About
Community
grove.co
73 packages
Last scanned on Jan 19 at 09:41 AM
Update
Name
Size
Popularity
Severity
crypto-js
3.1.2 - 4.1.1
Vulnerable
Outdated
JavaScript library of crypto standards.
Script
https://static.grove.co/dist/analytics.2b4d94af0b8efe56eb65.js
License
MIT
Footprint
366 B
Vulnerabilities
Critical
GHSA-xwcq-pm8m-c4vf
crypto-js PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard
Affected versions >=0 <4.2.0
Matched Modules
Version distribution in production
457
4.1.0
457
4.1.1
185
3.3.0
162
3.1.8
143
3.2.1
143
4.0.0
Also used on 738 websites
pubmatic.com
4 packages
tiktok.com
91 packages
redd.it
180 packages
www.reddit.com
183 packages
Repository
Homepage
More
security
crypto
Hash
MD5
SHA1
+15
evanvosberg
markdown-it
2.0.0 - 2.2.1
Vulnerable
Outdated
Markdown-it - modern pluggable markdown parser.
markdown
parser
commonmark
markdown-it
markdown-it-plugin
vitaly
debug
2.3.1 - 3.1.0
Outdated
Lightweight debugging utility for Node.js and the browser
debug
log
debugger
+1
ms
2.0.0
Outdated
Tiny millisecond conversion utility
+5
uuid
7.0.0 - 8.0.0
Outdated
RFC4122 (v1, v4, and v5) UUIDs
uuid
guid
rfc4122
ajv
7.0.0 - 8.12.0
Outdated
Another JSON Schema Validator
JSON
schema
validator
validation
jsonschema
+3
inherits
2.0.4
Browser-friendly inheritance fully compatible with standard node.js inherits()
inheritance
class
klass
oop
object-oriented
+3
isaacs
axios
0.26.1
Outdated
Promise based HTTP client for the browser and node.js
xhr
http
ajax
promise
node
+1
fast-levenshtein
2.0.6
Outdated
Efficient implementation of Levenshtein algorithm with locale-specific collator support.
levenshtein
distance
string
hiddentao
deepmerge
4.2.2
Outdated
A library for deep (recursive) merging of Javascript objects
merge
deep
extend
copy
clone
+1
tehshrike
core-js
3.23.3 - 3.27.1
Outdated
Standard library
ES3
ES5
ES6
ES7
ES2015
+39
zloirock
clone
2.1.0 - 2.1.2
deep cloning of objects and arrays
pvorb
htmlparser2
2.2.3 - 2.6.0
Outdated
Fast & forgiving HTML/XML parser
html
parser
streams
xml
dom
+3
feedic
extend
3.0.2
Port of jQuery.extend for node.js and the browser
extend
clone
merge
date-fns
2.29.0 - 2.29.2
Outdated
Modern JavaScript date utility library
kossnocorp
clone-deep
0.1.1 - 0.2.0
Outdated
Recursively (deep) clone JavaScript native types, like Object, Array, RegExp, Date as well as primitives.
array
assign
buffer
clamped
clone
+22
querystring
0.2.0
Outdated
Node's querystring module for all engines.
commonjs
query
querystring
ua-parser-js
0.7.24
Outdated
Detect Browser, Engine, OS, CPU, and Device type/model from User-Agent & Client Hints data. Supports browser & node.js environment
user-agent
client-hints
parser
browser
engine
+9
faisalman
stackframe
1.1.0
Outdated
JS Object representation of a stack frame
stacktrace
error
debugger
stack frame
+1
underscore
1.13.0 - 1.13.6
JavaScript's functional programming helper library.
util
functional
server
client
browser
@sentry/utils
7.0.0
Outdated
Utilities for all Sentry JavaScript SDKs
+8
@floating-ui/core
0.0.1 - 1.1.0
Outdated
Positioning library for floating elements: tooltips, popovers, dropdowns, and more
tooltip
popover
dropdown
menu
popup
+1
dateformat
1.0.9 - 2.2.0
Outdated
A node.js package for Steven Levithan's excellent dateFormat() function.
+3
es5-ext
0.3.0 - 0.10.62
Outdated
ECMAScript extensions and shims
ecmascript
ecmascript5
ecmascript6
es5
es6
+11
medikoo
next-tick
0.2.2 - 1.1.0
Environment agnostic nextTick polyfill
nexttick
setImmediate
setTimeout
async
medikoo
sourcemap-codec
1.0.0 - 1.3.1
Outdated
Encode/decode sourcemap mappings
sourcemap
vlq
rich_harris
es6-promise
3.3.0 - 4.2.3
Outdated
A lightweight library that provides tools for organizing asynchronous code
futures
polyfill
promise
promises
crypto-browserify
1.0.9 - 2.0.0
Outdated
implementation of crypto for the browser
+2
react-redux
7.1.0 - 7.2.9
Outdated
Official React bindings for Redux
react
reactjs
redux
+2
is-retry-allowed
1.2.0
Outdated
Check whether a request can be retried based on the `error.code`
retry
retries
allowed
check
http
+3
sindresorhus
yup
0.13.0 - 0.31.1
Outdated
Dead simple Object schema validation
monastic.panic
vue
2.7.0 - 2.7.14
Outdated
The progressive JavaScript framework for building modern web UI.
