cityoflondon.gov.uk 85 packages
Last scanned on Jan 19 at 07:56 AM
lodash 4.17.16VulnerableOutdated
Lodash modular utilities.
License
MIT
Footprint
1 KB
Vulnerabilities
ModerateGHSA-29mw-wpgm-hmr9
Regular Expression Denial of Service (ReDoS) in lodash
Affected versions >=0 <4.17.21
Matched Modules
Version distribution in production
3 846
4.17.16
946
4.17.21
337
4.17.20
322
4.17.15
302
4.17.19
301
4.17.13
Also used on 4830 websites
es5-ext 0.10.24 - 0.10.49VulnerableOutdated
ECMAScript extensions and shims
medikoo
tslib 1.2.0 - 2.4.1Outdated
Runtime library for TypeScript helper functions
react-is 16.3.0 - 17.0.2Outdated
Brand checking of React Elements.
+1
buffer 4.6.0 - 4.9.2Outdated
Node.js Buffer API, for the browser
@babel/runtime 7.0.0 - 7.12.18Outdated
babel's modular runtime helpers
+1
get-intrinsic 1.1.3Outdated
Get and robustly cache all JS language-level intrinsics at first require time
call-bind 1.0.2Outdated
Robustly `.call.bind()` a function
ljharb
object-inspect 1.11.0 - 1.11.1Outdated
string representations of objects in node and the browser
has-symbols 1.0.2 - 1.0.3
Determine if the JS environment has Symbol support. Supports spec, or shams.
side-channel 1.0.4Outdated
Store information about any JS value in a side channel. Uses WeakMap if available.
has-property-descriptors 1.0.0Outdated
Does the environment have full property descriptor support? Handles IE 8's broken defineProperty/gOPD.
es-abstract 1.18.7 - 1.20.4Outdated
ECMAScript spec abstract operations.
base64-js 1.3.0 - 1.5.1
Base64 encoding/decoding in pure JS
define-properties 1.1.4Outdated
Define multiple non-enumerable properties at once. Uses `Object.defineProperty` when available; falls back to standard assignment in older engines.
is-callable 1.2.0 - 1.2.2Outdated
Is this JS value callable? Works with Functions and GeneratorFunctions, despite ES6 @@toStringTag.
object.assign 4.1.3 - 4.1.4Outdated
ES6 spec-compliant Object.assign shim. From https://github.com/es-shims/es6-shim
has-tostringtag 1.0.0Outdated
Determine if the JS environment has `Symbol.toStringTag` support. Supports spec, or shams.
which-typed-array 1.1.6 - 1.1.9Outdated
Which kind of Typed Array is this JavaScript value? Works cross-realm, without `instanceof`, and despite Symbol.toStringTag.
ljharb
object-keys 1.1.0 - 1.1.1
An Object.keys replacement, in case Object.keys is not available. From https://github.com/es-shims/es5-shim
ljharb
regexp.prototype.flags 1.2.0 - 1.3.2Outdated
ES6 spec-compliant RegExp.prototype.flags shim.
deepmerge 4.2.2Outdated
A library for deep (recursive) merging of Javascript objects
is-typed-array 1.1.7 - 1.1.10Outdated
Is this value a JS Typed Array? This module works cross-realm/iframe, does not depend on `instanceof` or mutable properties, and despite ES6 Symbol.toStringTag.
is-regex 1.1.1Outdated
Is this value a JS regex? Works cross-realm/iframe, and despite ES6 @@toStringTag
available-typed-arrays 1.0.5Outdated
Returns an array of Typed Array names that are available in the current environment
is-date-object 1.0.1 - 1.0.3Outdated
Is this value a JS Date object? This module works cross-realm/iframe, and despite ES6 @@toStringTag.
lodash.merge 4.6.1 - 4.6.2
The Lodash method `_.merge` exported as a module.
is-string 1.0.4 - 1.0.5Outdated
Is this value a JS String object or primitive? This module works cross-realm/iframe, and despite ES6 @@toStringTag.
has-bigints 1.0.0 - 1.0.1Outdated
Determine if the JS environment has BigInt support.
for-each 0.3.3
A better forEach
is-number-object 1.0.6 - 1.0.7
Is this value a JS Number object? This module works cross-realm/iframe, and despite ES6 @@toStringTag.
is-boolean-object 1.1.2
Is this value a JS Boolean? This module works cross-realm/iframe, and despite ES6 @@toStringTag.
which-boxed-primitive 1.0.0 - 1.0.2
Which kind of boxed JS primitive is this?
scheduler 0.15.0 - 0.23.0Outdated
Cooperative scheduler for the browser environment.
+1
has 1.0.1 - 1.0.3Outdated
Object.prototype.hasOwnProperty.call shortcut
tarruda
prop-types 15.7.0 - 15.7.2Outdated
Runtime type checking for React props and similar objects.
is-arguments 1.0.4 - 1.1.1
Is this an arguments object? It's a harder question than you think.
react 16.13.0 - 18.2.0Outdated
React is a JavaScript library for building user interfaces.
+1
immutable 4.0.0 - 4.2.2Outdated
Immutable Data Collections
leebyron
object-is 1.1.0 - 1.1.5Outdated
ES2015-compliant shim for Object.is - differentiates between -0 and +0
is-set 2.0.1 - 2.0.2Outdated
Is this value a JS Set? This module works cross-realm/iframe, and despite ES6 @@toStringTag.
ljharb
is-map 2.0.1 - 2.0.2Outdated
Is this value a JS Map? This module works cross-realm/iframe, and despite ES6 @@toStringTag.
ljharb
rfdc 1.3.0Outdated
Really Fast Deep Clone
hoist-non-react-statics 3.3.1 - 3.3.2
Copies non-react specific statics from a child component to a parent component
mridgway
@emotion/unitless 0.7.2 - 0.8.0Outdated
An object of css properties that don't accept values with units
+1
classnames 2.2.6Outdated
A simple utility for conditionally joining classNames together
query-string 5.0.1 - 5.1.1Outdated
Parse and stringify URL query strings
sindresorhus
es-get-iterator 1.1.2 - 1.1.3
Get an iterator for any JS language value. Works robustly across all environments, all versions.
whatwg-fetch 3.4.0 - 3.6.2Outdated
A window.fetch polyfill.
immer 1.9.0 - 9.0.18Outdated
Create your next immutable state by mutating the current one
redux 4.1.0 - 4.2.0Outdated
Predictable state container for JavaScript apps
react-router-dom 5.1.0 - 5.3.4Outdated
Declarative routing for React web applications
react-fast-compare 3.1.0 - 3.2.0Outdated
Fastest deep equal comparison for React. Great for React.memo & shouldComponentUpdate. Also really fast general-purpose deep comparison.
crypto-browserify 1.0.9 - 2.0.0Outdated
implementation of crypto for the browser
+2
js-cookie 3.0.1Outdated
A simple, lightweight JavaScript API for handling cookies
shallowequal 1.0.1 - 1.1.0
Like lodash isEqualWith but for shallow equal.
redux-thunk 2.1.0 - 2.4.2Outdated
Thunk middleware for Redux.
@emotion/stylis 0.8.1 - 0.8.5
A custom build of Stylis
+1
web-vitals 3.0.0 - 3.0.4Outdated
Easily measure performance metrics in JavaScript
react-side-effect 2.1.0 - 2.1.2
Create components whose prop changes map to a global side effect
react-helmet 6.0.0 - 6.1.0
A document head manager for React
@firebase/firestore 3.4.14 - 3.4.15Outdated
The Cloud Firestore component of the Firebase JS SDK.
+1
@redux-saga/symbols 1.0.0 - 1.1.3
Redux-saga internal symbol "registry".
@redux-saga/is 1.0.0 - 1.1.3
Runtime type checking helpers
react-hot-loader 4.11.0 - 4.13.1
Tweak React components in real time.
scriptjs 2.5.6 - 2.5.9
Asyncronous JavaScript loader and dependency manager
@loadable/component 5.15.0 - 5.15.2Outdated
React code splitting made easy.
react-router-config 5.0.0 - 5.1.1
Static route config matching for React Router
react-loadable 5.2.0 - 5.5.0
A higher order component for loading components with promises
@tannin/plural-forms 1.0.0 - 1.1.0
Compiles a function to compute the plural forms index for a given value
aduth
lottie-api 1.0.0 - 1.0.2Outdated
A library to edit lottie-web animations dynamically
airnan
web-speech-cognitive-services 4.0.0Outdated
Polyfill Web Speech API with Cognitive Services Speech-to-Text service
Popular search queries
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites