Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

socket.io-parser

Ecosystem:
npm
Package URL:
pkg:npm/socket.io-parser
Total PRs:
282 Dependabot PRs
Latest PR:
1 day ago
Unique Repositories:
233 repositories
Unique Repos (30 days):
33 repositories
Security Advisories
Resource exhaustion in socket.io-parser
GHSA-xfhh-g9f5-x4m4 CVE-2020-36049 HIGH published about 4 years ago • updated 3 months ago
The `socket.io-parser` npm package before versions 3.3.2 and 3.4.1 allows attackers to cause a denial of service (memory consumption) via a large p...
Insufficient validation when decoding a Socket.IO packet
GHSA-qm95-pgcg-qqfq CVE-2022-2421 CRITICAL published almost 3 years ago • updated 24 days ago
Due to improper type validation in the `socket.io-parser` library (which is used by the `socket.io` and `socket.io-client` packages to encode and d...
Insufficient validation when decoding a Socket.IO packet
GHSA-cqmj-92xf-r6r9 CVE-2023-32695 MODERATE published over 2 years ago • updated 3 months ago
### Impact A specially crafted Socket.IO packet can trigger an uncaught exception on the Socket.IO server, thus killing the Node.js process. ``` ...
Recent PRs (filtered by: Closed , Minor PRs )
RSS Feed Clear filter
Bump the npm_and_yarn group across 1 directory with 6 updates

mhihmi/Web-Developer-P6 #10

4.0.4 → 4.2.4 Minor PR
Closed 24 days ago 1 comment
mhihmi
Bump socket.io-parser

rafaelgr/proasistencia #39

3.3.3 → 3.4.3 Minor PR
Closed about 1 month ago 1 comment
rafaelgr
chore(deps): bump socket.io-parser

colabottles/multiplayergame #10

3.3.0 → 3.4.3 Minor PR
Closed about 2 months ago 3 comments
colabottles
Bump socket.io-parser

naveedn/naveed-website #57

3.3.2 → 3.4.3 Minor PR
Closed about 2 months ago 1 comment
naveedn
Bump socket.io-parser

barriere-berlin/barriere-berlin #53

3.3.3 → 3.4.3 Minor PR
Closed 2 months ago 1 comment
barriere-berlin
build(deps): bump socket.io-parser and karma

adriancmiranda/Proto #6

3.2.0 → 3.4.3 Minor PR
Closed 2 months ago 1 comment
adriancmiranda
Bump socket.io-parser

smirnov-d/signal #15

3.3.2 → 3.4.3 Minor PR
Closed 2 months ago 1 comment
smirnov-d
Bump socket.io-parser and socket.io

effy-tech/angular-token #2

4.0.4 → 4.2.4 Minor PR
Closed 3 months ago 1 comment
effy-tech
Bump socket.io-parser

ChayoVS/telar-user-profile #51

3.3.3 → 3.4.3 Minor PR
Closed 3 months ago 1 comment
ChayoVS
Bump socket.io-parser and socket.io-client

QuaNode/ng-behaviours #4

4.1.1 → 4.2.4 Minor PR
Closed 4 months ago
QuaNode
Bump socket.io-parser and gatsby

ItayPodhajcer/gatsby-ipfs-azure-pipeline #19

4.0.5 → 4.2.4 Minor PR
Closed 4 months ago 2 comments
ItayPodhajcer
Bump socket.io-parser

mgechev/revive.run #65

3.3.2 → 3.4.3 Minor PR
Closed 4 months ago 1 comment
mgechev
Bump socket.io-parser

Zywave/booster #390

3.3.3 → 3.4.3 Minor PR
Closed 5 months ago 2 comments
Zywave
Bump socket.io-parser in /Client

Mustafabharmal/Be-United #1

3.3.2 → 3.4.3 Minor PR
Closed about 1 year ago
Mustafabharmal
Bump socket.io-parser and karma in /user-interface

nzilbb/labbcat-server #31

4.0.5 → 4.2.3 Minor PR
Closed over 2 years ago 2 comments
nzilbb
Package Details
Name: socket.io-parser
Ecosystem: npm
PURL Type: npm
Package URL: pkg:npm/socket.io-parser
JSON API: View JSON
Security Advisories

3

Active advisories
CRITICAL 1
HIGH 1
MODERATE 1
View All npm Advisories
Package Information
Description:

socket.io protocol parser

Repository: https://github.com/Automattic/socket.io-parser
Homepage: https://github.com/Automattic/socket.io-parser#readme
Latest Release: 4.2.4
over 2 years ago
Dependent Repos: 1,259,292
Dependent Packages: 303
Downloads: 44,217,820
Ranking: Top 0.0276% by dependent repos Top 0.0459% by downloads Top 0.1696% by dependent pkgs
PR Status
Open 132 (46.8%)
Merged 38 (13.5%)
Closed 84 (29.8%)
PR Types
Minor 55 (19.5%)
Major 77 (27.3%)
Patch 120 (42.6%)