Data

Tools

Indexes

Applications

Experiments

Packages

An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.

Top 2.7% on npmjs.org
Top 1.9% downloads on npmjs.org
Top 3.2% dependent packages on npmjs.org
Top 5.0% dependent repos on npmjs.org
Top 2.1% forks on npmjs.org

npmjs.org : jose-node-cjs-runtime

JWA, JWS, JWE, JWT, JWK, JWKS for Node.js, Browser, Cloudflare Workers, Deno, Bun, and other Web-interoperable runtimes

Registry - Source - JSON
purl: pkg:npm/jose-node-cjs-runtime
Keywords: browser , bun , cloudflare-workers , deno , jose , jsonwebtoken , jwa , jwe , jwk , jwks , jws , jwt , node
License: MIT
Latest release: 4 months ago
First release: about 4 years ago
Dependent packages: 6
Dependent repositories: 5
Downloads: 8,259 last month
Stars: 6,538 on GitHub
Forks: 340 on GitHub
Total Commits: 1552
Committers: 33
Average commits per author: 47.03
Development Distribution Score (DDS): 0.054
More commit stats: commits.ecosyste.ms
See more repository details: repos.ecosyste.ms
Funding links: https://github.com/sponsors/panva
Last synced: 3 days ago

Moderate
GSA_kwCzR0hTQS1oaGh2LXE1N2ctODgycc4AA502
jose vulnerable to resource exhaustion via specifically crafted JWE with compressed plaintext
Ecosystems: npm
Packages: jose, jose-node-esm-runtime, jose-node-cjs-runtime
Source: github
Published: over 1 year ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ2Y3ctZjY4dy04aDho
Padding Oracle Attack due to Observable Timing Discrepancy in jose-node-cjs-runtime
Ecosystems: npm
Packages: jose-node-cjs-runtime
Source: github
Published: about 4 years ago
Moderate
GSA_kwCzR0hTQS1qdjNnLWo1OGYtOW1xOc4AAu1m
JOSE vulnerable to resource exhaustion via specifically crafted JWE
Ecosystems: npm
Packages: jose-node-esm-runtime, jose-node-cjs-runtime, jose-browser-runtime, jose
Source: github
Published: over 2 years ago