About
Community
gofan.co
59 packages
Last scanned on Jan 19 at 03:23 PM
Update
Name
Size
Popularity
Severity
lodash
4.17.16
Vulnerable
Outdated
Lodash modular utilities.
Script
https://gofan.co/bundle.web.947ade65e7c64327c6b9.js?947ade65e7c64327c6b9
License
MIT
Footprint
1 KB
Vulnerabilities
High
GHSA-35jh-r3h4-6jhm
Command Injection in lodash
Affected versions >=0 <4.17.21
Moderate
GHSA-29mw-wpgm-hmr9
Regular Expression Denial of Service (ReDoS) in lodash
Affected versions >=0 <4.17.21
High
GHSA-p6mc-m468-83gw
Prototype Pollution in lodash
Affected versions >=3.7.0 <4.17.19
Matched Modules
Version distribution in production
3 846
4.17.16
946
4.17.21
337
4.17.20
322
4.17.15
302
4.17.19
301
4.17.13
Also used on 4830 websites
skype.com
20 packages
sentry.io
157 packages
pinterest.com
56 packages
pinimg.com
52 packages
Repository
Homepage
More
modules
stdlib
util
axios
0.18.1
Vulnerable
Outdated
Promise based HTTP client for the browser and node.js
xhr
http
ajax
promise
node
+1
moment-timezone
0.5.23
Vulnerable
Outdated
Parse and display moments in any timezone.
moment
date
time
timezone
olson
+3
+4
next
6.0.0 - 7.0.3
Vulnerable
Outdated
The React Framework
es5-ext
0.10.24 - 0.10.49
Vulnerable
Outdated
ECMAScript extensions and shims
ecmascript
ecmascript5
ecmascript6
es5
es6
+11
medikoo
tslib
1.2.0 - 2.4.1
Outdated
Runtime library for TypeScript helper functions
TypeScript
Microsoft
compiler
language
javascript
+2
+5
isarray
0.0.0 - 0.0.1
Outdated
Array#isArray for older browsers
browser
isarray
array
juliangruber
react-is
16.3.0 - 16.13.1
Outdated
Brand checking of React Elements.
react
+1
@babel/runtime
7.20.5 - 7.20.7
Outdated
babel's modular runtime helpers
+1
path-to-regexp
1.7.0 - 1.8.0
Outdated
Express style path to RegExp utility
express
regexp
route
routing
+2
is-buffer
2.0.0 - 2.0.5
Determine if an object is a Buffer
arraybuffer
browser
browser buffer
browserify
buffer
+10
feross
core-js
2.6.12
Outdated
Standard library
ES3
ES5
ES6
ES7
ES2015
+39
zloirock
aria-query
4.0.0 - 4.2.2
Outdated
Programmatic access to the ARIA specification
accessibility
ARIA
+1
scheduler
0.9.0 - 0.14.0
Outdated
Cooperative scheduler for the browser environment.
react
+1
prop-types
15.8.0 - 15.8.1
Runtime type checking for React props and similar objects.
react
react
16.8.6
Outdated
React is a JavaScript library for building user interfaces.
react
+1
json-stringify-safe
5.0.1
Like JSON.stringify, but doesn't blow up on circular refs.
json
stringify
circular
safe
hoist-non-react-statics
2.5.1 - 3.3.2
Copies non-react specific statics from a child component to a parent component
react
mridgway
stylis
3.5.4
Outdated
A Light–weight CSS Preprocessor
query-string
5.0.1 - 5.1.1
Outdated
Parse and stringify URL query strings
browser
querystring
query
string
qs
+9
sindresorhus
ua-parser-js
0.7.32 - 1.0.32
Outdated
Detect Browser, Engine, OS, CPU, and Device type/model from User-Agent & Client Hints data. Supports browser & node.js environment
user-agent
client-hints
parser
browser
engine
+9
faisalman
react-transition-group
2.4.0 - 3.0.0
Outdated
A react component toolset for managing animations
react
transition
addons
transition-group
animation
+2
dom-helpers
5.0.1 - 5.2.1
tiny modular DOM lib for ie9+
dom-helpers
react-component
dom
api
cross-browser
+8
@emotion/serialize
0.11.12 - 0.11.16
Outdated
serialization utils for emotion
+1
@emotion/utils
0.0.4 - 0.11.3
Outdated
internal utils for emotion
+1
react-router
4.3.0 - 4.3.1
Outdated
Declarative routing for React
react
router
route
routing
history
+1
@emotion/sheet
0.9.1 - 0.9.4
Outdated
emotion's stylesheet
+1
redux
4.0.1 - 4.2.0
Outdated
Predictable state container for JavaScript apps
redux
reducer
state
predictable
functional
+6
+3
reselect
3.0.0 - 3.0.1
Outdated
Selectors for Redux.
react
redux
+3
history
4.0.0 - 4.10.1
Outdated
Manage session history with JavaScript
history
location
mjackson
react-lifecycles-compat
3.0.4
Backwards compatibility polyfill for React class components
styled-components
3.2.0 - 3.4.10
Outdated
CSS for the <Component> Age. Style components your way with speed, strong typing, and flexibility.
react
css
css-in-js
styled-components
styling
+1
redux-thunk
2.1.0 - 2.4.2
Outdated
Thunk middleware for Redux.
redux
thunk
middleware
redux-middleware
flux
+2
@firebase/util
0.1.0 - 1.8.0
Outdated
_NOTE: This is specifically tailored for Firebase JS SDK usage, if you are not a member of the Firebase team, please avoid using this package_
+1
@firebase/logger
0.1.0 - 0.1.25
Outdated
A logger package for use in the Firebase JS SDK
+1
@firebase/firestore
1.0.5 - 1.8.0
Outdated
The Cloud Firestore component of the Firebase JS SDK.
+1
firebase
0.900.5 - 4.5.0
Outdated
Firebase JavaScript library for web and Node.js
authentication
database
Firebase
firebase
realtime
+3
+1
@firebase/installations
0.1.0 - 0.3.2
Outdated
+1
@firebase/webchannel-wrapper
0.2.19 - 0.2.33
Outdated
A wrapper of the webchannel packages from closure-library for use outside of a closure compiled application
+1
rc-select
8.6.7 - 8.6.8
Outdated
React Select
react
react-component
react-select
select
+6
redux-persist
3.0.0 - 6.0.0
persist and rehydrate redux stores
redux-devtools-extension
2.0.0 - 2.13.9
Wrappers for Redux DevTools Extension.
+1
react-device-detect
1.10.11 - 2.2.2
Outdated
Detect device type and render your component according to it
useragent
mobile
phone
tablet
detect
+7
duskload
stylis-rule-sheet
0.0.9 - 0.0.10
stylis plugin to extract individual rules to use with insertRule API
stylis
plugin
thysultan
@redux-saga/core
1.0.0 - 1.2.2
Outdated
Saga middleware for Redux to handle Side Effects
javascript
redux
middleware
saga
effects
+1
@redux-saga/symbols
1.0.0 - 1.1.3
Redux-saga internal symbol "registry".
redux
saga
redux-saga
@redux-saga/is
1.0.0 - 1.1.3
Runtime type checking helpers
emotion
9.0.0 - 10.0.27
Outdated
The Next Generation of CSS-in-JS.
styles
emotion
react
css
css-in-js
+2
react-native-web
0.0.14 - 0.0.25
Outdated
React Native for Web
react
react-component
react-native
web
necolas
next-seo
4.5.0 - 4.6.0
Outdated
SEO plugin for Next.js projects
next.js
seo
react
node
ssr
garymeehan
connected-react-router
4.3.0 - 5.0.1
Outdated
A Redux binding for React Router v4 and v5
supasate
amplitude-js
5.2.0
Outdated
Javascript library for Amplitude Analytics
analytics
amplitude
+5
@fingerprintjs/fingerprintjs
3.0.0 - 3.0.2
Outdated
Browser fingerprinting library with the highest accuracy and stability
fraud
fraud detection
fraud prevention
browser
identification
+5
redux-immutable-state-invariant
2.1.0
Redux middleware that detects mutations between and outside redux dispatches. For development use only.
leoasis
react-pose
3.3.5 - 4.0.10
A declarative animation library for React
animation
dom
declarative
popmotion
react
+1
popmotion
@stimulus/core
0.6.0
Outdated
Stimulus JavaScript framework: Core library
dhh
lottie-api
1.0.0 - 1.0.2
Outdated
A library to edit lottie-web animations dynamically
airnan
most-subject
6.0.0
Subjects for @most/core
+1
gatsby-background-image
0.8.14 - 1.6.0
Lazy-loading React background-image component with optional support for the blur-up effect.
gatsby
gatsby-component
gatsby-image
background-image
backgroundImage
+3
timhagn
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
lodash
relay-runtime
react-relay
react-use
lodash-es
+51 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites