About
Community
asana.com
68 packages
Last scanned on Oct 27 at 06:02 PM
Update
Name
Size
Popularity
Severity
lodash
4.17.16
Vulnerable
Outdated
Lodash modular utilities.
Script
https://asana.com/_next/static/chunks/pages/_app-0c1dd4a025282eaa.js
License
MIT
Footprint
11 KB
Vulnerabilities
High
GHSA-35jh-r3h4-6jhm
Command Injection in lodash
Affected versions >=0 <4.17.21
Moderate
GHSA-29mw-wpgm-hmr9
Regular Expression Denial of Service (ReDoS) in lodash
Affected versions >=0 <4.17.21
High
GHSA-p6mc-m468-83gw
Prototype Pollution in lodash
Affected versions >=3.7.0 <4.17.19
Matched Modules
Version distribution in production
3 846
4.17.16
946
4.17.21
337
4.17.20
322
4.17.15
302
4.17.19
301
4.17.13
Also used on 4830 websites
skype.com
20 packages
sentry.io
157 packages
pinterest.com
56 packages
pinimg.com
52 packages
Repository
Homepage
More
modules
stdlib
util
postcss
8.4.14
Vulnerable
Outdated
Tool for transforming styles with JS plugins
css
postcss
rework
preprocessor
parser
+4
ai
sanitize-html
2.7.2 - 2.7.3
Vulnerable
Outdated
Clean up user-submitted HTML, preserving allowlisted elements and allowlisted attributes on a per-element basis
html
parser
sanitizer
sanitize
+15
next
12.3.0 - 12.3.1
Vulnerable
Outdated
The React Framework
escape-string-regexp
4.0.0 - 5.0.0
Escape RegExp special characters
escape
regex
regexp
regular
expression
+3
sindresorhus
uuid
8.0.0
Outdated
RFC4122 (v1, v4, and v5) UUIDs
uuid
guid
rfc4122
isarray
1.0.0 - 2.0.5
Array#isArray for older browsers
browser
isarray
array
juliangruber
react-is
16.3.0 - 16.13.1
Outdated
Brand checking of React Elements.
react
+1
buffer
4.9.1 - 4.9.2
Outdated
Node.js Buffer API, for the browser
arraybuffer
browser
browserify
buffer
compatible
+2
feross
entities
2.2.0
Outdated
Encode & decode XML and HTML entities with ease & speed
entity
decoding
encoding
html
xml
+1
feedic
@babel/runtime
7.13.6 - 7.13.7
Outdated
babel's modular runtime helpers
+1
path-to-regexp
6.1.0 - 6.2.0
Outdated
Express style path to RegExp utility
express
regexp
route
routing
+2
is-plain-object
4.1.0 - 5.0.0
Returns true if an object was created by the `Object` constructor, or Object.create(null).
check
is
is-object
isobject
javascript
+7
domutils
2.8.0
Outdated
Utilities for working with htmlparser2's dom
dom
htmlparser2
feedic
base64-js
1.3.0 - 1.5.1
Base64 encoding/decoding in pure JS
base64
dom-serializer
1.0.0 - 1.4.1
Outdated
render domhandler DOM nodes to a string
html
xml
render
feedic
domhandler
4.2.2 - 4.3.1
Outdated
Handler for htmlparser2 that turns pages into a dom
dom
htmlparser2
feedic
is-buffer
2.0.0 - 2.0.5
Determine if an object is a Buffer
arraybuffer
browser
browser buffer
browserify
buffer
+10
feross
deepmerge
4.2.2
Outdated
A library for deep (recursive) merging of Javascript objects
merge
deep
extend
copy
clone
+1
tehshrike
domelementtype
2.2.0 - 2.3.0
all the types of nodes in htmlparser2's dom
dom
element
types
htmlparser2
feedic
htmlparser2
6.1.0
Outdated
Fast & forgiving HTML/XML parser
html
parser
streams
xml
dom
+3
feedic
extend
3.0.2
Port of jQuery.extend for node.js and the browser
extend
clone
merge
scheduler
0.15.0 - 0.23.0
Cooperative scheduler for the browser environment.
react
+1
prop-types
15.8.0 - 15.8.1
Runtime type checking for React props and similar objects.
react
react
17.0.0 - 18.2.0
React is a JavaScript library for building user interfaces.
react
+1
@emotion/memoize
0.7.5 - 0.8.0
Outdated
emotion's memoize utility
+1
hoist-non-react-statics
3.3.1 - 3.3.2
Copies non-react specific statics from a child component to a parent component
react
mridgway
querystring
0.2.0
Outdated
Node's querystring module for all engines.
commonjs
query
querystring
unist-util-visit-parents
1.0.0 - 4.1.0
Outdated
unist utility to recursively walk over nodes, with ancestral information
unist
unist-util
util
utility
tree
+7
unist-util-is
4.0.4 - 4.1.0
Outdated
unist utility to check if a node passes a test
unist
unist-util
util
utility
tree
+6
unist-util-visit
1.4.0 - 2.0.3
Outdated
unist utility to visit nodes
unist
unist-util
util
utility
remark
+16
classnames
2.3.2
Outdated
A simple utility for conditionally joining classNames together
react
css
classes
classname
classnames
+2
mdast-util-to-string
2.0.0
Outdated
mdast utility to get the plain text content of a node
unist
mdast
mdast-util
util
utility
+4
@emotion/is-prop-valid
1.1.2 - 1.2.0
Outdated
A function to check whether a prop is valid for HTML and SVG elements
+1
unist-util-stringify-position
2.0.0 - 2.0.3
Outdated
unist utility to serialize a node, position, or point as a human readable location
unist
unist-util
util
utility
position
+5
vfile-message
1.0.0 - 2.0.4
Outdated
vfile utility to create a virtual message
vfile
vfile-util
util
utility
virtual
+2
wooorm
@emotion/serialize
1.0.2 - 1.1.1
Outdated
serialization utils for emotion
+1
@emotion/utils
1.0.0 - 1.2.0
Outdated
internal utils for emotion
+1
unified
9.2.2
Outdated
parse, inspect, transform, and serialize content through syntax trees
ast
compile
content
cst
parse
+10
vfile
2.1.0 - 4.2.0
Outdated
Virtual file format for text processing
vfile
virtual
file
text
processing
+6
wooorm
@storybook/theming
6.5.0 - 6.5.13
Outdated
Core Storybook Components
storybook
+6
lodash-es
4.17.21
Lodash exported as ES modules.
es6
modules
stdlib
util
remark-parse
9.0.0
Outdated
remark plugin to add support for parsing markdown input
abstract
ast
markdown
mdast
parse
+6
trough
1.0.3 - 1.0.5
Outdated
`trough` is middleware
middleware
ware
wooorm
bail
1.0.0 - 2.0.2
Throw a given error
fail
bail
throw
callback
error
wooorm
@emotion/react
11.6.0 - 11.10.5
Outdated
> Simple styling in React.
+1
micromark
2.11.4
Outdated
small commonmark compliant markdown parser with positional info and concrete tokens
commonmark
compiler
gfm
html
lexer
+13
wooorm
mdast-util-from-markdown
0.8.5
Outdated
mdast utility to parse markdown
unist
mdast
mdast-util
util
utility
+6
polished
3.0.0 - 3.4.4
Outdated
A lightweight toolset for writing styles in Javascript.
styled-components
polished
emotion
glamor
css-in-js
+9
style-to-object
0.2.3 - 0.3.0
Outdated
Parse CSS inline style to JavaScript object.
style-to-object
inline
style
parser
css
+2
remarkablemark
inline-style-parser
0.1.0 - 0.1.1
Outdated
An inline style parser.
inline-style-parser
inline-style
style
parser
css
remarkablemark
react-markdown
5.0.3
Outdated
React component to render markdown
ast
commonmark
component
gfm
markdown
+4
@angular/router
10.0.0 - 14.1.3
Outdated
Angular - the routing library
angular
router
react-draggable
4.4.1 - 4.4.5
Outdated
React draggable component
react
draggable
react-component
react-focus-lock
2.3.0 - 2.9.1
Outdated
It is a trap! (for a focus)
react
focus
lock
trap
tabbable
kashey
parse-srcset
1.0.0 - 1.0.2
A spec-conformant JavaScript parser for the HTML5 srcset attribute
albell
@headlessui/react
1.3.0 - 1.7.3
Outdated
A set of completely unstyled, fully accessible UI components for React, designed to integrate beautifully with Tailwind CSS.
+1
html-react-parser
1.4.5 - 3.0.4
Outdated
HTML to React parser.
html-react-parser
html
react
parser
dom
remarkablemark
react-property
2.0.0
Outdated
HTML and SVG DOM property configs used by React.
react-property
html
svg
dom
property
+4
remarkablemark
style-to-js
1.1.1
Outdated
Parses CSS inline style to JavaScript object (camelCased).
style-to-js
css
style
javascript
object
+1
remarkablemark
@chakra-ui/theme
2.1.0 - 2.1.3
Outdated
The default theme for chakra components
theme
theming
ui mode
ui
@chakra-ui/media-query
1.2.0
Outdated
A React hook for changing properties or visibility of a component based on css media query
chakra ui
breakpoint
matchMedia
react
responsive
+1
mdast-add-list-metadata
1.0.1 - 1.1.0
Enhances the metadata of list and listItem nodes
unified
remark
mdast
markdown
unist
staltz
@contentful/rich-text-react-renderer
15.11.0 - 15.12.1
Outdated
React renderer for the Contentful rich text field type.
@bugsnag/plugin-react
7.2.1 - 7.18.0
Outdated
React integration for @bugsnag/js
+6
tesseract.js
2.0.0 - 3.0.3
Outdated
Pure Javascript Multilingual OCR
+1
react-schemaorg
1.1.0 - 1.3.3
Outdated
Typed Schema.org JSON-LD in React
react
jsonld
JSON-LD
typescript
schema.org
+8
google-wombot
react-amphtml
3.1.0 - 4.0.2
Use amphtml components inside your React apps easily!
react
amphtml
dfrankland
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
lodash
relay-runtime
react-relay
react-use
lodash-es
+51 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites