About
Community
ascd.org
99 packages
Last scanned on Oct 27 at 06:24 PM
Update
Name
Size
Popularity
Severity
lodash
4.17.16
Vulnerable
Outdated
Lodash modular utilities.
Script
https://cdn.snipcart.com/themes/v3.2.0/default/snipcart.js
License
MIT
Footprint
2 KB
Vulnerabilities
High
GHSA-35jh-r3h4-6jhm
Command Injection in lodash
Affected versions >=0 <4.17.21
Moderate
GHSA-29mw-wpgm-hmr9
Regular Expression Denial of Service (ReDoS) in lodash
Affected versions >=0 <4.17.21
High
GHSA-p6mc-m468-83gw
Prototype Pollution in lodash
Affected versions >=3.7.0 <4.17.19
Matched Modules
Version distribution in production
3 846
4.17.16
946
4.17.21
337
4.17.20
322
4.17.15
302
4.17.19
301
4.17.13
Also used on 4830 websites
skype.com
20 packages
sentry.io
157 packages
pinterest.com
56 packages
pinimg.com
52 packages
Repository
Homepage
More
modules
stdlib
util
next
12.1.6
Vulnerable
Outdated
The React Framework
tslib
1.6.0 - 2.4.0
Outdated
Runtime library for TypeScript helper functions
TypeScript
Microsoft
compiler
language
javascript
+2
+5
string_decoder
1.1.0 - 1.3.0
The string_decoder module from Node core
string
decoder
browser
browserify
+1
react-is
16.3.0 - 17.0.2
Outdated
Brand checking of React Elements.
react
+1
inherits
2.0.3
Outdated
Browser-friendly inheritance fully compatible with standard node.js inherits()
inheritance
class
klass
oop
object-oriented
+3
isaacs
qs
6.10.2 - 6.10.3
Outdated
A querystring parser that supports nesting and arrays, with a depth limit
querystring
qs
query
url
parse
+1
buffer
5.7.0 - 6.0.3
Node.js Buffer API, for the browser
arraybuffer
browser
browserify
buffer
compatible
+2
feross
@babel/runtime
7.18.2 - 7.20.0
Outdated
babel's modular runtime helpers
+1
get-intrinsic
1.1.0 - 1.1.1
Outdated
Get and robustly cache all JS language-level intrinsics at first require time
javascript
ecmascript
es
js
intrinsic
+2
ljharb
function-bind
1.1.0 - 1.1.1
Outdated
Implementation of Function.prototype.bind
function
bind
shim
es5
path-to-regexp
6.1.0 - 6.2.0
Outdated
Express style path to RegExp utility
express
regexp
route
routing
+2
axios
0.27.2
Outdated
Promise based HTTP client for the browser and node.js
xhr
http
ajax
promise
node
+1
cookie
0.4.1 - 0.4.2
Outdated
HTTP server cookie parsing and serialization
cookie
cookies
dougwilson
call-bind
1.0.2
Outdated
Robustly `.call.bind()` a function
javascript
ecmascript
es
js
callbind
+8
ljharb
object-inspect
1.12.2
Outdated
string representations of objects in node and the browser
inspect
util.inspect
object
stringify
pretty
has-symbols
1.0.2 - 1.0.3
Determine if the JS environment has Symbol support. Supports spec, or shams.
Symbol
symbols
typeof
sham
polyfill
+3
ljharb
rxjs
5.0.0 - 6.6.7
Outdated
Reactive Extensions for modern JavaScript
Rx
RxJS
ReactiveX
ReactiveExtensions
Streams
+5
side-channel
1.0.4
Outdated
Store information about any JS value in a side channel. Uses WeakMap if available.
weakmap
map
side
channel
metadata
ljharb
base64-js
1.3.0 - 1.5.1
Base64 encoding/decoding in pure JS
base64
fast-json-stable-stringify
2.0.0 - 2.1.0
deterministic `JSON.stringify()` - a faster version of substack's json-stable-strigify without jsonify
json
stringify
deterministic
hash
stable
esp
is-callable
1.2.0 - 1.2.2
Outdated
Is this JS value callable? Works with Functions and GeneratorFunctions, despite ES6 @@toStringTag.
Function
function
callable
generator
generator function
+5
ljharb
events
3.0.0 - 3.3.0
Node's event emitter for all engines.
events
eventEmitter
eventDispatcher
listeners
is-buffer
2.0.0 - 2.0.5
Determine if an object is a Buffer
arraybuffer
browser
browser buffer
browserify
buffer
+10
feross
deepmerge
4.1.0 - 4.2.2
Outdated
A library for deep (recursive) merging of Javascript objects
merge
deep
extend
copy
clone
+1
tehshrike
core-js
3.6.3 - 3.6.5
Outdated
Standard library
ES3
ES5
ES6
ES7
ES2015
+39
zloirock
util
0.10.0 - 0.12.5
Node.js's util module for all engines
util
+3
for-each
0.3.3
A better forEach
extend
3.0.2
Port of jQuery.extend for node.js and the browser
extend
clone
merge
has
1.0.1 - 1.0.3
Outdated
Object.prototype.hasOwnProperty.call shortcut
tarruda
scheduler
0.15.0 - 0.23.0
Cooperative scheduler for the browser environment.
react
+1
prop-types
15.8.0 - 15.8.1
Runtime type checking for React props and similar objects.
react
react
17.0.0 - 18.2.0
React is a JavaScript library for building user interfaces.
react
+1
json-stringify-safe
5.0.1
Like JSON.stringify, but doesn't blow up on circular refs.
json
stringify
circular
safe
lodash.isplainobject
4.0.6
The lodash method `_.isPlainObject` exported as a module.
lodash-modularized
isplainobject
clsx
1.2.0 - 1.2.1
Outdated
A tiny (239B) utility for constructing className strings conditionally.
classes
classname
classnames
lukeed
@emotion/memoize
0.7.5 - 0.8.0
Outdated
emotion's memoize utility
+1
hoist-non-react-statics
3.3.1 - 3.3.2
Copies non-react specific statics from a child component to a parent component
react
mridgway
unist-util-visit-parents
4.0.0 - 4.1.0
Outdated
unist utility to recursively walk over nodes, with ancestral information
unist
unist-util
util
utility
tree
+7
unist-util-is
4.0.4 - 4.1.0
Outdated
unist utility to check if a node passes a test
unist
unist-util
util
utility
tree
+6
unist-util-visit
1.4.0 - 2.0.3
Outdated
unist utility to visit nodes
unist
unist-util
util
utility
remark
+16
lodash.isstring
4.0.1
The lodash method `_.isString` exported as a module.
lodash-modularized
isstring
mdast-util-to-string
2.0.0
Outdated
mdast utility to get the plain text content of a node
unist
mdast
mdast-util
util
utility
+4
unist-util-stringify-position
2.0.0 - 2.0.3
Outdated
unist utility to serialize a node, position, or point as a human readable location
unist
unist-util
util
utility
position
+5
graphql
16.1.0 - 16.6.0
Outdated
A Query Language and Runtime which can target any service.
graphql
graphql-js
+5
vfile-message
1.0.0 - 2.0.4
Outdated
vfile utility to create a virtual message
vfile
vfile-util
util
utility
virtual
+2
wooorm
@emotion/serialize
1.0.2 - 1.1.1
Outdated
serialization utils for emotion
+1
@emotion/utils
1.0.0 - 1.2.0
Outdated
internal utils for emotion
+1
unified
9.2.2
Outdated
parse, inspect, transform, and serialize content through syntax trees
ast
compile
content
cst
parse
+10
vfile
2.1.0 - 4.2.0
Outdated
Virtual file format for text processing
vfile
virtual
file
text
processing
+6
wooorm
@storybook/theming
6.5.0 - 6.5.13
Outdated
Core Storybook Components
storybook
+6
space-separated-tokens
1.1.3 - 2.0.1
Outdated
Parse and stringify space separated tokens
dom
html
space
separated
tokens
+2
wooorm
remark-parse
9.0.0
Outdated
remark plugin to add support for parsing markdown input
abstract
ast
markdown
mdast
parse
+6
trough
1.0.3 - 1.0.5
Outdated
`trough` is middleware
middleware
ware
wooorm
bail
1.0.0 - 2.0.2
Throw a given error
fail
bail
throw
callback
error
wooorm
mdurl
0.0.1 - 1.0.1
Outdated
URL utilities for markdown-it
vitaly
@emotion/react
11.0.0 - 11.10.5
Outdated
> Simple styling in React.
+1
micromark
2.11.4
Outdated
small commonmark compliant markdown parser with positional info and concrete tokens
commonmark
compiler
gfm
html
lexer
+13
wooorm
mdast-util-from-markdown
0.8.5
Outdated
mdast utility to parse markdown
unist
mdast
mdast-util
util
utility
+6
mdast-util-definitions
4.0.0
Outdated
mdast utility to find definition nodes in a tree
unist
mdast
mdast-util
util
utility
+6
property-information
5.6.0
Outdated
Info on the properties and attributes of the web platform
html
svg
aria
property
attribute
+2
wooorm
comma-separated-tokens
1.0.6 - 1.0.8
Outdated
Parse and stringify comma-separated tokens
dom
html
comma
separated
tokens
+2
wooorm
style-to-object
0.2.3 - 0.3.0
Outdated
Parse CSS inline style to JavaScript object.
style-to-object
inline
style
parser
css
+2
remarkablemark
unist-util-position
3.1.0
Outdated
unist utility to get the position of a node
unist
unist-util
util
utility
node
+2
mdast-util-to-hast
10.2.0
Outdated
mdast utility to transform to hast
unist
mdast
mdast-util
hast
hast-util
+4
inline-style-parser
0.1.0 - 0.1.1
Outdated
An inline style parser.