vue
synchronous-promise
1.0.0 - 2.0.16
Outdated
Synchronous Promise-like prototype to use in testing where you would have used an ES6 Promise
fluffynuts
@formatjs/ecma402-abstract
1.0.3 - 1.14.3
Outdated
A collection of implementation for ECMAScript abstract operations
intl
i18n
relative
javascript
es
+4
intl-messageformat
1.0.2 - 3.0.0
Outdated
Formats ICU Message strings with number, date, plural, and select placeholders to create localized messages.
i18n
intl
internationalization
localization
globalization
+4
+9
promise-polyfill
6.0.0 - 6.0.2
Outdated
Lightweight promise polyfill. A+ compliant
promise
promise-polyfill
ES6
promises-aplus
taylorhakes
@angular/core
8.0.0 - 12.2.16
Outdated
Angular - the core framework
@sentry/hub
7.0.0 - 7.14.2
Outdated
Sentry hub which handles global state managment.
+8
@angular/common
10.0.0 - 15.1.1
Outdated
Angular - commonly needed directives and services
trim
0.0.2 - 1.0.1
Trim string whitespace
string
trim
axios-retry
3.2.0
Outdated
Axios plugin that intercepts failed requests and retries them whenever posible.
softonic
@sentry/minimal
4.3.3 - 6.19.7
Sentry minimal library that can be used in other packages
+8
@sentry/tracing
6.19.5 - 6.19.7
Outdated
Sentry Performance Monitoring Package
+8
parse-srcset
1.0.0 - 1.0.2
A spec-conformant JavaScript parser for the HTML5 srcset attribute
albell
@firebase/auth
0.19.6 - 0.20.2
Outdated
The Firebase Authenticaton component of the Firebase JS SDK.
+1
react-use
16.0.0 - 17.4.0
Outdated
Collection of React Hooks
streamich
xstate
4.7.0 - 4.35.2
Outdated
Finite State Machines and Statecharts for the Modern Web.
statechart
state machine
finite state machine
finite automata
scxml
+2
select
1.1.2
Programmatically select the text of a HTML element
range
select
selecting
selection
+1
delegate
3.2.0
Lightweight event delegation
event
delegate
delegation
+1
good-listener
1.1.0 - 1.2.2
A more versatile way of adding & removing event listeners
event
listener
algoliasearch
3.10.1
Outdated
A fully-featured and blazing-fast JavaScript API client to interact with Algolia API.
+7
component-bind
1.0.0
function binding utility
bind
utility
+24
to-no-case
0.1.3 - 1.0.2
Remove any existing casing from a string.
camel
camelcase
case
pascal
pascalcase
+9
ianstormtaylor
to-space-case
1.0.0
Convert a string to space case.
camel
case
slug
space
spacecase
+1
ianstormtaylor
svelte
3.40.0 - 3.55.1
Outdated
Cybernetically enhanced web apps
UI
framework
templates
templating
detect-browser
4.0.1 - 4.8.0
Outdated
Unpack a browser type and version from the useragent string
browser
detect
useragent
jsonp
0.2.0 - 0.2.1
A sane JSONP implementation.
murmurhash
0.0.1 - 0.0.2
Outdated
A Node.js module for the optimized JavaScript implementation of the MurmurHash algorithms.
perezd
smoothscroll-polyfill
0.4.4
Smooth Scroll behavior polyfill
smooth
scroll
CSSOM
polyfill
to-camel-case
0.2.1 - 1.0.0
Convert a string to camel case.
camel
case
camelcase
string
vue-observe-visibility
0.4.4 - 1.0.0
Detect when an element is becoming visible or hidden on the page.
vue
vuejs
plugin
akryum
canvas-confetti
0.2.0 - 1.6.0
Outdated
performant confetti animation in the browser
canvas
confetti
animation
burst
fireworks
+2
kirilv
vue-meta
2.4.0
Manage HTML metadata in Vue.js components with ssr support
attribute
google
head
helmet
info
+8
+2
keymirror
0.1.0 - 0.1.1
A simple utility for creating an object with values equal to its keys. Identical to react/lib/keyMirror
strml
amplitude-js
5.2.0
Outdated
Javascript library for Amplitude Analytics
analytics
amplitude
+5
store
1.3.20
Outdated
A localStorage wrapper for all browsers without using cookies or flash. Uses localStorage, globalStorage, and userData behavior under the hood
marcuswestin
react-range
1.4.7 - 1.8.14
Range input. Slides in all directions.
react
react-dom
react-component
range
slider
+1
miksu
component-cookie
1.1.2 - 1.1.5
Tiny cookie component
+1
component-url
0.2.0 - 0.2.1
url parser.
timaschew
@segment/top-domain
3.0.0 - 3.0.1
Finds the top domain for a URL
domain
top-domain
+280
vuejs-datepicker
1.6.0 - 1.6.2
A simple Vue.js datepicker component. Supports disabling of dates, inline mode, translations
vue
datepicker
date-picker
calendar
charliekassel
most
0.7.0 - 0.9.1
Outdated
Monadic streams
reactive
reactive programming
reactive streams
stream
streams
+11
+2
prebid.js
1.38.0 - 7.32.0
Outdated
Header Bidding Management Library
advertising
auction
header bidding
prebid
+1
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
lodash
relay-runtime
react-relay
react-use
lodash-es
+51 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites