About
Community
gab.com
79 packages
Last scanned on Oct 27 at 06:06 PM
Update
Name
Size
Popularity
Severity
xmldom
0.1.1 - 0.6.0
Vulnerable
A pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module.
Script
https://gab.com/packs/js/common-c40bea985fd5a4329987.js
License
MIT
Footprint
14 KB
Vulnerabilities
Critical
GHSA-crh6-fp67-6883
xmldom allows multiple root nodes in a DOM
Affected versions >=0
Critical
GHSA-9pgh-qqpf-7wqj
Withdrawn: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in @xmldom/xmldom and xmldom
Affected versions >=0
Moderate
GHSA-5fg8-2547-mr8q
Misinterpretation of malicious XML input
Affected versions >=0
Matched Modules
Version distribution in production
45
0.6.0
42
0.1.27
42
0.1.29
42
0.1.30
42
0.1.31
41
0.5.0
Also used on 52 websites
imdb.com
78 packages
tenor.com
71 packages
metro.co.uk
15 packages
thenorthface.com
76 packages
Repository
Homepage
More
w3c
dom
xml
parser
javascript
+2
lodash
4.17.16
Vulnerable
Outdated
Lodash modular utilities.
modules
stdlib
util
axios
0.19.1 - 0.19.2
Vulnerable
Outdated
Promise based HTTP client for the browser and node.js
xhr
http
ajax
promise
node
+1
react
0.13.0 - 0.13.3
Vulnerable
Outdated
React is a JavaScript library for building user interfaces.
react
+1
es5-ext
0.10.24 - 0.10.49
Vulnerable
Outdated
ECMAScript extensions and shims
ecmascript
ecmascript5
ecmascript6
es5
es6
+11
medikoo
isarray
0.0.0 - 0.0.1
Outdated
Array#isArray for older browsers
browser
isarray
array
juliangruber
react-is
16.3.0 - 16.13.1
Outdated
Brand checking of React Elements.
react
+1
@babel/runtime
7.9.0 - 7.12.18
Outdated
babel's modular runtime helpers
+1
get-intrinsic
1.0.2 - 1.1.1
Outdated
Get and robustly cache all JS language-level intrinsics at first require time
javascript
ecmascript
es
js
intrinsic
+2
ljharb
function-bind
1.1.0 - 1.1.1
Outdated
Implementation of Function.prototype.bind
function
bind
shim
es5
path-to-regexp
1.7.0 - 1.8.0
Outdated
Express style path to RegExp utility
express
regexp
route
routing
+2
call-bind
1.0.1 - 1.0.2
Outdated
Robustly `.call.bind()` a function
javascript
ecmascript
es
js
callbind
+8
ljharb
has-symbols
1.0.2 - 1.0.3
Determine if the JS environment has Symbol support. Supports spec, or shams.
Symbol
symbols
typeof
sham
polyfill
+3
ljharb
has-tostringtag
1.0.0
Outdated
Determine if the JS environment has `Symbol.toStringTag` support. Supports spec, or shams.
javascript
ecmascript
symbol
symbols
tostringtag
+1
ljharb
object-keys
1.1.0 - 1.1.1
An Object.keys replacement, in case Object.keys is not available. From https://github.com/es-shims/es5-shim
Object.keys
keys
ES5
shim
ljharb
core-js
3.4.5 - 3.6.5
Outdated
Standard library
ES3
ES5
ES6
ES7
ES2015
+39
zloirock
is-date-object
1.0.5
Is this value a JS Date object? This module works cross-realm/iframe, and despite ES6 @@toStringTag.
Date
ES6
toStringTag
@@toStringTag
Date object
ljharb
escape-html
1.0.3
Escape string for use in HTML
escape
html
utility
dougwilson
eventemitter3
2.0.0 - 4.0.7
Outdated
EventEmitter3 focuses on performance while maintaining a Node.js AND browser compatible interface.
EventEmitter
EventEmitter2
EventEmitter3
Events
addEventListener
+10
has
1.0.1 - 1.0.3
Outdated
Object.prototype.hasOwnProperty.call shortcut
tarruda
scheduler
0.15.0 - 0.23.0
Cooperative scheduler for the browser environment.
react
+1
prop-types
15.7.0 - 15.7.2
Outdated
Runtime type checking for React props and similar objects.
react
performance-now
0.1.3 - 2.1.0
Implements performance.now (based on process.hrtime).
meryn
url
0.11.0
Outdated
The core `url` packaged standalone for use with Browserify.
parsing
url
analyze
hoist-non-react-statics
3.3.1 - 3.3.2
Copies non-react specific statics from a child component to a parent component
react
mridgway
classnames
2.2.6
Outdated
A simple utility for conditionally joining classNames together
react
css
classes
classname
classnames
+2
query-string
6.5.0 - 7.1.1
Outdated
Parse and stringify URL query strings
browser
querystring
query
string
qs
+9
sindresorhus
lodash.isboolean
2.3.0 - 3.0.3
The lodash method `_.isBoolean` exported as a module.
lodash-modularized
isboolean
tiny-invariant
0.0.2 - 1.3.1
Outdated
A tiny invariant function
invariant
error
assert
asserts
alexreardon
react-router
5.1.1 - 5.3.4
Outdated
Declarative routing for React
react
router
route
routing
history
+1
react-router-dom
5.2.0 - 5.3.4
Outdated
Declarative routing for React web applications
react
router
route
routing
history
+1
react-fast-compare
3.1.0 - 3.2.0
Outdated
Fastest deep equal comparison for React. Great for React.memo & shouldComponentUpdate. Also really fast general-purpose deep comparison.
fast
equal
react
compare
shouldComponentUpdate
+1
+12
immediate
2.6.2
Outdated
A cross browser microtask library
cwmma
redux
4.0.1 - 4.2.0
Outdated
Predictable state container for JavaScript apps
redux
reducer
state
predictable
functional
+6
+3
lodash-es
4.17.21
Lodash exported as ES modules.
es6
modules
stdlib
util
querystring-es3
0.2.1
Node's querystring module for all engines. (ES3 compat fork)
commonjs
query
querystring
spaintrain
shallowequal
1.0.1 - 1.1.0
Like lodash isEqualWith but for shallow equal.
shallowequal
shallow
equal
isequal
compare
+1
dashed
history
4.0.0 - 4.10.1
Outdated
Manage session history with JavaScript
history
location
mjackson
react-redux
6.0.0 - 6.0.1
Outdated
Official React bindings for Redux
react
reactjs
redux
+2
raf
3.0.0 - 3.1.0
Outdated
requestAnimationFrame polyfill for node and the browser
requestAnimationFrame
polyfill
react-lifecycles-compat
3.0.4
Backwards compatibility polyfill for React class components
sentence-case
0.0.1 - 0.1.1
Outdated
Transform into a lower case with spaces between words, then capitalize the string
sentence
case
lower
capitalize
convert
+1
blakeembrey
d3-color
1.0.1 - 3.1.0
Color spaces! RGB, HSL, Cubehelix, Lab and HCL (Lch).
d3
d3-module
color
rgb
hsl
+4
split-on-first
1.0.0 - 2.0.0
Outdated
Split a string on the first occurance of a given separator
split
string
first
once
occurrence
+3
sindresorhus
react-popper
2.2.0 - 2.3.0
Official library to use Popper on React projects
react
react-popper
popperjs
component
drop
+2
intl-messageformat
2.1.0 - 2.2.0
Outdated
Formats ICU Message strings with number, date, plural, and select placeholders to create localized messages.
i18n
intl
internationalization
localization
globalization
+4
+9
is-function
1.0.2
is that thing a function? Use this module to find out
polyfill
is-function
ie6
grncdr
formik
1.0.0 - 2.2.9
Outdated
Build forms in React, without the tears
formik
form
forms
react
react-dom
+7
jaredpalmer
react-textarea-autosize
7.1.1 - 7.1.2
Outdated
textarea component for React which grows with content
autosize
grow
react
react-component
textarea
mini-create-react-context
0.3.3 - 0.4.1
Smaller Polyfill for the proposed React context API
react
context
contextTypes
polyfill
ponyfill
stringepsilon
react-beautiful-dnd
2.6.0 - 6.0.2
Outdated
Beautiful and accessible drag and drop for lists with React
drag and drop
dnd
sortable
reorder
reorderable
+5
@datadog/browser-rum-core
4.6.0 - 4.23.2
Outdated
Datadog browser RUM core utilities.
datadog
rc-select
8.6.2 - 9.2.3
Outdated
React Select
react
react-component
react-select
select
+6
safe-json-parse
2.0.0 - 4.0.0
Parse JSON safely without throwing
raynos
keycode
2.1.2 - 2.2.1
Convert between keyboard keycodes and keynames and vice versa.
keyboard
keycode
keyboardevent
ascii
keydown
+4
timoxley
leaflet
1.3.2 - 1.9.1
Outdated
JavaScript library for mobile-friendly interactive maps
gis
map
+3
react-device-detect
1.8.6 - 1.16.0
Outdated
Detect device type and render your component according to it
useragent
mobile
phone
tablet
detect
+7
duskload
@chakra-ui/utils
1.8.2 - 2.0.11
Outdated
Common utilities and types for Chakra UI
@videojs/vhs-utils
2.1.0 - 2.3.0
Outdated
Objects and functions shared throughtout @videojs/http-streaming code
videojs
videojs-plugin
+17
video.js
7.5.1 - 7.14.3
Outdated
An HTML5 video player that supports HLS and DASH with a common API and skin.
dash
hls
html5
player
video
+1
+18
mux.js
5.6.5 - 5.6.7
Outdated
A collection of lightweight utilities for inspecting and manipulating video container formats.
video
container
transmux
mux
player
+5
+19
react-native-web
0.10.0 - 0.11.7
Outdated
React Native for Web
react
react-component
react-native
web
necolas
url-toolkit
2.2.0 - 2.2.1
Outdated
Build an absolute URL from a base URL and a relative URL (RFC 1808). No dependencies!
url
relative
absolute
parser
tjenkinson
videojs-vtt.js
0.15.0 - 0.15.4
Outdated
A JavaScript implementation of the WebVTT specification, forked from vtt.js for use with Video.js
vtt
webvtt
track
captions
subtitles
+1
+17
react-swipeable-views-core
0.13.1 - 0.14.0
react-swipeable-views core modules
react-swipeable-views
0.11.0 - 0.13.9
Outdated
A React component for swipeable views
react
component
swipe
swipeable
amplitude-js
5.2.0
Outdated
Javascript library for Amplitude Analytics
analytics
amplitude
+5
intl-relativeformat
2.2.0
Outdated
Formats JavaScript dates to relative time strings.
intl
i18n
relative
moment
format
+1
+1
detect-it
4.0.1
Detect if a device is mouse only, touch only, or hybrid
detect
device
mouse
touch
hybrid
+2
rafgraph
stringz
0.1.0 - 1.0.0
Outdated
Zero-dependency unicode-aware string tools
string
truncate
length
unicode
substr
+7
sallar
blurhash
1.1.2 - 1.1.3
Outdated
Encoder and decoder for the Wolt BlurHash algorithm.
blurhash
blur
hash
image
+2
exif-js
2.0.0 - 2.3.0
JavaScript library for reading EXIF image metadata
exif
reakit-utils
0.15.0 - 0.15.2
Reakit utils
reakit
react
utils
diegohaz
react-stickynode
3.0.3 - 3.1.1
Outdated
A performant and comprehensive React sticky component
Sticky
React
+2
tiny-queue
0.1.0 - 0.2.1
Simple FIFO queue implementation to avoid having to do shift() on an array, which is slow.
queue
fifo
nolanlawson
react-facebook
7.0.1 - 8.1.4
Outdated
Facebook components like a Login button, Like, Share, Comments, Embedded Post/Video, Messenger Chat and others
react
react-component
facebook
login
login button
+12
zlatkofedor
react-redux-loading-bar
5.0.1 - 5.0.4
Outdated
Simple Loading Bar for Redux and React
react
redux
loading
loading-bar
progress
+2
mironov
lottie-api
1.0.0 - 1.0.2
Outdated
A library to edit lottie-web animations dynamically
airnan
substring-trie
1.0.1 - 1.0.2
Minimalistic trie implementation for prefix searches
trie
nolanlawson
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
libphonenumber-js
react-relay
jss
@babel/runtime
redux-form
+50 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites