Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

qs

Ecosystem:
npm
Package URL:
pkg:npm/qs
Total PRs:
19,404 Dependabot PRs
Latest PR:
about 4 hours ago
Unique Repositories:
17,046 repositories
Unique Repos (30 days):
2,689 repositories
Security Advisories
Denial-of-Service Memory Exhaustion in qs
GHSA-jjv7-qpx3-h62q CVE-2014-7191 HIGH published over 8 years ago • updated about 2 hours ago
Versions prior to 1.0 of `qs` are affected by a denial of service condition. This condition is triggered by parsing a crafted string that deseriali...
qs's arrayLimit bypass in comma parsing allows denial of service
GHSA-w7fw-mjwx-w883 CVE-2026-2391 LOW published 21 days ago • updated about 18 hours ago
### Summary The `arrayLimit` option in qs does not enforce limits for comma-separated values when `comma: true` is enabled, allowing attackers to c...
Prototype Pollution Protection Bypass in qs
GHSA-gqgv-6jq5-jjj9 CVE-2017-1000048 HIGH published almost 6 years ago • updated about 2 hours ago
Affected version of `qs` are vulnerable to Prototype Pollution because it is possible to bypass the protection. The `qs.parse` function fails to pr...
qs vulnerable to Prototype Pollution
GHSA-hrpp-h998-j3pp CVE-2022-24999 HIGH published over 3 years ago • updated about 18 hours ago
qs before 6.10.3 allows attackers to cause a Node process hang because an `__ proto__` key can be used. In many typical web framework use cases, an...
Denial-of-Service Extended Event Loop Blocking in qs
GHSA-f9cm-p3w6-xvr3 CVE-2014-10064 HIGH published over 7 years ago • updated about 2 hours ago
Versions prior to 1.0.0 of `qs` are affected by a denial of service vulnerability that results from excessive recursion in parsing a deeply nested ...
View all 6 advisories
Recent PRs
RSS Feed
chore(deps-dev): bump qs from 6.14.1 to 6.15.0

Brightspace/node-siren-parser #63

6.14.1 → 6.15.0 Minor PR
Closed about 4 hours ago 1 comment
Brightspace
Upgrade: Bump the npm_and_yarn group across 1 directory with 28 updates

goodgollyholly/hint #26

6.5.3 → 6.5.5 Patch PR
Open about 10 hours ago 2 comments
goodgollyholly
Bump the npm_and_yarn group across 4 directories with 23 updates

ammar-knowledge/storybook #449

6.5.3 → 6.5.5 Patch PR
Open about 11 hours ago 3 comments
ammar-knowledge
Bump the npm_and_yarn group across 17 directories with 17 updates

jgeofil/hash #15

6.5.3 → 6.5.5 Patch PR
Open about 12 hours ago 1 comment
jgeofil
Bump the npm_and_yarn group across 1 directory with 19 updates

seanclancy/universalviewer #8

6.13.0 → 6.14.2 Minor PR
Closed about 13 hours ago 1 comment
seanclancy
build(deps): bump the npm_and_yarn group across 1 directory with 3 updates

crwntec/db-live-monitor #95

6.14.1 → 6.15.0 Minor PR
Open about 13 hours ago 1 comment
crwntec
Bump the npm_and_yarn group across 1 directory with 8 updates

Jonathangadeaharder/Poker #121

6.13.0 → 6.14.2 Minor PR
Closed about 13 hours ago 1 comment
Jonathangadeaharder
Bump the npm_and_yarn group across 17 directories with 18 updates

jgeofil/hash #14

6.5.3 → 6.5.5 Patch PR
Open about 14 hours ago 1 comment
jgeofil
Bump the npm_and_yarn group across 16 directories with 9 updates

jgeofil/screenpipe #13

6.13.0 → 6.14.2 Minor PR
Open about 14 hours ago 1 comment
jgeofil
build(deps): bump the npm_and_yarn group across 1 directory with 11 updates

zym9863/ionic-snake #2

6.14.0 → 6.14.2 Patch PR
Open about 14 hours ago 3 comments
zym9863
chore(deps): bump the npm_and_yarn group across 13 directories with 18 updates

UniversalStandards/activepieces #27

6.11.2 → 6.14.2 Minor PR
Open about 15 hours ago 2 comments
UniversalStandards
chore(deps): bump the npm_and_yarn group across 3 directories with 6 updates

KooshaPari/claude-code-flow #7

6.13.0 → 6.14.2 Minor PR
Closed about 15 hours ago 2 comments
KooshaPari
Bump the npm_and_yarn group across 1 directory with 4 updates

Teknologforeningen/tf.fi #122

6.14.1 → 6.14.2 Patch PR
Closed about 15 hours ago 1 comment
Teknologforeningen
chore(deps): bump the npm_and_yarn group across 14 directories with 12 updates

SherfeyInv/clir #801

6.7.0 → 6.14.2 Minor PR
Open about 18 hours ago 1 comment
SherfeyInv
Bump the npm_and_yarn group across 6 directories with 22 updates

alokkulkarni/backstage #10

6.5.3 → 6.5.5 Patch PR
Closed about 18 hours ago 1 comment
alokkulkarni
Bump the npm_and_yarn group across 1 directory with 5 updates

tahayparker/vacansee #13

6.14.0 → 6.15.0 Minor PR
Open about 20 hours ago 3 comments
tahayparker
Bump the npm_and_yarn group across 6 directories with 21 updates

alokkulkarni/backstage #9

6.5.3 → 6.5.5 Patch PR
Closed about 20 hours ago 1 comment
alokkulkarni
build(deps): bump the npm_and_yarn group across 1 directory with 15 updates

zym9863/Do-Not-Say-Goodbye #1

6.14.0 → 6.15.0 Minor PR
Open about 21 hours ago 1 comment
zym9863
Bump the npm_and_yarn group across 5 directories with 23 updates

ammar-knowledge/storybook #448

6.5.3 → 6.5.5 Patch PR
Open about 21 hours ago 3 comments
ammar-knowledge
Bump the npm_and_yarn group across 12 directories with 18 updates

balajirajput96/activepieces #25

6.11.2 → 6.14.2 Minor PR
Open about 21 hours ago 1 comment
balajirajput96
chore(deps): bump the npm_and_yarn group across 4 directories with 21 updates

bobdavis84/jan #12

6.5.3 → 6.5.5 Patch PR
Closed about 21 hours ago 1 comment
bobdavis84
chore(deps): bump the npm_and_yarn group across 17 directories with 12 updates

Kbro1989/cloudflare-code-agent #8

6.14.0 → 6.15.0 Minor PR
Open about 21 hours ago 1 comment
Kbro1989
Bump the npm_and_yarn group across 14 directories with 21 updates

GlacierEQ/activepieces #26

6.11.2 → 6.14.2 Minor PR
Open about 21 hours ago 3 comments
GlacierEQ
chore(deps): bump the npm_and_yarn group across 13 directories with 17 updates

sizzlebop/activepieces #24

6.11.2 → 6.14.2 Minor PR
Closed about 22 hours ago 1 comment
sizzlebop
Bump the npm_and_yarn group across 1 directory with 5 updates

Leo-march/mobile-pragasCana #23

6.13.0 → 6.15.0 Minor PR
Closed about 22 hours ago 1 comment
Leo-march
build(deps): Bump the npm_and_yarn group across 1 directory with 10 updates

zym9863/Angular-2048 #1

6.13.0 → 6.15.0 Minor PR
Open about 22 hours ago 1 comment
zym9863
deps(deps): Bump the minor-and-patch group across 1 directory with 10 updates

mattduff36/vostudiofinder #93

6.14.2 → 6.15.0 Minor PR
Open about 22 hours ago 2 comments
mattduff36
Bump the npm_and_yarn group across 22 directories with 9 updates

treinex/azuredatastudio #32

6.11.2 → 6.15.0 Minor PR
Closed about 22 hours ago 1 comment
treinex
Bump the npm_and_yarn group across 12 directories with 18 updates

ANT0071/activepieces #24

6.11.2 → 6.14.2 Minor PR
Closed about 22 hours ago 1 comment
ANT0071
build(deps): bump qs from 6.13.0 to 6.14.2 in /a2a_mcp/a2a_mcp/adaptco-ssot in the npm_and_yarn group across 1 directory

adaptco/A2A_MCP #92

6.13.0 → 6.14.2 Minor PR
Open about 22 hours ago 2 comments
adaptco
Bump the npm_and_yarn group across 6 directories with 21 updates

alokkulkarni/backstage #8

6.5.3 → 6.5.5 Patch PR
Closed about 22 hours ago 1 comment
alokkulkarni
chore(deps): bump the npm_and_yarn group across 5 directories with 8 updates

orpaynter/UI-TARS-desktop #29

6.13.1 → 6.14.2 Minor PR
Open about 23 hours ago 2 comments
orpaynter
build(deps): bump the npm_and_yarn group across 4 directories with 17 updates

ASISBusiness/sui #12

6.9.7 → 6.9.9 Patch PR
Open about 23 hours ago 3 comments
ASISBusiness
chore(deps): bump the npm_and_yarn group across 3 directories with 18 updates

paulpham157/jan #15

6.5.3 → 6.5.5 Patch PR
Closed about 23 hours ago 1 comment
paulpham157
Bump the npm_and_yarn group across 14 directories with 20 updates

GlacierEQ/activepieces #25

6.11.2 → 6.14.2 Minor PR
Open about 23 hours ago 3 comments
GlacierEQ
chore(deps): bump the npm_and_yarn group across 1 directory with 12 updates

open-webui/open-webui #22245

6.13.0 → 6.14.2 Minor PR
Closed about 23 hours ago 3 comments
open-webui
chore(deps): bump the npm_and_yarn group across 6 directories with 12 updates

EU-UNION-AI-PACT/super-productivity #4

6.13.0 → 6.14.2 Minor PR
Closed about 23 hours ago 1 comment
EU-UNION-AI-PACT
Bump the npm_and_yarn group across 1 directory with 4 updates

hms-dbmi/i2b2v2-webclient #628

6.13.0 → 6.14.2 Minor PR
Closed about 23 hours ago 1 comment
hms-dbmi
Bump the npm_and_yarn group across 3 directories with 7 updates

sussybocca/.HSX #13

6.14.1 → 6.15.0 Minor PR
Open about 23 hours ago 1 comment
sussybocca
chore(deps): bump the npm_and_yarn group across 4 directories with 17 updates

adrmarty/sui #14

6.9.7 → 6.9.9 Patch PR
Closed about 23 hours ago 1 comment
adrmarty
build(deps): bump the npm_and_yarn group across 1 directory with 10 updates

coutureb/anubis #4

6.13.0 → 6.14.2 Minor PR
Closed about 23 hours ago 1 comment
coutureb
chore(deps): bump the npm_and_yarn group across 8 directories with 8 updates

orpaynter/UI-TARS-desktop #28

6.13.1 → 6.14.2 Minor PR
Open 1 day ago 1 comment
orpaynter
chore(deps): bump the npm_and_yarn group across 3 directories with 18 updates

Kakachia777/UI-TARS-desktop #14

6.13.1 → 6.14.2 Minor PR
Open 1 day ago 1 comment
Kakachia777
chore(deps): bump the npm_and_yarn group across 4 directories with 11 updates

cenanimutlu/UI-TARS-desktop #16

6.13.1 → 6.14.2 Minor PR
Closed 1 day ago 1 comment
cenanimutlu
chore(deps): bump the npm_and_yarn group across 7 directories with 10 updates

zapabob/codex #100

6.14.1 → 6.15.0 Minor PR
Open 1 day ago 1 comment
zapabob
chore(deps): bump the npm_and_yarn group across 4 directories with 5 updates

elizaOS/eliza #6549

6.14.0 → 6.15.0 Minor PR
Closed 1 day ago 1 comment
elizaOS
chore(deps): bump the npm_and_yarn group across 2 directories with 3 updates

EPFL-ENAC/co2-calculator #554

6.14.1 → 6.14.2 Patch PR
Closed 1 day ago 2 comments
EPFL-ENAC
Bump the npm_and_yarn group across 3 directories with 5 updates

Shriramdb-AdopleAI/Adople-Enterprice #9

6.14.1 → 6.15.0 Minor PR
Closed 1 day ago 1 comment
Shriramdb-AdopleAI
Bump the npm_and_yarn group across 14 directories with 19 updates

GlacierEQ/activepieces #24

6.11.2 → 6.14.2 Minor PR
Closed 2 days ago 4 comments
GlacierEQ
chore(deps): bump the npm_and_yarn group across 13 directories with 16 updates

UniversalStandards/activepieces #24

6.11.2 → 6.14.2 Minor PR
Open 2 days ago 2 comments
UniversalStandards
Package Details
Name: qs
Ecosystem: npm
PURL Type: npm
Package URL: pkg:npm/qs
JSON API: View JSON
Security Advisories

6

Active advisories
HIGH 4
MODERATE 1
LOW 1
View All npm Advisories
Package Information
Description:

A querystring parser that supports nesting and arrays, with a depth limit

Repository: https://github.com/ljharb/qs
Homepage: https://github.com/ljharb/qs
Latest Release: 6.14.0
about 1 year ago
Dependent Repos: 2,110,964
Dependent Packages: 15,944
Downloads: 399,573,108
Ranking: Top 0.0137% by dependent repos Top 0.0019% by downloads Top 0.0064% by dependent pkgs
PR Status
Open 5,435 (28.0%)
Merged 322 (1.7%)
Closed 13,364 (68.9%)
PR Types
Removal 64 (0.3%)
Minor 11,910 (61.4%)
Major 44 (0.2%)
Patch 7,073 (36.5%)