The Code-First Notifications Workflow SDK.
96%
Total Score
100
72
100
100
100
| Title | Versions | Severity |
|---|---|---|
AIKIDO-2025-10891 Pre-CVE Found by Aikido Intel before public disclosure or CVE publication. @novu/framework is vulnerable to Cross-Site Scripting (XSS) in versions 2.5.2 - 2.8.0. | 2.5.2 - 2.8.0 | Medium |
| Dependency | Last Release | Score |
|---|---|---|
ajv Version ^8.20.0 | — | — |
chat Version 4.30.0 | — | — |
chalk Version ^4.1.2 | — | — |
liquidjs Version ^10.27.0 | — | — |
pluralize Version ^8.0.0 | — | — |
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant