change.org 157 packages

Last scanned on Oct 27 at 06:59 PM
graphql 16.5.0VulnerableOutdated
A Query Language and Runtime which can target any service.
License
MIT
Footprint
7 KB
Vulnerabilities
graphql Uncontrolled Resource Consumption vulnerability
Affected versions >=16.3.0 <16.8.1
Matched Modules
Version distribution in production
485
15.8.0
484
15.7.2
438
15.4.0
432
15.7.0
432
15.7.1
289
16.5.0
tslib 2.4.0Outdated
Runtime library for TypeScript helper functions
isarray 0.0.0 - 0.0.1Outdated
Array#isArray for older browsers
react-is 18.1.0Outdated
Brand checking of React Elements.
qs 6.10.3Outdated
A querystring parser that supports nesting and arrays, with a depth limit
regenerator-runtime x.x.x
Runtime for Regenerator-compiled generator and async functions.
@babel/runtime 7.18.3Outdated
babel's modular runtime helpers
+1
hzoo
existentialism
nicolo-ribaudo
lodash 4.17.21
Lodash modular utilities.
function-bind 1.1.1Outdated
Implementation of Function.prototype.bind
path-to-regexp 1.8.0Outdated
Express style path to RegExp utility
entities x.x.x
Encode & decode XML and HTML entities with ease & speed
get-intrinsic 1.1.1Outdated
Get and robustly cache all JS language-level intrinsics at first require time
object-inspect 1.12.2Outdated
string representations of objects in node and the browser
has-symbols 1.0.2 - 1.0.3
Determine if the JS environment has Symbol support. Supports spec, or shams.
call-bind 1.0.2Outdated
Robustly `.call.bind()` a function
yaml 1.0.0 - 2.1.3Outdated
JavaScript parser and stringifier for YAML
object-assign 4.1.1
ES2015 `Object.assign()` ponyfill
domutils x.x.x
Utilities for working with htmlparser2's dom
side-channel 1.0.4
Store information about any JS value in a side channel. Uses WeakMap if available.
dom-serializer 1.4.0 - 2.0.0
render domhandler DOM nodes to a string
domhandler 5.0.0 - 5.0.3
Handler for htmlparser2 that turns pages into a dom
core-js 3.22.6 - 3.22.7Outdated
Standard library
domelementtype 2.3.0
all the types of nodes in htmlparser2's dom
deepmerge 4.2.2Outdated
A library for deep (recursive) merging of Javascript objects
has 1.0.2 - 1.0.3Outdated
Object.prototype.hasOwnProperty.call shortcut
tarruda
tarruda
htmlparser2 x.x.x
Fast & forgiving HTML/XML parser
scheduler 0.20.2Outdated
Cooperative scheduler for the browser environment.
prop-types 15.8.0 - 15.8.1
Runtime type checking for React props and similar objects.
performance-now x.x.x
Implements performance.now (based on process.hrtime).
meryn
meryn
react 17.0.2Outdated
React is a JavaScript library for building user interfaces.
react-dom 17.0.2Outdated
React package for working with the DOM.
lodash.debounce 4.0.8
The lodash method `_.debounce` exported as a module.
@emotion/memoize 0.7.5Outdated
emotion's memoize utility
+1
emmatown
tkh44
emotion-release-bot
hoist-non-react-statics 3.3.2
Copies non-react specific statics from a child component to a parent component
mridgway
mridgway
cross-fetch 3.1.5Outdated
Universal WHATWG Fetch API for Node, Browsers and React Native
@emotion/unitless 0.7.2 - 0.7.5Outdated
An object of css properties that don't accept values with units
+1
emmatown
tkh44
emotion-release-bot
invariant 2.2.3 - 2.2.4
invariant
react-transition-group 4.4.0 - 4.4.2Outdated
A react component toolset for managing animations
@emotion/hash 0.8.0Outdated
A MurmurHash2 implementation
+1
emmatown
tkh44
emotion-release-bot
@emotion/utils 1.1.0Outdated
internal utils for emotion
+1
emmatown
tkh44
emotion-release-bot
@emotion/is-prop-valid 1.1.2Outdated
A function to check whether a prop is valid for HTML and SVG elements
+1
emmatown
tkh44
emotion-release-bot
@emotion/serialize x.x.x
serialization utils for emotion
+1
emmatown
tkh44
emotion-release-bot
web-vitals x.x.x
Easily measure performance metrics in JavaScript
stylis 4.1.0 - 4.1.1Outdated
A Light–weight CSS Preprocessor
andarist
thysultan
@emotion/cache x.x.x
emotion's cache
+1
emmatown
tkh44
emotion-release-bot
@emotion/sheet x.x.x
emotion's stylesheet
+1
emmatown
tkh44
emotion-release-bot
@emotion/weak-memoize 0.2.1 - 0.2.5Outdated
A memoization function that uses a WeakMap
+1
emmatown
tkh44
emotion-release-bot
ua-parser-js x.x.x
Detect Browser, Engine, OS, CPU, and Device type/model from User-Agent data. Supports browser & node.js environment
stackframe 1.2.0 - 1.2.1Outdated
JS Object representation of a stack frame
whatwg-fetch 3.6.2Outdated
A window.fetch polyfill.
jakechampion
mattandrews
mislav
common-tags 1.8.1Outdated
a few common utility template tags for ES2015
error-stack-parser 2.0.5 - 2.0.6Outdated
Extract meaning from JS Errors
react-router 5.3.2 - 5.3.3Outdated
Declarative routing for React
react-router-dom 5.3.0 - 5.3.3Outdated
Declarative routing for React web applications
react-fast-compare 3.1.0 - 3.2.0Outdated
Fastest deep equal comparison for React. Great for React.memo & shouldComponentUpdate. Also really fast general-purpose deep comparison.
@storybook/theming 6.5.0 - 6.5.13Outdated
Core Storybook Components
tiny-invariant 1.0.2 - 1.0.6Outdated
A tiny invariant function
es5-ext 0.7.0 - 0.10.62
ECMAScript extensions and shims
redux 4.2.0Outdated
Predictable state container for JavaScript apps
history 4.10.1Outdated
Manage session history with JavaScript
lodash-es 4.17.21
Lodash exported as ES modules.
shallowequal 1.1.0
Like lodash isEqualWith but for shallow equal.
js-cookie 3.0.1Outdated
A simple, lightweight JavaScript API for handling cookies
@emotion/react 11.1.0 - 11.9.0Outdated
> Simple styling in React.
+1
emmatown
tkh44
emotion-release-bot
react-redux 7.2.8Outdated
Official React bindings for Redux
raf 3.4.0 - 3.4.1
requestAnimationFrame polyfill for node and the browser
@emotion/stylis 0.8.4 - 0.8.5
A custom build of Stylis
+1
emmatown
tkh44
emotion-release-bot
styled-components 5.3.3 - 5.3.5Outdated
CSS for the <Component> Age. Style components your way with speed, strong typing, and flexibility.
polished 4.2.2
A lightweight toolset for writing styles in Javascript.
graphql-tag 2.12.6
A JavaScript template literal tag that parses GraphQL queries
jnwng
abernix
apollo-bot
style-to-object 0.2.3 - 0.3.0Outdated
Converts inline style to object.
jwt-decode 3.0.0 - 3.1.2Outdated
Decode JWT tokens, mostly useful for browser applications.
resolve-pathname 3.0.0
Resolve URL pathnames using JavaScript
mjackson
mjackson
value-equal 1.0.1
Are these two JavaScript values equal?
mjackson
mjackson
resize-observer-polyfill 1.5.0 - 1.5.1
A polyfill for the Resize Observer API
@emotion/styled x.x.x
styled API for emotion
+1
emmatown
tkh44
emotion-release-bot
inline-style-parser 0.1.0 - 0.1.1Outdated
An inline style parser.
