Package Health

form-data

A library to create readable "multipart/form-data" streams. Can be used to submit forms and file uploads to other web applications.

Latest 4.0.6NPMNPM

92%

Total Score

Maintainer Stability
Maintainer Stability
Assesses the consistency and reliability of package maintainers

100

Dependencies
Dependencies
Evaluates the health and security of package dependencies

86

Maturity
Maturity
Indicates package age, release frequency, and adoption metrics

89

Supply Chain
Supply Chain
Evaluates supply chain security practices and risks

100

Attestations
Attestations
Measures the presence and validity of package attestations and signatures

0

Are you affected? Scan for Free

Vulnerabilities

TitleVersionsSeverity
CVE-2026-12143
form-data is vulnerable to Improper Neutralization of CRLF Sequences ('CRLF Injection') in versions 0.0.0 - 2.5.6, 3.0.0 - 3.0.5 and 4.0.0 - 4.0.6.
0.0.0 - 2.5.63.0.0 - 3.0.54.0.0 - 4.0.6
High
CVE-2025-7783
form-data is vulnerable to Use of Insufficiently Random Values in versions 0.0.0 - 2.5.4, 3.0.0 - 3.0.4 and 4.0.0 - 4.0.4.
0.0.0 - 2.5.43.0.0 - 3.0.44.0.0 - 4.0.4
Critical

Package versions

Direct Dependencies

DependencyLast ReleaseScore
hasown
Version ^2.0.4
asynckit
Version ^0.4.0
mime-types
Version ^2.1.35
combined-stream
Version ^1.0.8
es-set-tostringtag
Version ^2.1.0

Weekly Downloads

Info

Last Published
1 month ago
Created
15 years ago
Unpacked Size
0.1 MB