Data

Tools

Indexes

Applications

Experiments

Packages

An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.

Top 0.9% on npmjs.org
Top 0.9% downloads on npmjs.org
Top 0.4% dependent packages on npmjs.org
Top 0.6% dependent repos on npmjs.org
Top 1.5% forks on npmjs.org
Top 0.1% docker downloads on npmjs.org

npmjs.org : matrix-js-sdk

Matrix Client-Server SDK for Javascript

Registry - Source - Homepage - JSON
purl: pkg:npm/matrix-js-sdk
Keywords: matrix-org , hacktoberfest , matrix , matrix-chat , matrix-sdk
License: Apache-2.0
Latest release: 7 days ago
First release: about 10 years ago
Dependent packages: 94
Dependent repositories: 1,037
Downloads: 125,931 last month
Stars: 1,772 on GitHub
Forks: 617 on GitHub
Docker dependents: 95
Docker downloads: 187,159,224
Total Commits: 8063
Committers: 178
Average commits per author: 45.298
Development Distribution Score (DDS): 0.842
More commit stats: commits.ecosyste.ms
See more repository details: repos.ecosyste.ms
Funding links: https://patreon.com/matrixdotorg, https://liberapay.com/matrixdotorg
Last synced: 7 days ago

High
GSA_kwCzR0hTQS01dzhyLThwZ2otNWptZs4AAvIn
matrix-js-sdk subject to user impersonation due to key/device identifier confusion in SAS verification
Ecosystems: npm
Packages: matrix-js-sdk
Source: github
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS02ZzY3LXEzOWctcjc5cc4AAyyO
matrix-js-sdk vulnerable to invisible eavesdropping in group calls
Ecosystems: npm
Packages: matrix-js-sdk
Source: github
Published: about 2 years ago
High
GSA_kwCzR0hTQS00amY4LWc4d3AtY3g3Y84ABARf
Matrix JavaScript SDK's key history sharing could share keys to malicious devices
Ecosystems: npm
Packages: matrix-js-sdk
Source: github
Published: 7 months ago
Moderate
GSA_kwCzR0hTQS0yM2NtLXg2ajctNmhxM80Vvw
matrix-js-sdk can be tricked into disclosing E2EE room keys to a participating homeserver
Ecosystems: npm
Packages: matrix-js-sdk
Source: github
Published: over 3 years ago
High
GSA_kwCzR0hTQS1yNDhyLWo4ZngtbXEyY84AAvIf
matrix-js-sdk subject to user spoofing via Olm/Megolm protocol confusion
Ecosystems: npm
Packages: matrix-js-sdk
Source: github
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS14dmc4LW00eDMtdzZ4cs4ABBP2
matrix-js-sdk has insufficient MXC URI validation which allows client-side path traversal
Ecosystems: npm
Packages: matrix-js-sdk
Source: github
Published: 6 months ago
High
GSA_kwCzR0hTQS02MjYzLXg5N2MtYzRnZ84AAvIe
matrix-js-sdk subject to impersonated messages due to permissive key forwarding
Ecosystems: npm
Packages: matrix-js-sdk
Source: github
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1odnY4LTV2ODYtcjQ1eM4AAvHM
Improper beacon events in matrix-js-sdk can result in availability issues
Ecosystems: npm
Packages: matrix-js-sdk
Source: github
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS12aHI1LWczcG0tNDlmbc4AA-z_
matrix-js-sdk will freeze when a user sets a room with itself as a its predecessor
Ecosystems: npm
Packages: matrix-js-sdk
Source: github
Published: 9 months ago
High
GSA_kwCzR0hTQS1td3E4LWZqcGYtYzJncs4AAydt
Prototype pollution in matrix-js-sdk (part 2)
Ecosystems: npm
Packages: matrix-js-sdk
Source: github
Published: about 2 years ago
High
GSA_kwCzR0hTQS1yZnY5LXg3aGgteGMzMs4AAyX4
matrix-js-sdk Prototype Pollution vulnerability
Ecosystems: npm
Packages: matrix-js-sdk
Source: github
Published: about 2 years ago