Dojo Toolkit End of Life (EOL) Dates & Support Timeline
Complete end-of-life dates, support windows, and security status for all Dojo Toolkit versions. Data sourced from endoflife.date and official vendor documentation. Updated at every deploy.
| Version | Latest Release | Release Date | EOL Date | Days | Status |
|---|---|---|---|---|---|
| 1 | 1.17.3 | Nov 6, 2007 | TBD | Supported | Active |
Dojo Toolkit lifecycle status — the real story
The Dojo Toolkit 1.x line stretches back to November 2007 and powered a generation of enterprise web applications — it remains embedded in older Oracle, IBM, and internal line-of-business UIs. Its last release, 1.17.3, shipped in August 2022, and while no formal end-of-life was ever declared, active maintenance has effectively ceased.
Confusingly, "Dojo" also names the modern, TypeScript-based framework the same community launched in 2018 — a separate codebase with no upgrade path from the toolkit. Organizations searching for Dojo support timelines are almost always asking about the 1.x toolkit.
With no maintainer commitment and no successor path, Dojo Toolkit 1.x applications carry indefinite-horizon risk: any future vulnerability in the toolkit or its widget library (Dijit) is unlikely to be patched upstream.
What does Dojo Toolkit end of life mean for your organization?
When a version of Dojo Toolkit reaches end of life, the maintainers stop issuing security patches. Vulnerabilities discovered after this date are publicly disclosed on the National Vulnerability Database, exploit code appears on GitHub, and your systems remain permanently exposed.
The CVE blind spot: Most vulnerability scanners check for known CVEs but do not flag the accumulation of unpatched vulnerabilities in EOL software. With a zero-day, nobody knows about the vulnerability. With EOL software, the vulnerability is public — listed, rated, and often weaponized — but no patch will ever exist. This is the most dangerous gap in enterprise security posture.
Organizations running EOL Dojo Toolkit should treat it as a vulnerability class in their risk register, apply compensating controls (network segmentation, enhanced monitoring, access restriction), and prioritize migration to a supported version.
Extended Support Options
If you cannot migrate immediately, extended support vendors provide continued security patches for EOL Dojo Toolkit versions. This is a bridge, not a permanent solution — plan your migration in parallel.
We work with vetted extended support vendors. Tell us what you need and we'll connect you with the right provider.
Contact Us →