inline-style-parser
inline-style
style
parser
css
remarkablemark
p-is-promise
3.0.0 - 4.0.0
Check if something is a promise
promise
is
detect
check
kind
+7
sindresorhus
vue
1.0.9 - 2.7.13
Outdated
The progressive JavaScript framework for building modern web UI.
vue
zen-observable-ts
1.2.4 - 1.2.5
Outdated
Thin wrapper around zen-observable and @types/zen-observable, to support ESM exports as well as CommonJS exports
unist-util-generated
1.1.6 - 2.0.0
Outdated
unist utility to check if a node is generated
unist
unist-util
util
utility
position
+2
ts-invariant
0.9.0 - 0.9.4
Outdated
TypeScript implementation of invariant(condition, message)
invariant
assertion
precondition
TypeScript
benjamn
@wry/trie
0.2.1 - 0.3.2
Outdated
https://en.wikipedia.org/wiki/Trie
trie
prefix
weak
dictionary
lexicon
benjamn
@mui/utils
5.8.0 - 5.8.4
Outdated
Utility functions for React components.
react
react-component
mui
utils
+7
@wry/equality
0.5.1 - 0.5.3
Outdated
Structural equality checking for JavaScript values
benjamn
@mui/system
5.8.1 - 5.10.10
Outdated
MUI System is a set of CSS utilities to help you build custom designs more efficiently. It makes it possible to rapidly lay out custom designs.
react
react-component
mui
system
+7
@mui/material
5.8.0 - 5.8.3
Outdated
Material UI is an open-source React component library that implements Google's Material Design. It's comprehensive and can be used in production out of the box.
react
react-component
mui
material-ui
material design
+7
remark-rehype
2.0.0 - 8.1.0
Outdated
remark plugin that turns markdown into HTML to support rehype
hast
html
markdown
mdast
plugin
+5
@wry/context
0.4.0 - 0.6.1
Outdated
Manage contextual information needed by (a)synchronous tasks without explicitly passing objects around
benjamn
unist-builder
2.0.1 - 2.0.3
Outdated
unist utility to create a new trees with a nice syntax
unist
unist-util
util
utility
tree
+8
optimism
0.16.1
Outdated
Composable reactive caching with efficient invalidation.
caching
cache
invalidation
reactive
reactivity
+4
benjamn
rc-util
4.20.3 - 5.3.0
Outdated
Common Utils For React Component
react
util
+6
@apollo/client
3.6.5 - 3.6.9
Outdated
A fully-featured caching GraphQL client.
apollo
graphql
react
hooks
client
+1
+1
react-markdown
6.0.3
Outdated
React component to render markdown
ast
commonmark
component
gfm
markdown
+4
string-convert
0.2.0 - 0.2.1
String convertions
akiran
json2mq
0.2.0
Generate media query string from JSON or javascript object
akiran
swr
1.1.0 - 1.3.0
Outdated
React Hooks library for remote data fetching
swr
react
hooks
request
cache
+1
+5
apollo-utilities
1.0.0 - 1.3.4
Utilities for working with GraphQL ASTs
+1
rc-align
2.4.0 - 2.4.5
Outdated
align ui component for react
react
react-component
react-align
align
+1
@contentful/rich-text-types
15.9.1 - 15.13.2
Outdated
Type definitions and constants for the Contentful rich text field type.
+1
p-throttle
4.1.0 - 5.0.0
Outdated
Throttle promise-returning & async functions
promise
throttle
throat
limit
limited
+13
sindresorhus
contentful-sdk-core
6.1.0 - 7.0.3
Outdated
Core modules for the Contentful JS SDKs
+1
contentful
9.1.29
Outdated
Client for Contentful's Content Delivery API
@chakra-ui/theme
2.1.0 - 2.1.3
Outdated
The default theme for chakra components
theme
theming
ui mode
ui
contentful-resolve-response
1.2.2 - 1.3.11
Outdated
[![npm](https://img.shields.io/npm/v/contentful-resolve-response.svg)](https://www.npmjs.com/package/contentful-resolve-response)
+1
@contentful/rich-text-react-renderer
15.11.0 - 15.12.1
Outdated
React renderer for the Contentful rich text field type.
+1
node-polyglot
2.4.0 - 2.4.2
Outdated
Give your JavaScript the ability to speak many languages.
i18n
internationalization
internationalisation
translation
interpolation
+2
+2
graphql-anywhere
3.1.0 - 4.1.28
Outdated
Run GraphQL queries with no schema and just one resolver
ecmascript
es2015
jsnext
javascript
relay
+2
+4
@contentful/rich-text-plain-text-renderer
15.9.1 - 15.12.1
Outdated
Plain text renderer for the Rich Text document.
+1
v-click-outside
3.1.2
Outdated
Vue directive to react on clicks outside an element
ndelvalle
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
lodash
relay-runtime
react-relay
react-use
lodash-es
+51 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites