hbr.org 85 packages

Last scanned on Oct 27 at 05:54 PM
lodash.merge 3.3.0 - 3.3.2VulnerableOutdated
The Lodash method `_.merge` exported as a module.
License
MIT
Footprint
429 B
Vulnerabilities
Prototype Pollution in lodash
Affected versions >=0 <4.6.2
Prototype Pollution in lodash.merge
Affected versions >=0 <4.6.1
Prototype Pollution in lodash.merge
Affected versions >=0 <4.6.2
Matched Modules
Version distribution in production
271
4.6.2
235
4.6.1
47
3.3.2
46
3.3.0
46
3.3.1
1
4.5.0
lodash-es 3.0.0 - 3.9.3VulnerableOutdated
Lodash exported as ES modules.
moment 2.29.3VulnerableOutdated
Parse, validate, manipulate, and display dates
jquery-validation 1.19.3VulnerableOutdated
Client-side form validation made easy
xml2js 0.4.23VulnerableOutdated
Simple XML to JavaScript object converter.
leonidas
leonidas
readable-stream 3.6.0Outdated
Node.js Streams, a user-land copy of the stream library from Node.js
safe-buffer 5.2.1
Safer Node.js Buffer API
string_decoder 1.1.0 - 1.3.0
The string_decoder module from Node core
inherits 2.0.4
Browser-friendly inheritance fully compatible with standard node.js inherits()
buffer 6.0.1 - 6.0.3
Node.js Buffer API, for the browser
async 3.0.0 - 3.2.4
Higher-order functions and common patterns for asynchronous code
lodash 4.17.3 - 4.17.21
Lodash modular utilities.
entities 1.1.2Outdated
Encode & decode XML and HTML entities with ease & speed
axios 0.26.1Outdated
Promise based HTTP client for the browser and node.js
get-intrinsic 1.1.2Outdated
Get and robustly cache all JS language-level intrinsics at first require time
has-symbols 1.0.2 - 1.0.3
Determine if the JS environment has Symbol support. Supports spec, or shams.
has 1.0.2 - 1.0.3
Object.prototype.hasOwnProperty.call shortcut
tarruda
ljharb
function-bind 1.1.1
Implementation of Function.prototype.bind
ieee754 1.2.0 - 1.2.1
Read/write IEEE754 floating point numbers from/to a Buffer or array-like object
util-deprecate 1.0.2
The Node.js `util.deprecate()` function with browser support
domutils 1.7.0Outdated
Utilities for working with htmlparser2's dom
es-abstract 1.18.7 - 1.20.1Outdated
ECMAScript spec abstract operations.
is-callable 1.2.4Outdated
Is this JS value callable? Works with Functions and GeneratorFunctions, despite ES6 @@toStringTag.
object-assign 4.1.1
ES2015 `Object.assign()` ponyfill
dom-serializer 0.2.2Outdated
render domhandler DOM nodes to a string
call-bind 1.0.2
Robustly `.call.bind()` a function
base64-js 1.5.1
Base64 encoding/decoding in pure JS
define-properties 1.1.4Outdated
Define multiple non-enumerable properties at once. Uses `Object.defineProperty` when available; falls back to standard assignment in older engines.
domelementtype 1.2.0 - 1.3.1Outdated
all the types of nodes in htmlparser2's dom
util 0.12.4Outdated
Node.js's util module for all engines
domhandler 2.4.2Outdated
Handler for htmlparser2 that turns pages into a dom
events 3.3.0
Node's event emitter for all engines.
object-keys 1.1.1
An Object.keys replacement, in case Object.keys is not available. From https://github.com/es-shims/es5-shim
sax 1.2.4
An evented streaming XML parser in JavaScript
isaacs
isaacs
has-tostringtag 1.0.0
Determine if the JS environment has `Symbol.toStringTag` support. Supports spec, or shams.
htmlparser2 3.10.1Outdated
Fast & forgiving HTML/XML parser
xmlbuilder 11.0.0 - 11.0.1Outdated
An XML builder for node.js
has-property-descriptors 1.0.0
Does the environment have full property descriptor support? Handles IE 8's broken defineProperty/gOPD.
is-arguments 1.1.1
Is this an arguments object? It's a harder question than you think.
is-typed-array 1.1.9Outdated
Is this value a JS Typed Array? This module works cross-realm/iframe, does not depend on `instanceof` or mutable properties, and despite ES6 Symbol.toStringTag.
which-typed-array 1.1.8Outdated
Which kind of Typed Array is this JavaScript value? Works cross-realm, without `instanceof`, and despite Symbol.toStringTag.
prop-types 15.8.0 - 15.8.1
Runtime type checking for React props and similar objects.
available-typed-arrays 1.0.5
Returns an array of Typed Array names that are available in the current environment
for-each 0.3.3
A better forEach
ljharb
raynos
scheduler 0.19.1Outdated
Cooperative scheduler for the browser environment.
react 16.14.0Outdated
React is a JavaScript library for building user interfaces.
react-dom 16.14.0Outdated
React package for working with the DOM.
process 0.11.10
process information for node.js and browsers
object-is 1.1.4 - 1.1.5
ES2015-compliant shim for Object.is - differentiates between -0 and +0
setimmediate 1.0.5
A shim for the setImmediate efficient script yielding API
domenic
domenic
sha.js 2.4.10 - 2.4.11
Streamable SHA hashes in pure javascript
dcousens
ljharb
cwmma
assert 2.0.0
The assert module from Node.js, for the browser.
stream-browserify 3.0.0
the stream module from node core for browsers
is-generator-function 1.0.10
Determine if a function is a native generator function.
lodash.sortby 2.4.0 - 2.4.1Outdated
The lodash method `_.sortBy` exported as a module.
timers-browserify 2.0.10 - 2.0.12
timers module for browserify
console-browserify 1.2.0
Emulate console for all the browsers
+36
feross
gkatsev
zertosh
lodash.once 2.0.0 - 2.4.1Outdated
The lodash method `_.once` exported as a module.
lodash.defaults 2.0.0 - 2.4.1Outdated
The lodash method `_.defaults` exported as a module.
p-is-promise 3.0.0 - 4.0.0
Check if something is a promise
lodash.difference 2.0.0 - 2.2.1Outdated
The lodash method `_.difference` exported as a module.
jquery 3.6.0Outdated
JavaScript library for DOM operations
lodash.templatesettings 2.0.0 - 4.0.1Outdated
The Lodash method `_.templateSettings` exported as a module.
is-nan 1.3.1 - 1.3.2
ES2015-compliant shim for Number.isNaN - the global isNaN returns false positives.
iterall 1.0.1 - 1.3.0
Minimal zero-dependency utilities for using JavaScript Iterables in all environments.
es6-object-assign 1.0.0 - 1.1.0
ECMAScript 2015 (ES6) Object.assign polyfill and ponyfill
lodash.reduce 2.0.0 - 2.4.1Outdated
The lodash method `_.reduce` exported as a module.
lodash.omit 2.3.0 - 2.4.1Outdated
The lodash method `_.omit` exported as a module.
create-react-class 15.7.0
Legacy API for creating React components.
slick-carousel 1.8.1
the last carousel you'll ever need
smoothscroll-polyfill 0.4.4
Smooth Scroll behavior polyfill
react-with-styles 0.1.0 - 2.4.0Outdated
[![Build Status][travis-svg]][travis-url] [![dependency status][deps-svg]][deps-url] [![dev dependency status][dev-deps-svg]][dev-deps-url] [![License][license-image]][license-url] [![Downloads][downloads-image]][downloads-url]
@auth0/auth0-spa-js 2.0.0Outdated
Auth0 SDK for Single Page Applications using Authorization Code Grant Flow with PKCE
moment-duration-format 2.3.2
A moment.js plugin for formatting durations.
react-html-parser 2.0.2
Parse HTML into React components
ismobilejs 1.1.1
A simple JS library that detects mobile devices.
analytics-utils 0.0.7 - 0.0.15Outdated
Analytics utility functions used by 'analytics' module
@splidejs/splide 3.0.0 - 4.1.3Outdated
Splide is a lightweight, flexible and accessible slider/carousel. No dependencies, no Lighthouse errors.
svg4everybody 2.1.9
Use external SVG spritemaps in any browser
picturefill 3.0.2 - 3.0.3
A responsive image polyfill.
prebid.js 1.27.0 - 6.19.0Outdated
Header Bidding Management Library
jplayer x.x.x
jquery-outside-events x.x.x
lodash-amd x.x.x
react-dom-factories x.x.x