HomeSDKsclevertap-web-sdk

clevertap-web-sdk

CleverTap Web SDK

JavaScript v2.5.5 🔒 2 vulns · HIGH 📦 89.6K/mo 🔐 5.6/10
16 stars  ·  19 forks  ·  Updated  ·  MIT

Install

npm install clevertap-web-sdk
plain text: /sdks/clevertap-web-sdk/install.txt
View on GitHub
📄 Documentation
analyticsclevertapclevertap-web-sdkengagementjavascriptnpm-packageuser-retentionweb-sdk

Supported APIs (1)

Serves the Clever Data API

Other JavaScript SDKs

aws-sdk-js Google-Assistant-Unofficial-Desktop-Client core montage azure-sdk-for-node js-buy-sdk twilio-video.js spotify-clone-client

Version history All releases ↗

- Added support for remote interaction for Web Popups, Native Display and Inbox on TV platforms.

- Added Clevertap Custom Id Support in On User Login.

## What's Changed * chore: migrate semaphore pipelines to ARM (Graviton) by @Yashprime1 in https://github.com/CleverTap/clevertap-web-sdk/pull/512 *…

## What's Changed * Support for srcset and sizes for image in visual editor by @ThisIsRaghavGupta in https://github.com/CleverTap/clevertap-web-sdk/p…

- Fixed the campaign delivery triggers logic

## What's Changed * Encryption in transit web sdk by @kkyusuftk in https://github.com/CleverTap/clevertap-web-sdk/pull/468 * Develop by @kkyusuftk i…

- Added Nested object support in profile and event properties.

## What's Changed * semaphore: replacing semaphore agents with newer upstreamed agents by @Yashprime1 in https://github.com/CleverTap/clevertap-web-s…

🔒 Security advisories (2)
HIGH
CleverTap Web SDK is vulnerable to DOM-based XSS via handleCustomHtmlPreviewPostMessageEvent function
CVE: CVE-2026-26861Fixed in 1.15.3Details ↗
HIGH
CleverTap Web SDK is vulnerable to DOM-based Cross-Site Scripting (XSS) via window.postMessage
CVE: CVE-2026-26862Fixed in 1.15.3Details ↗
Data from OSV.dev

Quality signals

Score
Stars16
Forks19
Last updated
LicenseMIT

Supported APIs (1)

clever.com

Repository

CleverTap/clevertap-web-sdk
★ Stars Issues PRs Releases

Language

JavaScript
Browse all JavaScript SDKs →
📦 Package statsnpm ↗
Monthly downloads89.6K
Bundle size (gzip)86.1 kB
Bundle (minified)286.3 kB
Used by packages2
5.6
OpenSSF Scorecard
out of 10 · 2026-03-02
Full report ↗
👁️ Code Review
9/10
🔄 Maintained
10/10
🪙 Token Permissions
0/10
📋 Security Policy
0/10
🔐 Branch ProtectionN/A
🔍 Static Analysis (SAST)
0/10