Homepage

@casl/ability

CASL is an isomorphic authorization JavaScript library which restricts what resources a given user is allowed to access
Licenses: MIT
Published: 8 years ago Last updated: 3 days ago Latest version: 7.0.0 Latest non-vulnerable version: 7.0.0

License

MIT>=0;
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the @casl/ability package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • C
Prototype Pollution

>=2.4.0 <6.7.5

Package versions

91 VERSIONS IN TOTAL See all versions
versionpublisheddirect vulnerabilities
7.0.021 May, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.0.0-rc8 May, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.8.120 Apr, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.8.018 Jan, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.7.520 Dec, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.7.35 Jan, 2025
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.7.230 Oct, 2024
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.7.127 Mar, 2024
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.7.023 Feb, 2024
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.6.023 Feb, 2024
  • 1
    C
  • 0
    H
  • 0
    M
  • 0
    L