Homepage

@casl/ability

CASL is an isomorphic authorization JavaScript library which restricts what resources a given user is allowed to access
Licenses: MIT
Published: 8 years ago Last updated: 2 months ago Latest version: 6.8.0 Latest non-vulnerable version: 6.8.0

License

MIT>=0;
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the @casl/ability package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • C
Prototype Pollution

>=2.4.0 <6.7.5

Package versions

88 VERSIONS IN TOTAL See all versions
versionpublisheddirect vulnerabilities
6.8.018 Jan, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.7.520 Dec, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.7.35 Jan, 2025
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.7.230 Oct, 2024
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.7.127 Mar, 2024
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.7.023 Feb, 2024
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.6.023 Feb, 2024
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.5.028 Apr, 2023
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.4.02 Apr, 2023
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.3.42 Apr, 2023
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L