@mdx-js/react 2.0.0 - 2.1.3Outdated
React context for MDX
zen-observable-ts 1.2.4 - 1.2.5Outdated
Thin wrapper around zen-observable and @types/zen-observable, to support ESM exports as well as CommonJS exports
jbaxleyiii
apollo-bot
redux-thunk 2.4.0 - 2.4.1Outdated
Thunk middleware for Redux.
lodash.throttle 4.1.1
The lodash method `_.throttle` exported as a module.
dompurify 2.3.7 - 2.3.8Outdated
DOMPurify is a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. It's written in JavaScript and works in all modern browsers (Safari, Opera (15+), Internet Explorer (10+), Firefox and Chrome - as well as almost anything else usin
ts-invariant 0.9.4 - 0.10.3
TypeScript implementation of invariant(condition, message)
@formatjs/intl-localematcher 0.2.24 - 0.2.31Outdated
Intl.LocaleMatcher ponyfill
@angular/core 2.4.2 - 14.2.8Outdated
Angular - the core framework
angular
google-wombot
promise-polyfill 8.2.0 - 8.2.3Outdated
Lightweight promise polyfill. A+ compliant
@apollo/client 3.7.0 - 3.7.1Outdated
A fully-featured caching GraphQL client.
tabbable x.x.x
Returns an array of all tabbable DOM nodes within a containing node.
davidtheclark
stefcameron
consolidated-events 2.0.2
Manage multiple event handlers using few event listeners
react-waypoint 10.1.0Outdated
A React component to execute a function whenever you scroll to an element.
@datadog/browser-core 1.2.2 - 4.23.2Outdated
Datadog browser core utilities.
datadog
datadog
react-helmet-async 1.2.2 - 1.3.0Outdated
Thread-safe Helmet for React 16+ and friends
wonderboymusic
wonderboymusic
@firebase/firestore 0.1.0 - 0.3.7Outdated
The Cloud Firestore component of the Firebase JS SDK.
+1
chholland
firebase-ops
feiyang.chen
rc-trigger 4.3.0 - 4.3.4Outdated
base abstract trigger component for react
focus-trap 6.9.2 - 6.9.3Outdated
Trap focus within a DOM node.
html-dom-parser x.x.x
HTML to DOM parser.
html-react-parser 1.4.0 - 1.4.13Outdated
HTML to React parser.
react-property 2.0.0Outdated
HTML and SVG DOM property configs used by React.
style-to-js x.x.x
Parses CSS inline style to JavaScript object (camelCased).
redux-saga 0.15.4 - 0.16.2Outdated
Saga middleware for Redux to handle Side Effects
svelte 3.40.0 - 3.52.0Outdated
Cybernetically enhanced web apps
body-scroll-lock 3.1.4 - 3.1.5Outdated
Enables body scroll locking (for iOS Mobile and Tablet, Android, desktop Safari/Chrome/Firefox) without breaking scrolling of a target element (eg. modal/lightbox/flyouts/nav-menus)
@styled-system/core 5.1.2
jxnblk
jxnblk
react-responsive x.x.x
Media queries in react for responsive design
focus-trap-react x.x.x
A React component that traps focus.
@chakra-ui/theme 2.1.0 - 2.1.3Outdated
The default theme for chakra components
styled-system 5.1.2 - 5.1.5
Responsive, theme-based style props for building design systems with React
@chakra-ui/hooks 1.7.0 - 2.1.0Outdated
React hooks for Chakra components
@styled-system/css 5.1.5
Styled System for the `css` prop
@styled-system/border 5.1.5
jxnblk
jxnblk
@styled-system/variant 5.1.0 - 5.1.5
Read the docs: https://styled-system.com/variants
jxnblk
jxnblk
@styled-system/space 5.0.18 - 5.1.2
jxnblk
jxnblk
@styled-system/color 5.0.0 - 5.1.2
jxnblk
jxnblk
@styled-system/position 5.0.15 - 5.1.2
jxnblk
jxnblk
@styled-system/flexbox 5.0.0 - 5.1.2
jxnblk
jxnblk
@styled-system/layout 5.0.23 - 5.1.2
jxnblk
jxnblk
@styled-system/background 5.0.0 - 5.1.2
jxnblk
jxnblk
@styled-system/grid 5.0.0 - 5.1.2
jxnblk
jxnblk
@styled-system/typography 5.0.0 - 5.1.2
jxnblk
jxnblk
@styled-system/shadow 5.0.0 - 5.1.2
jxnblk
jxnblk
@formatjs/intl-relativetimeformat x.x.x
Formats JavaScript dates to relative time strings.
@loadable/component 5.15.2Outdated
React code splitting made easy.
connected-react-router 6.9.0 - 6.9.2Outdated
A Redux binding for React Router v4 and v5
supasate
supasate
@formatjs/intl-pluralrules x.x.x
Polyfill for Intl.PluralRules
@formatjs/intl-getcanonicallocales 1.4.0 - 2.0.4Outdated
Intl.getCanonicalLocales polyfill
lodash.isequalwith 4.4.0
The lodash method `_.isEqualWith` exported as a module.
@formatjs/intl-numberformat 8.1.2 - 8.1.3Outdated
Ponyfill for ES2020 Intl.NumberFormat
@formatjs/intl-locale 2.4.32 - 3.0.6Outdated
Intl.Locale polyfill
bootstrap-vue 2.0.0 - 2.15.0Outdated
With more than 85 components, over 45 available plugins, several directives, and 1000+ icons, BootstrapVue provides one of the most comprehensive implementations of the Bootstrap v4 component and grid system available for Vue.js v2.6, complete with extens
countup.js x.x.x
Animates a numerical value by counting to it
inorganik
inorganik
react-countup x.x.x
A React component wrapper around CountUp.js
@theme-ui/css 0.13.1 - 0.14.7Outdated
[![Minified Size on Bundlephobia](https://badgen.net/bundlephobia/minzip/@theme-ui/css)](https://bundlephobia.com/package/@theme-ui/css)
+1
jxnblk
johno
hasparus
@theme-ui/core 0.11.0 - 0.14.7Outdated
[![Minified Size on Bundlephobia](https://badgen.net/bundlephobia/minzip/@theme-ui/core)](https://bundlephobia.com/package/@theme-ui/core)
+1
jxnblk
johno
hasparus
@theme-ui/components 0.14.4 - 0.14.7Outdated
Primitive layout, typographic, and other components for use with Theme UI.
+1
jxnblk
johno
hasparus
@theme-ui/color-modes 0.14.0 - 0.14.7Outdated
Adds support for user-controlled color modes
+1
jxnblk
johno
hasparus
@theme-ui/theme-provider 0.11.0 - 0.14.7Outdated
**Note:** This package is a hack to fix export order produced by microbundle. Use the main `theme-ui` package or `@theme-ui/core` instead.
+1
jxnblk
johno
hasparus
@styled-system/prop-types 5.0.18 - 5.1.5
Add prop types to components built with Styled System
jxnblk
jxnblk
@theme-ui/mdx 0.14.0 - 0.14.7Outdated
[MDX](https://mdxjs.com) utilities for [Theme UI](https://theme-ui.com)
+1
jxnblk
johno
hasparus
@theme-ui/parse-props 0.9.0 - 0.14.7
Internal package — You don't want to consume this directly.
+1
jxnblk
johno
hasparus
prebid.js 1.0.0 - 7.22.0Outdated
Header Bidding Management Library
tg-core-components 2.0.0 - 6.1.19Outdated
tg-core-components
+4
albinadolfsson
codebetniklas
sebost
@change/core x.x.x
use-custom-compare x.x.x
ts-custom-error x.x.x
@airbrake/browser x.x.x
bintrees x.x.x
tdigest x.x.x
@change/components x.x.x
@change/config x.x.x
@emotion/use-insertion-effect-with-fallbacks x.x.x
@theme-ui/color x.x.x
@apollo/src x.x.x
@formatjs/intl-datetimeformat x.x.x
@change/design-system x.x.x
styled-normalize x.x.x
emotion-normalize x.x.x
react-top-loading-bar x.x.x