Top 0.1% downloads on npmjs.org
Top 0.1% dependent packages on npmjs.org
Top 0.1% dependent repos on npmjs.org
Top 1.1% forks on npmjs.org
Top 0.1% docker downloads on npmjs.org
npmjs.org : jsonwebtoken
JSON Web Token implementation (symmetric and asymmetric)
Registry
-
Source
- Homepage
- JSON
purl: pkg:npm/jsonwebtoken
Keywords:
jwt
License: MIT
Latest release: over 1 year ago
First release: almost 12 years ago
Dependent packages: 21,931
Dependent repositories: 718,942
Downloads: 79,077,445 last month
Stars: 17,941 on GitHub
Forks: 1,244 on GitHub
Docker dependents: 13,754
Docker downloads: 3,402,856,089
Total Commits: 371
Committers: 104
Average commits per author: 3.567
Development Distribution Score (DDS): 0.671
More commit stats: commits.ecosyste.ms
See more repository details: repos.ecosyste.ms
Last synced: about 2 hours ago
GSA_kwCzR0hTQS0yN2gyLWh2cHItcDc0cc4AAwge
jsonwebtoken has insecure input validation in jwt.verify functionEcosystems: npm
Packages: jsonwebtoken
Source: github
Published: over 2 years ago
Withdrawn: over 2 years ago
GSA_kwCzR0hTQS1xd3BoLTQ5NTItN3hyNs4AAwgg
jsonwebtoken vulnerable to signature validation bypass due to insecure default algorithm in jwt.verify()Ecosystems: npm
Packages: jsonwebtoken
Source: github
Published: over 2 years ago
GSA_kwCzR0hTQS1oanJmLTJtNjgtNTk1Oc4AAwgh
jsonwebtoken's insecure implementation of key retrieval function could lead to Forgeable Public/Private Tokens from RSA to HMACEcosystems: npm
Packages: jsonwebtoken
Source: github
Published: over 2 years ago
GSA_kwCzR0hTQS04Y2Y3LTMyZ3ctd3IzM84AAwgf
jsonwebtoken unrestricted key type could lead to legacy keys usageEcosystems: npm
Packages: jsonwebtoken
Source: github
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM3aHItajRtai1qMnc2
Verification Bypass in jsonwebtokenEcosystems: npm
Packages: jsonwebtoken
Source: github
Published: over 6 years ago