Ecosyste.ms: Packages

An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.

Top 0.7% on npmjs.org
Top 0.1% downloads on npmjs.org
Top 0.1% dependent packages on npmjs.org
Top 0.1% dependent repos on npmjs.org
Top 1.9% forks on npmjs.org
Top 0.1% docker downloads on npmjs.org

npmjs.org : fast-xml-parser

Validate XML, Parse XML, Build XML without C/C++ based libraries

Registry - Source - JSON
purl: pkg:npm/fast-xml-parser
Keywords: fast, xml, json, parser, xml2js, x2js, xml2json, js, cli, validator, validate, transformer, assert, js2xml, json2xml, html, command-line, fast-xml-parser, locale, rapid, xml2nimn
License: MIT
Latest release: 3 months ago
First release: over 7 years ago
Dependent packages: 1,935
Dependent repositories: 157,710
Downloads: 78,350,425 last month
Stars: 2,364 on GitHub
Forks: 295 on GitHub
Docker dependents: 4,466
Docker downloads: 2,540,486,511
Total Commits: 788
Committers: 92
Average commits per author: 8.565
Development Distribution Score (DDS): 0.326
More commit stats: commits.ecosyste.ms
See more repository details: repos.ecosyste.ms
Funding links: https://github.com/sponsors/NaturalIntelligence, https://paypal.me/naturalintelligence, https://opencollective.com/fast-xml-parser
Last synced: 1 day ago

High

GSA_kwCzR0hTQS02dzYzLWgzZmotcTR2d84AAzr7

fast-xml-parser vulnerable to Regex Injection via Doctype Entities
Ecosystems: npm
Packages: fast-xml-parser
Source: github
Published: about 1 year ago

Low

GSA_kwCzR0hTQS1ncHY1LTd4M2ctZ2hqds4AAz4I

fast-xml-parser regex vulnerability patch could be improved from a safety perspective
Ecosystems: npm
Packages: fast-xml-parser
Source: github
Published: 12 months ago

Moderate

GSA_kwCzR0hTQS14M2NjLXgzOXAtNDJxeM4AAzz_

fast-xml-parser vulnerable to Prototype Pollution through tag or attribute name
Ecosystems: npm
Packages: fast-xml-parser
Source: github
Published: 12 months ago