Package Health

@workos-inc/authkit-nextjs

Authentication and session helpers for using WorkOS & AuthKit with Next.js

Latest 4.2.0NPMNPM

93%

Total Score

Maintainer Stability
Maintainer Stability
Assesses the consistency and reliability of package maintainers

65

Dependencies
Dependencies
Evaluates the health and security of package dependencies

100

Maturity
Maturity
Indicates package age, release frequency, and adoption metrics

100

Supply Chain
Supply Chain
Evaluates supply chain security practices and risks

100

Attestations
Attestations
Measures the presence and validity of package attestations and signatures

100

Are you affected? Scan for Free

Vulnerabilities

TitleVersionsSeverity
AIKIDO-2026-309251 Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.
@workos-inc/authkit-nextjs is vulnerable to Insecure Direct Object Reference (IDOR) in versions 1.0.0 - 4.1.2.
1.0.0 - 4.1.2
High
CVE-2025-64762
@workos-inc/authkit-nextjs is vulnerable to Use of Cache Containing Sensitive Information in versions 0.0.0 - 2.11.0.
0.0.0 - 2.11.0
High
CVE-2024-51752
@workos-inc/authkit-nextjs is vulnerable to Insertion of Sensitive Information into Log File in versions 0.0.0 - 0.13.2.
0.0.0 - 0.13.2
Low
CVE-2024-29901
@workos-inc/authkit-nextjs is vulnerable to Authentication Bypass by Capture-replay in versions 0.0.0 - 0.4.2.
0.0.0 - 0.4.2
Medium

Package versions

Direct Dependencies

DependencyLast ReleaseScore
jose
Version ^5.10.0
valibot
Version ^1.2.0
iron-session
Version ^8.0.4
path-to-regexp
Version ^6.3.0
@sindresorhus/fnv1a
Version ^3.1.0

Weekly Downloads

Info

Last Published
9 days ago
Created
2 years ago
Unpacked Size
0.6 MB