⚠️ Security Release ⚠️ Unfortunately, v5.3.1 did not include a complete fix for "Invalid content-type parsing could lead to validation bypass" and CVE-2025-32442. This is a follow-up patch to cover an edge case. What's Changed docs: fix archived concurrently link to point to active repo by @TimTeylor in https://gith...
Related items
Software EngineeringFastify GitHub
v5.3.3
What's Changed docs: update Vercel section by @leerob in https://github.com/fastify/fastify/pull/6046 docs(ecosystem): add fastify-papr plugin by @inaiat in https://github.com/fastify/fastify/pull/6051 test: migrated helper and input validation to node test runner by @ilteoood in https://github.com/fastify/fastify/p...
Software EngineeringFastify GitHub
v5.2.2
What's Changed build: use static path instead of filename by @climba03003 in https://github.com/fastify/fastify/pull/5922 fix(linting): fix linting error in error-handler.js by @Uzlopak in https://github.com/fastify/fastify/pull/5926 chore: Bump the dev-dependencies group across 1 directory with 6 updates by @depend...
Software EngineeringFastify GitHub
v5.8.3
⚠️ Security Release This fixes CVE CVE-2026-3635 https://github.com/fastify/fastify/security/advisories/GHSA-444r-cwp2-x5xf. What's Changed docs(readme): add @Tony133 to plugin team by @Tony133 in https://github.com/fastify/fastify/pull/6565 Updated Plugins-Guide.md; Changed "fastify" to "instance" during plugin reg...
Software EngineeringFastify GitHub
v5.8.2
What's Changed docs(ecosystem): add @yeliex/fastify-problem-details by @yeliex in https://github.com/fastify/fastify/pull/6546 Revert "chore: upgrade borp to v1.0.0" by @climba03003 in https://github.com/fastify/fastify/pull/6564 docs: document body validation with custom content type parsers by @mcollina in https:/...
Software EngineeringFastify GitHub
v5.7.3
⚠️ Security Release Fix https://github.com/fastify/fastify/security/advisories/GHSA-mrq3-vjjr-p77c CVE-2026-25224. What's Changed docs: update Reply.send() documentation for string serialization by @mcollina in https://github.com/fastify/fastify/pull/6466 chore: ignore agents config files by @mcollina in https://git...
Software EngineeringFastify GitHub
v5.7.2
⚠️ Notice ⚠️ Parsing of the content-type header has been improved to a strict parser in PR #6414. This means only header values in the form described in RFC 9110 are accepted. What's Changed chore: npm ignore AI related files by @climba03003 in https://github.com/fastify/fastify/pull/6447 chore: update sponsor url b...