About
Community
harveynichols.com
114 packages
Last scanned on Jan 19 at 08:15 AM
Update
Name
Size
Popularity
Severity
sanitize-html
2.3.3
Vulnerable
Outdated
Clean up user-submitted HTML, preserving allowlisted elements and allowlisted attributes on a per-element basis
Script
https://a.hng.io/static/javascripts/common.a4cadd59480d39cf8d63.js
License
MIT
Footprint
7 KB
Vulnerabilities
Moderate
GHSA-rm97-x556-q36h
sanitize-html Information Exposure vulnerability
Affected versions >=0 <2.12.1
High
GHSA-cgfm-xwp7-2cvr
Sanitize-html Vulnerable To REDoS Attacks
Affected versions >=0 <2.7.1
Matched Modules
Version distribution in production
30
2.4.0
26
2.5.0
25
2.7.0
25
2.7.2
24
2.7.3
10
2.3.3
Also used on 164 websites
grammarly.com
66 packages
zappos.com
139 packages
patreon.com
108 packages
istockphoto.com
32 packages
Repository
Homepage
More
html
parser
sanitizer
sanitize
+15
postcss
8.4.14
Vulnerable
Outdated
Tool for transforming styles with JS plugins
css
postcss
rework
preprocessor
parser
+4
ai
tslib
1.13.0 - 1.14.1
Outdated
Runtime library for TypeScript helper functions
TypeScript
Microsoft
compiler
language
javascript
+2
+5
escape-string-regexp
4.0.0
Outdated
Escape RegExp special characters
escape
regex
regexp
regular
expression
+3
sindresorhus
ajv
7.0.0 - 8.12.0
Another JSON Schema Validator
JSON
schema
validator
validation
jsonschema
+3
isarray
0.0.0 - 0.0.1
Outdated
Array#isArray for older browsers
browser
isarray
array
juliangruber
react-is
17.0.2
Outdated
Brand checking of React Elements.
react
+1
picocolors
0.2.0 - 1.0.0
The tiniest and the fastest library for terminal output formatting with ANSI colors
terminal
colors
formatting
cli
console
alexeyraspopov
entities
2.1.0
Outdated
Encode & decode XML and HTML entities with ease & speed
entity
decoding
encoding
html
xml
+1
feedic
@babel/runtime
7.16.5 - 7.18.0
Outdated
babel's modular runtime helpers
+1
lodash
4.17.21
Lodash modular utilities.
modules
stdlib
util
path-to-regexp
1.8.0
Outdated
Express style path to RegExp utility
express
regexp
route
routing
+2
fast-deep-equal
3.1.0 - 3.1.3
Fast deep equal
fast
equal
deep-equal
esp
is-plain-object
5.0.0
Returns true if an object was created by the `Object` constructor, or Object.create(null).
check
is
is-object
isobject
javascript
+7
object-assign
4.1.1
ES2015 `Object.assign()` ponyfill
object
assign
extend
properties
es2015
+7
domutils
2.8.0
Outdated
Utilities for working with htmlparser2's dom
dom
htmlparser2
feedic
dom-serializer
1.3.2 - 1.4.1
Outdated
render domhandler DOM nodes to a string
html
xml
render
feedic
nanoid
3.3.0 - 3.3.4
Outdated
A tiny (116 bytes), secure URL-friendly unique string ID generator
uuid
random
id
url
ai
domhandler
4.3.0
Outdated
Handler for htmlparser2 that turns pages into a dom
dom
htmlparser2
feedic
deepmerge
4.2.2
Outdated
A library for deep (recursive) merging of Javascript objects
merge
deep
extend
copy
clone
+1
tehshrike
domelementtype
2.2.0 - 2.3.0
all the types of nodes in htmlparser2's dom
dom
element
types
htmlparser2
feedic
eventemitter3
3.0.0 - 4.0.7
Outdated
EventEmitter3 focuses on performance while maintaining a Node.js AND browser compatible interface.
EventEmitter
EventEmitter2
EventEmitter3
Events
addEventListener
+10
htmlparser2
6.1.0
Outdated
Fast & forgiving HTML/XML parser
html
parser
streams
xml
dom
+3
feedic
scheduler
0.19.1
Outdated
Cooperative scheduler for the browser environment.
react
+1
prop-types
15.8.0 - 15.8.1
Runtime type checking for React props and similar objects.
react
react
16.14.0
Outdated
React is a JavaScript library for building user interfaces.
react
+1
lodash.debounce
4.0.8
The lodash method `_.debounce` exported as a module.
lodash-modularized
debounce
performance-now
2.0.0 - 2.1.0
Implements performance.now (based on process.hrtime).
meryn
rfdc
1.3.0
Outdated
Really Fast Deep Clone
object
obj
properties
clone
copy
+19
hoist-non-react-statics
3.3.2
Copies non-react specific statics from a child component to a parent component
react
mridgway
cross-fetch
3.1.5
Outdated
Universal WHATWG Fetch API for Node, Browsers and React Native
fetch
http
url
promise
async
+11
lquixada
invariant
2.2.3 - 2.2.4
invariant
test
invariant
classnames
2.3.0 - 2.3.1
Outdated
A simple utility for conditionally joining classNames together
react
css
classes
classname
classnames
+2
get-value
1.0.1 - 1.2.0
Outdated
Use property paths like 'a.b.c' to get a nested value from an object. Even works when keys have dots in them (no other dot-prop library can do this!).
get
key
nested
object
path
+8
react-transition-group
4.4.2
Outdated
A react component toolset for managing animations
react
transition
addons
transition-group
animation
+2
klona
2.0.5
Outdated
A tiny (240B to 501B) and fast utility to "deep clone" Objects, Arrays, Dates, RegExps, and more!
clone
copy
deep
extend
recursive
+1
lukeed
tiny-invariant
1.2.0
Outdated
A tiny invariant function
invariant
error
assert
asserts
alexreardon
@sentry/types
6.17.5 - 6.19.7
Outdated
Types for all Sentry JavaScript SDKs
+8
@sentry/utils
6.18.2
Outdated
Utilities for all Sentry JavaScript SDKs
+8
jquery
3.6.0
Outdated
JavaScript library for DOM operations
jquery
javascript
browser
library
+1
react-router
5.2.1 - 5.3.1
Outdated
Declarative routing for React
react
router
route
routing
history
+1
@sentry/core
6.18.2
Outdated
Base implementation for all Sentry JavaScript SDKs
+8
is-promise
2.2.0 - 4.0.0
Test whether an object looks like a promises-a+ promise
react-router-dom
5.3.0 - 5.3.3
Outdated
Declarative routing for React web applications
react
router
route
routing
history
+1
lodash-es
4.17.21
Lodash exported as ES modules.
es6
modules
stdlib
util
redux
4.1.1 - 4.1.2
Outdated
Predictable state container for JavaScript apps
redux
reducer
state
predictable
functional
+6
+3
react-fast-compare
2.0.4
Outdated
Fastest deep equal comparison for React. Great for React.memo & shouldComponentUpdate. Also really fast general-purpose deep comparison.
fast
equal
react
compare
shouldComponentUpdate
+1
+12
warning
4.0.3
A mirror of Facebook's Warning
warning
facebook
react
invariant
berkeleytrue
js-cookie
2.2.1
Outdated
A simple, lightweight JavaScript API for handling cookies
cookie
cookies
browser
amd
commonjs
+3
reselect
4.1.3 - 4.1.5
Outdated
Selectors for Redux.
react
redux
+3
react-redux
7.2.6
Outdated
Official React bindings for Redux
react
reactjs
redux
+2
shallowequal
1.1.0
Like lodash isEqualWith but for shallow equal.
shallowequal
shallow
equal
isequal
compare
+1
dashed
tiny-warning
1.0.2 - 1.0.3
A tiny warning function
warning
warn
alexreardon
history
4.10.1
Outdated
Manage session history with JavaScript
history
location
mjackson
raf
3.4.0 - 3.4.1
requestAnimationFrame polyfill for node and the browser
requestAnimationFrame
polyfill
react-lifecycles-compat
3.0.4
Backwards compatibility polyfill for React class components
toposort
2.0.2
Topological sort of directed ascyclic graphs (like dependecy lists)
topological
sort
sorting
graphs
graph
+4
marcelklehr
resize-observer-polyfill
1.5.1
A polyfill for the Resize Observer API
ResizeObserver
resize
observer
util
client
+3
que-etc
yup
0.32.10 - 0.32.11
Outdated
Dead simple Object schema validation
monastic.panic
@sentry/browser
6.18.2
Outdated
Official Sentry SDK for browsers
+8
es6-error
4.0.1 - 4.1.1
Easily-extendable error for use with ES6 classes
es6
error
babel
bjy
libphonenumber-js
1.9.47 - 1.9.52
Outdated
A simpler (and smaller) rewrite of Google Android's libphonenumber library in javascript
telephone
phone
number
input
mobile
+1
catamphetamine
property-expr
2.0.5
Outdated
tiny util for getting and setting deep object props safely
expr
expression
setter
getter
deep
+3
monastic.panic
redux-thunk
2.4.0 - 2.4.1
Outdated
Thunk middleware for Redux.
redux
thunk
middleware
redux-middleware
flux
+2
lodash.throttle
4.1.1
The lodash method `_.throttle` exported as a module.
lodash-modularized
throttle
mustache
4.2.0
Logic-less {{mustache}} templates with JavaScript
mustache
template
templates
ejs
resolve-pathname
3.0.0
Resolve URL pathnames using JavaScript
mjackson
@sentry/hub
6.18.0 - 6.18.2
Outdated
Sentry hub which handles global state managment.
+8
@sentry/react
6.3.1 - 6.19.7
Outdated
Official Sentry SDK for React.js
+8
@sentry/minimal
6.17.0 - 6.18.2
Outdated
Sentry minimal library that can be used in other packages
+8
formik
2.2.7 - 2.2.9
Outdated
Build forms in React, without the tears
formik
form
forms
react
react-dom
+7
jaredpalmer
nanoclone
0.2.0 - 0.2.1
Outdated
300B to deep clone JavaScript objects
clone
deep
nano
nanoclone
deepclone
kelin2025
exenv
1.2.1 - 1.2.2
React's ExecutionEnvironment module extracted for use in other packages & components
react
browser
server
environment
env
+2
jedwatson
string-convert
0.1.0 - 0.2.1
String convertions
akiran
json2mq
0.2.0
Generate media query string from JSON or javascript object
akiran
lottie-web
5.9.1 - 5.10.1
Outdated
After Effects plugin for exporting animations to SVG + JavaScript or canvas + JavaScript
animation
canvas
svg
after effects
plugin
+1
airnan
parse-srcset
1.0.0 - 1.0.2
A spec-conformant JavaScript parser for the HTML5 srcset attribute
albell
mini-create-react-context
0.3.3 - 0.4.1
Smaller Polyfill for the proposed React context API
react
context
contextTypes
polyfill
ponyfill
stringepsilon
react-intersection-observer
8.33.0 - 8.33.1
Outdated
Monitor if a component is inside the viewport, using IntersectionObserver API
react
component
hooks
viewport
intersection
+5
thebuilder
xstate
4.7.0 - 4.19.1
Outdated
Finite State Machines and Statecharts for the Modern Web.
statechart
state machine
finite state machine
finite automata
scxml
+2
intersection-observer
0.7.0
Outdated
A polyfill for IntersectionObserver
Intersection
Observer
philipwalton
react-modal
3.14.4
Outdated
Accessible modal dialog component for React.JS
react
react-component
modal
dialog
diasbruno
element-resize-detector
1.2.4
Resize event emitter for elements.
wnr
batch-processor
1.0.0
Batch processing in JS
wnr
@mapbox/point-geometry
0.1.0
a point geometry with transforms
point
geometry
primitive
+25
react-bootstrap
2.0.0 - 2.1.2
Outdated
Bootstrap 5 components built with React
bootstrap
react
component
components
ecosystem-react
+1
@googlemaps/js-api-loader
1.13.0 - 1.13.11
Outdated
Wrapper for the loading of Google Maps JavaScript API script in the browser
google
maps
enquire.js
2.1.6
Awesome Media Queries in JavaScript
media query
media queries
matchMedia
enquire
enquire.js
wickynilliams
react-slick
0.28.1
Outdated
React port of slick carousel
slick
carousel
Image slider
orbit
slider
+1
akiran
redux-devtools-extension
2.13.9
Wrappers for Redux DevTools Extension.
+1
country-flag-icons
1.0.0 - 1.5.4
Outdated
Vector (*.svg) country flag icons in 3x2 aspect ratio.
country
flag
icons
vector
svg
+1
catamphetamine
react-hot-loader
4.13.0
Outdated
Tweak React components in real time.
react
javascript
webpack
hmr
livereload
+5
+3
react-phone-number-input
3.1.45 - 3.1.46
Outdated
Telephone number input React component
react
phone
number
input
telephone
+1
catamphetamine
input-format
0.3.7
Outdated
Formatting user's text input on-the-fly
input
format
template
text
caret
catamphetamine
react-scroll
1.8.6 - 1.8.7
Outdated
A scroll component for React.js
react
react-component
scroll
scroller
scrolls
fisshy
redux-form
8.3.6 - 8.3.8
Outdated
A higher order component decorator for forms using Redux and React
react
reactjs
flux
redux
react-redux
+3
use-query-params
2.0.0 - 2.1.2
Outdated
React Hook for managing state in URL query parameters with easy serialization.
react
url
query
parameters
hook
+3
pbeshai
semantic-ui-react
0.53.0 - 2.1.4
Outdated
The official Semantic-UI-React integration.
google-map-react
2.1.9 - 2.2.0
Outdated
Isomorphic component that allows rendering react components on a google map
react
reactjs
google
map
maps
+5
@hot-loader/react-dom
16.14.0
Outdated
The Hot version of React-DOM
HMR
react
hot-loader
kashey
react-multi-carousel
2.6.5
Outdated
Production-ready, lightweight fully customizable React carousel component that rocks supports multiple items and SSR(Server-side rendering) with typescript.
react
typescript
carousel
react-component
server-side rendering
+14
yizhuang
@analytics/google-analytics
0.2.0 - 0.5.3
Outdated
Google analytics v4 plugin for 'analytics' module
analytics
analytics-project
analytics-plugin
GA
google-analytics
+1
davidwells
prismic-reactjs
1.3.4
render prismic rich text as React Element
+3
react-headroom
2.2.5
Outdated
Hide your header until you need it. React.js port of headroom.js
headroom
react
react-component
prismic-javascript
3.0.2
JavaScript development kit for prismic.io
prismic
prismic.io
cms
content
api
+1
react-lottie-player
x.x.x
react-masonry-css
x.x.x
@harveynichols/web-ui-library
x.x.x
@capacitor/core
x.x.x
jsbarcode
x.x.x
react-container-dimensions
x.x.x
react-media-player
x.x.x
react-phone-input-2
x.x.x
prismic-richtext
x.x.x
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
lodash
relay-runtime
react-relay
react-use
lodash-es
+51 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites