happy-dom

Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. It includes many web standards from WHATWG DOM and HTML.

Latest 20.9.0

NPM

72%

Total Score

Maintainer Stability

Dependencies

100

Maturity

100

Supply Chain

100

Attestations

Are you affected? Scan for Free

Vulnerabilities

Title	Versions	Severity
CVE-2026-34226 happy-dom is vulnerable to Insertion of Sensitive Information Into Sent Data in versions 0.0.0 - 20.8.9.	0.0.0 - 20.8.9	High
CVE-2026-33943 happy-dom is vulnerable to Improper Control of Generation of Code ('Code Injection') in versions 15.10.0 - 20.8.7.	15.10.0 - 20.8.7	High
CVE-2025-62410 happy-dom is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in versions 19.0.0 - 20.0.2.	19.0.0 - 20.0.2	Critical
CVE-2025-61927 happy-dom is vulnerable to Improper Control of Generation of Code ('Code Injection') in versions 0.0.0 - 20.0.0.	0.0.0 - 20.0.0	Critical
AIKIDO-2024-10426 happy-dom is vulnerable to Remote Code Execution (RCE) in versions 13.0.0 - 15.10.1.	13.0.0 - 15.10.1	Critical

Package versions

Maintainers

davidortner

Direct Dependencies

Dependency	Last Release	Score
ws Version ^8.18.3	—	—
entities Version ^7.0.1	—	—
@types/ws Version ^8.18.1	—	—
@types/node Version >=20.0.0	—	—
whatwg-mimetype Version ^3.0.0	—	—