OSS Support Hub / Web Framework

Node.js Web Framework NOASSERTION Latest: v3.0.260610-beta

Nitro

Universal server engine powering Nuxt — runs anywhere

Project Health at a Glance

Live data from GitHub and npm, updated daily.

11.0K+92
GitHub Stars
📦
v3.0.260610-beta
Latest Release · 21 days ago
🔄
16d
Avg. Release Cadence
🐛
604
Open Issues
📅
2 days ago
Last Commit
⬇️
1.7M
Weekly Downloads
🔒
2
Active CVEs

Data last fetched: 2026-06-30

Known Vulnerabilities

2 active CVEs reported via OSV.dev

Nitro has a proxy scope bypass via percent-encoded path traversal in `routeRules`

Published: 2026-05-06 Fixed in: 3.0.260429-beta

Nitro has an Open Redirect via Protocol-Relative URL Bypass in Wildcard Route Rules

Published: 2026-05-06 Fixed in: 3.0.260429-beta

Alternatives to Nitro

Other Web Framework projects in the Node.js ecosystem worth evaluating.

Support Options for Nitro

Enterprise Support via DepKeep

Get SLA-backed support, security patches, and direct access to senior engineers for Nitro — without relying on volunteer maintainers.