeralenvironments #77

1.3.1 → 1.3.3 Patch PR
Closed 6 days ago 1 comment
alokkulkarni
chore(deps): bump the npm_and_yarn group across 3 directories with 19 updates

JSTONE1111/aa-sdk #24

1.3.1 → 1.3.3 Patch PR
Closed 6 days ago 1 comment
JSTONE1111
Bump the npm_and_yarn group across 5 directories with 17 updates

jadenblack/vulcan-sql #16

1.3.1 → 1.3.3 Patch PR
Closed 6 days ago 3 comments
jadenblack
chore(deps): bump the npm_and_yarn group across 8 directories with 14 updates

Dargon789/metamask-sdk-examples #46

1.3.1 → 1.3.3 Patch PR
Open 6 days ago 2 comments
Dargon789
build(deps): bump the npm_and_yarn group across 1 directory with 9 updates

HeadyMe/Heady-pre-production-9f2f0642 #66

0.10.0 → 1.3.3 Major PR
Closed 6 days ago 1 comment
HeadyMe
Bump the npm_and_yarn group across 4 directories with 22 updates

ammar-knowledge/storybook #438

1.3.1 → 1.3.3 Patch PR
Open 7 days ago 3 comments
ammar-knowledge
Bump the npm_and_yarn group across 8 directories with 15 updates

CaffeeLake/AugmentOS #19

0.10.0 → 1.3.3 Major PR
Closed 7 days ago 2 comments
CaffeeLake
Bump the npm_and_yarn group across 3 directories with 23 updates

ANT0071/storybook #17

1.3.1 → 1.3.3 Patch PR
Closed 7 days ago 1 comment
ANT0071
build(deps): bump the npm_and_yarn group across 7 directories with 27 updates

sumonst21/amplify-cli #24

1.3.1 → 1.3.3 Patch PR
Closed 7 days ago 1 comment
sumonst21
Package Details
Name: node-forge
Ecosystem: npm
PURL Type: npm
Package URL: pkg:npm/node-forge
JSON API: View JSON
Security Advisories

11

Active advisories
HIGH 5
MODERATE 3
LOW 3
View All npm Advisories
Package Information
Description:

JavaScript implementations of network transports, cryptography, ciphers, PKI, message digests, and various utilities.

Repository: https://github.com/digitalbazaar/forge
Homepage: https://github.com/digitalbazaar/forge
Latest Release: 1.3.1
almost 4 years ago
Dependent Repos: 3,039,204
Dependent Packages: 2,329
Downloads: 99,242,131
Ranking: Top 0.0058% by dependent repos Top 0.0211% by downloads Top 0.0344% by dependent pkgs
PR Status
Open 2,217 (58.7%)
Merged 58 (1.5%)
Closed 1,478 (39.1%)
PR Types
Removal 13 (0.3%)
Minor 73 (1.9%)
Major 1,013 (26.8%)
Patch 2,647 (70.1%)