Live data from GitHub and npm, updated daily.
Data last fetched: 2026-06-29
4 active CVEs reported via OSV.dev
Elysia Cookie Value Prototype Pollution
Elysia affected by arbitrary code injection through cookie config
Elysia has a string URL format ReDoS
Elysia vulnerable to prototype pollution with multiple standalone schema validation
Get SLA-backed support, security patches, and direct access to senior engineers for Elysia — without relying on volunteer maintainers.