Button Text
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Angular NES
Angular NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Get security updates for the following versions of Angular beyond end-of-life:
v4 - v15
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Priced per user.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day critical patch SLA
  • Compatible with all modern browsers
User icon
What is a “User”?
A user is any person committing Angular code to the project repo. Users are unnamed and transferrable across team members.
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Core icon
Core
Get security updates for the following versions of Angular beyond end-of-life:
Custom Pricing
Billed Annually. Priced per User
v4 - v15
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Priced per user.
Get security updates for common
Angular
dependencies:
  • RxJS
  • NgRX
  • Angular Material
  • Ngx-translate
  • Ngx-Bootstrap

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day find-to-fix on high severity issues
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Angular code to the project repo. Users are unnamed and transferrable across team members.
Angular
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Angular NES
Our latest version of
Angular NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Angular
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Text Link
Drupal 7 NES
Drupal 7 NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Get Security Updates for Drupal 7 Core, Core Modules, and Core Themes as well as All Contributed Modules for Drupal 7 - with the guarantees of an Enterprise Grade SLA other high value features.

Our Drupal 7 NES Basic Edition covers all community-contributed (contrib) modules*

  • Installs within minutes
  • Compatible with all modern browsers
  • Email Support Only

*Exclusions apply: Custom modules, modules that break due to third-party API changes, and closed-source or proprietary (closed-license) modules are not covered.

User icon
What is a “Site”?
A “site” means, (i) an individual dedicated website, and/or (ii) multiple websites co-located in a shared environment, and/or (iii) a deployment target, for which Subscription Services are deployed.
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Get Security Updates for Drupal 7 Core, Core Modules, and Core Themes as well as All Contributed Modules for Drupal 7 - with the guarantees of an Enterprise Grade SLA other high value features.
Get security updates for common
Drupal 7
dependencies:

Our Drupal Essentials support coverage includes all contrib modules*.

*This excludes custom-modules, modules which break due to 3rd party APIs, closed-source / closed-license modules.

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day find-to-fix on high severity issues
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “Site”?
A “site” means, (i) an individual dedicated website, and/or (ii) multiple websites co-located in a shared environment, and/or (iii) a deployment target, for which Subscription Services are deployed.
Drupal 7
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Drupal 7 NES
Our latest version of
Drupal 7 NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Drupal 7
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Text Link
jQuery NES
jQuery NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Get security updates for the following versions of jQuery beyond end-of-life:
1.3.x, 1.5.x, 1.6.x, 1.7.x, 1.12.x, 2.2.x
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Priced per user.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day critical patch SLA
  • Compatible with all modern browsers
User icon
What is a “User”?
A user is any person committing jQuery code to the project repo. Users are unnamed and transferrable across team members.
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Core icon
Core
Compatible with Core Versions of jQuery
Custom Pricing
Billed Annually. Priced per User
1.3.x, 1.5.x, 1.6.x, 1.7.x, 1.12.x, 2.2.x
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Priced per user.
Get security updates for common
jQuery
dependencies:
  • jQueryUI
  • jQuery-validation
  • jQuery Mobile

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day find-to-fix on high severity issues
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing jQuery code to the project repo. Users are unnamed and transferrable across team members.
jQuery
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
jQuery NES
Our latest version of
jQuery NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
jQuery
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Text Link
AngularJS NES
AngularJS NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Get security updates for the following versions of AngularJS beyond end-of-life:
1.5.x, 1.8.x
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Priced per user.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day critical patch SLA
  • Compatible with all modern browsers
User icon
What is a “User”?
A user is any person committing AngularJS code to the project repo. Users are unnamed and transferrable across team members.
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Core icon
Core
Get security updates for the following versions of AngularJS beyond end-of-life:
Custom Pricing
Billed Annually. Priced per User
1.5.x, 1.8.x
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Priced per user.
Get security updates for common
AngularJS
dependencies:
  • Angular UI Router
  • Angular UI Bootstrap
  • angular-filter
  • angular-local-storage
  • angular-moment
  • angular-translate
  • material
  • Protractor
  • ui-select
  • ui-sortable

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day find-to-fix on high severity issues
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing AngularJS code to the project repo. Users are unnamed and transferrable across team members.
AngularJS
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
AngularJS NES
Our latest version of
AngularJS NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
AngularJS
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Text Link
Vue 2 NES
Vue 2 NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Get security updates for the following versions of Vue 2 beyond end-of-life:
2.x
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Priced per user.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day critical patch SLA
  • Compatible with all modern browsers
User icon
What is a “User”?
A user is any person committing Vue 2 code to the project repo. Users are unnamed and transferrable across team members.
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Core icon
Core
Get security updates for the following versions of Vue 2 beyond end-of-life:
Custom Pricing
Billed Annually. Priced per User
2.x
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Priced per user.
Get security updates for common
Vue 2
dependencies:
  • Nuxt v2
  • Vue Router
  • Vuex
  • Vuetify 2
  • BootstrapVue 2

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day find-to-fix on high severity issues
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Vue 2 code to the project repo. Users are unnamed and transferrable across team members.
Vue 2
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Vue 2 NES
Our latest version of
Vue 2 NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Vue 2
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Text Link
Bootstrap NES
Bootstrap NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Get security updates for the following versions of Bootstrap beyond end-of-life:
2.x, 3.x, 4.x
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Priced per user.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day critical patch SLA
  • Compatible with all modern browsers
User icon
What is a “User”?
A user is any person committing Bootstrap code to the project repo. Users are unnamed and transferrable across team members.
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed Annually. Priced per User
2.x, 3.x, 4.x
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Priced per user.
Get security updates for common
Bootstrap
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day find-to-fix on high severity issues
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Bootstrap code to the project repo. Users are unnamed and transferrable across team members.
Bootstrap
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Bootstrap NES
Our latest version of
Bootstrap NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Bootstrap
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Text Link
Nuxt NES
Nuxt NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Get security updates for the following versions of Nuxt beyond end-of-life:
2.x
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Priced per user.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day critical patch SLA
  • Compatible with all modern browsers
User icon
What is a “User”?
A user is any person committing Nuxt code to the project repo. Users are unnamed and transferrable across team members.
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed Annually. Priced per User
2.x
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Priced per user.
Get security updates for common
Nuxt
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day find-to-fix on high severity issues
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Nuxt code to the project repo. Users are unnamed and transferrable across team members.
Nuxt
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Nuxt NES
Our latest version of
Nuxt NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Nuxt
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Text Link
NES for Spring
NES for Spring
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
5.3.x
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Our core subscription aimed at users needing basic, essential security coverage for Spring’s main framework and projects. Ideal for all enterprises needing reliable, core-level protection.

Get security updates on key packages, including but not limited to:

User icon
What is a “User”?
A user is any person committing Spring code to the project repo. Users are unnamed and transferrable across team members.
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed Annually. Priced per User
5.3.x
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Our core subscription aimed at users needing basic, essential security coverage for Spring’s main framework and projects. Ideal for all enterprises needing reliable, core-level protection.
Get security updates for common
Spring
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day find-to-fix on high severity issues
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Spring code to the project repo. Users are unnamed and transferrable across team members.
Spring
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
NES for Spring
Our latest version of
NES for Spring
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Spring
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Text Link
Protractor NES
Protractor NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Get security updates for the following versions of Protractor beyond end-of-life:
7.0.0
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Priced per user.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day critical patch SLA
  • Compatible with all modern browsers
User icon
What is a “User”?
A user is any person committing Protractor code to the project repo. Users are unnamed and transferrable across team members.
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed Annually. Priced per User
7.0.0
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Priced per user.
Get security updates for common
Protractor
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day find-to-fix on high severity issues
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Protractor code to the project repo. Users are unnamed and transferrable across team members.
Protractor
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Protractor NES
Our latest version of
Protractor NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Protractor
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Text Link
ESLint NES
ESLint NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Get security updates for the following versions of ESLint beyond end-of-life:
8.57.0
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Priced per user.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day critical patch SLA
  • Compatible across all essential platforms and technologies
User icon
What is a “User”?
A user is any person committing ESLint code to the project repo. Users are unnamed and transferrable across team members.
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed Annually. Priced per User
8.57.0
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Priced per user.
Get security updates for common
ESLint
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day find-to-fix on high severity issues
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing ESLint code to the project repo. Users are unnamed and transferrable across team members.
ESLint
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
ESLint NES
Our latest version of
ESLint NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
ESLint
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Text Link
Express NES
Express NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Get security updates for the following versions of Express beyond end-of-life:
3.x
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Priced per user.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day critical patch SLA
  • Compatible with all modern browsers
User icon
What is a “User”?
A user is any person committing Express code to the project repo. Users are unnamed and transferrable across team members.
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed Annually. Priced per User
3.x
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Priced per user.
Get security updates for common
Express
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day find-to-fix on high severity issues
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Express code to the project repo. Users are unnamed and transferrable across team members.
Express
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Express NES
Our latest version of
Express NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Express
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Text Link
Node.js NES
Node.js NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Get security updates for the following versions of Node.js beyond end-of-life:
12, 14, 16, 18
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Priced per user.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day critical patch SLA
  • Compatible across essential platforms and technologies
User icon
What is a “User”?
A user is any person committing Node.js code to the project repo. Users are unnamed and transferrable across team members.
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed Annually. Priced per User
12, 14, 16, 18
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Priced per user.
Get security updates for common
Node.js
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day find-to-fix on high severity issues
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Node.js code to the project repo. Users are unnamed and transferrable across team members.
Node.js
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Node.js NES
Our latest version of
Node.js NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Node.js
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Text Link
Rails NES
Rails NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Get security updates for the following versions Rails beyond end-of-life:
2.3, 3.2, 4.2, 5.2, and 6.1
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Priced per user.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day critical patch SLA
  • Compatible with all modern browsers
User icon
What is a “User”?
A user is any person committing Rails code to the project repo. Users are unnamed and transferrable across team members.
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed Annually. Priced per User
2.3, 3.2, 4.2, 5.2, and 6.1
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Priced per user.
Get security updates for common
Rails
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day find-to-fix on high severity issues
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Rails code to the project repo. Users are unnamed and transferrable across team members.
Rails
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Rails NES
Our latest version of
Rails NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Rails
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Text Link
.NET NES
.NET NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Get security updates for the following versions of .NET beyond end-of-life:
6, 8
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Priced per user.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day critical patch SLA
  • Compatible with all modern browsers
User icon
What is a “User”?
A user is any person committing .NET code to the project repo. Users are unnamed and transferrable across team members.
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed Annually. Priced per User
6, 8
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Priced per user.
Get security updates for common
.NET
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day find-to-fix on high severity issues
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing .NET code to the project repo. Users are unnamed and transferrable across team members.
.NET
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
.NET NES
Our latest version of
.NET NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
.NET
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Text Link
PHP
PHP
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Get security updates for the following versions of PHP beyond end-of-life:
7.2, 7.3, 7.4, 8.0
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Priced per user.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day critical patch SLA
  • Compatible with all modern browsers
User icon
What is a “User”?
A user is any person committing PHP code to the project repo. Users are unnamed and transferrable across team members.
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed Annually. Priced per User
7.2, 7.3, 7.4, 8.0
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Priced per user.
Get security updates for common
PHP
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day find-to-fix on high severity issues
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing PHP code to the project repo. Users are unnamed and transferrable across team members.
PHP
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
PHP
Our latest version of
PHP
include fixes for the vulnerabilities below. Our secure drop-in replacement for
PHP
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Text Link
Grunt NES
Grunt NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Get security updates for the following versions of Grunt beyond end-of-life:
v0.4 - 1.5
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Priced per user.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day critical patch SLA
  • Compatible across all essential platforms and technologies
User icon
What is a “User”?
A user is any person committing Grunt code to the project repo. Users are unnamed and transferrable across team members.
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed Annually. Priced per User
v0.4 - 1.5
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Priced per user.
Get security updates for common
Grunt
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day find-to-fix on high severity issues
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Grunt code to the project repo. Users are unnamed and transferrable across team members.
Grunt
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Grunt NES
Our latest version of
Grunt NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Grunt
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Text Link
Fastify NES
Fastify NES
Open in new tab icon
Core icon
Core
Widgets icon
Basic Edition
Foundations icon
Foundations
Get security updates for the following versions of Fastify beyond end-of-life:
3.x
Custom Pricing
Billed Annually. Priced per User
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
Custom Pricing
Billed annually. Priced per user.
  • Easy to install
  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day critical patch SLA
  • Compatible across all essential platforms and technologies
User icon
What is a “User”?
A user is any person committing Fastify code to the project repo. Users are unnamed and transferrable across team members.
Essentials icon
Essentials Add-On
Data Essentials icon
Essentials
Core icon
Core
Custom Pricing
Billed Annually. Priced per User
3.x
Custom Pricing
Billed Annually. Priced per User
Arrow
Add to Quote
Check icon
Added to Quote
If your requirements go beyond what’s included in NES for Spring: Foundations, our Essentials Add-On offers the flexibility to customize your support package.
This allows you to select only the additional Spring packages you need, ensuring that your applications get the right level of security without paying for features you won’t use.
Custom Pricing
Billed annually. Priced per user.
Get security updates for common
Fastify
dependencies:

Our Drupal 7 NES Core includes everything in the Basic Edition, plus:

  • FedRAMP, PCI, HIPAA, SOC 2 compliant
  • 14-day find-to-fix on high severity issues
  • PHP Security Support Add-On
  • Dedicated Email & Phone Support
Information icon
This is an add-on subscription and cannot be purchased separately.
User icon
What is a “User”?
A user is any person committing Fastify code to the project repo. Users are unnamed and transferrable across team members.
Fastify
Support icon
Talk to sales for full list of supported packages
Fix these Vulnerabilities immediately with
Fastify NES
Our latest version of
Fastify NES
include fixes for the vulnerabilities below. Our secure drop-in replacement for
Fastify
is easy to install and takes only a few minutes to set up.
Severity
ID
Category
Version(s) Affected
Published Date
Education & Non-Profit
Special pricing is available for qualified non-profit or educational organizations.
Text Link
Quote Summary
Selected (0)
Number of Users
-
Exclamation icon
No results found

Please clear filter tag to use the search option

Check icon
Added to Quote
CVE-2024-53677
Critical
Remote Code Execution
>=2.0.0 <=2.3.37, >=2.5.0 <=2.5.33, >=6.0.0 <=6.3.0.2
Dec 17, 2024
CVE-2024-38829
Low
Authorization Bypass
<=2.4.3, >=3.0.0 <=3.0.9, >=3.1.0 <=3.1.7, >=3.2.0 <3.2.7
Nov 20, 2024
CVE-2024-38827
Medium
Authorization Bypass
<=5.7.13, >=5.8.0 <=5.8.15, >=6.0.0 <=6.0.13, >=6.1.0 <=6.1.11, >=6.2.0 <=6.2.7, >=6.3.0 <=6.3.4
Nov 19, 2024
CVE-2024-38828
Medium
Denial of Service
<5.3.42
Nov 15, 2024
CVE-2024-38819
High
Path Traversal
<5.3.41, >=6.0.0 <6.0.25, >=6.1.0 <6.1.14
Oct 30, 2024
CVE-2024-10491
Medium
Resource Injection
>=3.0.0-alpha1 <=3.21.2
Oct 29, 2024
CVE-2024-38821
Critical
Authorization Bypass
>=5.7.0 <5.7.13, >=5.8.0 <5.8.15, >=6.0.0 <6.0.13, >=6.1.0 <6.1.11, >=6.2.0 <6.2.7, >=6.3.0 <6.3.4
Oct 25, 2024
CVE-2024-38820
Low
Authorization Bypass
<5.3.41, >=6.0.0 <6.0.25, >=6.1.0 <6.1.14
Oct 23, 2024
HD-2024-1410
Medium
Resource Injection
>=3.0.0-alpha1 <=3.21.2, >=4.0.0-rc1 <4.21.1, >=5.0.0-alpha.1 <5.0.1
Oct 17, 2024
HD-2024-1407
High
HTTP Request Smuggling
>=16.0.0 <16.20.1, >=18.0.0 <18.16.1, >=20.0.0 <20.3.1
Oct 16, 2024
HD-2024-1409
Medium
Denial of Service
>=14.0.0 <=14.21.3, >=16.0.0 <=16.20.2
Oct 15, 2024
HD-2024-1408
Low
Information Exposure
>=16.0.0 <=16.20.2
Oct 15, 2024
CVE-2024-9506
Low
ReDoS Vulnerability
>=2.0.0 <3.0.0
Oct 14, 2024
HD-2024-2201
High
Command Injection
Vue 2.6, Vue 2.7, and Nuxt 2
Oct 8, 2024
CVE-2024-9266
Medium
URL Redirect/Open Redirect
>=3.4.5 <4.0.0
Oct 3, 2024
CVE-2024-4577
Critical
Content Spoofing
>=8.1.0 <8.1.29, >=8.2.0 <8.2.20, >=8.3.0 <8.3.8
Sep 30, 2024
CVE-2024-38816
High
Path Traversal
>=5.3.0 <=5.3.39, >=6.0.0 <=6.0.23, >=6.1.0 <=6.1.12
Sep 12, 2024
CVE-2024-43796
Medium
Cross-Site Scripting
>=3.0.0-alpha1, <=3.21.2, >=4.0.0-rc1, <4.20.0, >=5.0.0-alpha.1 <5.0.0
Sep 10, 2024
CVE-2024-8373
Medium
Content Spoofing
>=1.3.0-rc.4
Sep 9, 2024
CVE-2024-8372
Medium
Content Spoofing
>=1.3.0-rc.4
Sep 9, 2024
CVE-2024-38809
Medium
Denial of Service
>=4.3.0 <=4.3.30, >=5.3.0 <5.3.38, >=6.0.0 <6.0.23, >=6.1.0 <6.1.12
Aug 27, 2024
CVE-2024-38807
Medium
Signature Forgery
>=2.7.0 <=2.7.21, >=3.0.0 <=3.0.16, >=3.1.0 <=3.1.12, >=3.2.0 <=3.2.8, >=3.3.0 <=3.3.2
Aug 23, 2024
CVE-2024-6783
Medium
Cross-Site Scripting
>=2.0.0 <3.0.0
Jul 23, 2024
CVE-2024-6531
Medium
Cross-Site Scripting
>=4.0.0 <=4.6.2
Jul 11, 2024
CVE-2024-6484
Medium
Cross-Site Scripting
>=2.0.0 <=3.4.1
Jul 11, 2024
CVE-2024-6485
Medium
Cross-Site Scripting
>=1.4.0 <=3.4.1
Jul 11, 2024
CVE-2024-33665
Medium
Cross-Site Scripting
>=2.19.1
Apr 25, 2024
CVE-2024-22262
High
URL Redirect/Open Redirect
>=4.3.0, >=5.3.0 <5.3.34, >=6.0.0 <6.0.19, >=6.1.0 <6.1.6
Apr 16, 2024
CVE-2024-22259
High
URL Redirect/Open Redirect
<=4.3.31, >=5.3.0 <5.3.33, >=6.0.0 <6.0.17, >=6.1.0 <6.1.5
Mar 16, 2024
CVE-2024-22243
High
URL Redirect/Open Redirect
>=4.3.0 <=4.3.30, >=5.3.0 <5.3.32, >=6.0.0 <6.0.17, >=6.1.0 <6.1.4
Feb 23, 2024
CVE-2024-21490
High
ReDoS Vulnerability
>=1.3.0
Feb 10, 2024
CVE-2023-20883
High
Denial of Service
>=1.5.0 <=1.5.22, >=2.5.0 <2.5.15, >=2.6.0 <2.6.15, >=2.7.0 <2.7.12 >=3.0.0 <3.0.7
May 19, 2023
CVE-2023-26116
Medium
ReDoS Vulnerability
>=1.2.21
Mar 30, 2023
CVE-2023-26117
Medium
ReDoS Vulnerability
>=1.0.0
Mar 30, 2023
CVE-2023-26118
Medium
ReDoS Vulnerability
>=1.4.9
Mar 30, 2023
CVE-2022-27772
High
Resource Injection
<2.2.11
Mar 30, 2023
CVE-2022-30123
Critical
Remote Code Execution
2.2.0.0 - <=2.2.3.0 2.1.0.0 - <=2.1.4.0 2.0.0.0 - <=2.0.9.0
Dec 5, 2022
CVE-2022-25869
Medium
Cross-Site Scripting
<=1.8.3
Jul 15, 2022
CVE-2021-4231
Medium
Cross-Site Scripting
<=11.1.0
May 26, 2022
CVE-2022-21831
Critical
Remote Code Execution
7.0.0.0 - <= 7.0.2.2 6.1.0.0 - <= 6.1.4.6 6.0.0.0 - <= 6.0.4.6 5.2.0.0 - <= 5.2.6.2
May 26, 2022
CVE-2022-22976
Medium
Authorization Bypass
<5.5.7, >=5.6.0 <5.6.4
May 17, 2022
CVE-2022-22978
High
Authorization Bypass
<5.4.11, >=5.5.0 <5.5.7, >=5.6.x <5.6.4
May 16, 2022
CVE-2022-25844
Medium
ReDoS Vulnerability
>=1.7.0
May 1, 2022
CVE-2021-22112
Low
Denial of Service
<5.2.9.RELEASE, >=5.3.0 <5.3.9.RELEASE, >=5.4.0 <5.4.4
Feb 19, 2021
CVE-2020-8165
Critical
Remote Code Execution
6.0.0 - <= 6.0.3.0 5.0.0 - <= 5.2.4.2
Jun 19, 2020
CVE-2020-7676
Medium
Cross-Site Scripting
<1.8.0
Jun 8, 2020
CVE-2020-7656
Medium
Cross-Site Scripting
<1.9.0
May 19, 2020
CVE-2020-8159
Critical
Remote Code Execution
Rails 3.x Rails 2.x Rails > 4.x if using actionpack_page-cache <= 1.2.0
May 12, 2020
CVE-2020-11022
Medium
Cross-Site Scripting
>=1.2.0 <3.5.0
Apr 29, 2020
CVE-2020-11023
Medium
Cross-Site Scripting
>=1.0.3 <3.5.0
Apr 29, 2020
CVE-2019-10768
Critical
Cross-Site Scripting
<1.7.9
Nov 19, 2019
CVE-2019-11358
Medium
Cross-Site Scripting
>=1.1.4 <3.4.0
Apr 19, 2019
CVE-2019-5418
High
Information Exposure
6.0.0 - <= 6.0.0.beta2 5.2.0 - <= 5.2.2.0 All of 4.x prior to HeroDevs 4.2 LTS All of 3.x prior to HeroDevs 3.2 LTS All of 2.x prior to HeroDevs 2.3
Mar 27, 2019
CVE-2019-5420
Critical
Remote Code Execution
6.0.0.0 - <= 6.0.0.beta2 5.2.0.0 - <= 5.2.2.0
Mar 27, 2019
CVE-2015-9251
Medium
Cross-Site Scripting
<1.12.2 >=1.12.3 <3.0.0
Jan 18, 2018
CVE-2013-0277
Critical
Remote Code Execution
3.0.0 - <3.1.0 2.0.0 - <2.3.17
Feb 12, 2013
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Trusted by 600+ companies
Google logo
Microsoft logo
Finra logo
Hitachi logo
Santander logo
Dropbox logo
GE logo
Lilly logo
Capital One logo
NHS logo
Zurich logo
box logo
Experian logo
SAP logo
unqork logo
Acquia logo
Carnegie Learning logo
Schneider logo
Abbott logo
Workday logo
Chevron logo

Frequently Asked Questions

Get answers to some of our most commonly asked questions.
Of course, if you can't find the answer you're looking for, feel free to contact us.
How are licenses tracked? Do you install a license server?
Do you offer discounts for nonprofits, open source companies, or educational institutions?
How hard is it to get this through our InfoSec and Legal procurement process?
Do I pay extra for development, staging, etc. environments?
How does intellectual property for NES libraries work?
Do you have multi-year license options?
What does a license cover?
What happens if team members leave or join after we’ve purchased licenses?
What makes onboarding so easy?