About
Community
honestdoor.com
111 packages
Last scanned on Dec 14 at 10:50 PM
Update
Name
Size
Popularity
Severity
next-auth
4.6.1 - 4.10.1
Vulnerable
Outdated
Authentication for Next.js
Script
https://honestdoor.com/_next/static/chunks/pages/_app-95ed2c30da523590.js
License
ISC
Footprint
18 KB
Vulnerabilities
Low
GHSA-p6mm-27gq-9v3p
next-auth before v4.10.2 and v3.29.9 leaks excessive information into log
Affected versions >=0 <3.29.9, >=4.0.0 <4.10.2
High
GHSA-7r7x-4c4q-c4qf
Missing proper state, nonce and PKCE checks for OAuth authentication
Affected versions >=0 <4.20.1
Moderate
GHSA-v64w-49xw-qq89
Possible user mocking that bypasses basic authentication
Affected versions >=0 <4.24.5
Matched Modules
Version distribution in production
153
4.12.3
146
4.10.2
146
4.10.3
146
4.11.0
146
4.12.0
143
4.10.1
Also used on 254 websites
www.netflix.com
59 packages
intuit.com
28 packages
teacherspayteachers.com
172 packages
steamcommunity.com
27 packages
Repository
Homepage
More
react
nodejs
oauth
jwt
oauth2
+5
next
12.0.4
Vulnerable
Outdated
The React Framework
tslib
1.13.0 - 1.14.1
Outdated
Runtime library for TypeScript helper functions
TypeScript
Microsoft
compiler
language
javascript
+2
+5
uuid
8.3.2
Outdated
RFC4122 (v1, v4, and v5) UUIDs
uuid
guid
rfc4122
isarray
1.0.0 - 2.0.5
Array#isArray for older browsers
browser
isarray
array
juliangruber
react-is
16.13.1
Outdated
Brand checking of React Elements.
react
+1
buffer
4.9.2
Outdated
Node.js Buffer API, for the browser
arraybuffer
browser
browserify
buffer
compatible
+2
feross
@babel/runtime
7.13.9 - 7.18.0
Outdated
babel's modular runtime helpers
+1
lodash
4.17.21
Lodash modular utilities.
modules
stdlib
util
ieee754
1.2.0 - 1.2.1
Read/write IEEE754 floating point numbers from/to a Buffer or array-like object
IEEE 754
buffer
convert
floating point
ieee754
feross
base64-js
1.5.1
Base64 encoding/decoding in pure JS
base64
scheduler
0.20.2
Outdated
Cooperative scheduler for the browser environment.
react
+1
prop-types
15.7.0 - 15.7.2
Outdated
Runtime type checking for React props and similar objects.
react
react
17.0.1
Outdated
React is a JavaScript library for building user interfaces.
react
+1
process
0.11.10
process information for node.js and browsers
process
react-dom
17.0.1
Outdated
React package for working with the DOM.
react
+2
date-fns
2.25.0 - 2.26.0
Outdated
Modern JavaScript date utility library
kossnocorp
@emotion/memoize
0.7.5
Outdated
emotion's memoize utility
+1
hoist-non-react-statics
3.3.2
Copies non-react specific statics from a child component to a parent component
react
mridgway
@emotion/unitless
0.7.2 - 0.7.5
Outdated
An object of css properties that don't accept values with units
+1
stylis
4.0.10
Outdated
A Light–weight CSS Preprocessor
@emotion/is-prop-valid
0.8.8
Outdated
A function to check whether a prop is valid for HTML and SVG elements
+1
@emotion/hash
0.8.0
Outdated
A MurmurHash2 implementation
+1
@emotion/serialize
1.0.2
Outdated
serialization utils for emotion
+1
@popperjs/core
2.11.0
Outdated
Tooltip and Popover Positioning Engine
tooltip
popover
dropdown
popup
popper
+1
tiny-invariant
1.2.0
Outdated
A tiny invariant function
invariant
error
assert
asserts
alexreardon
@emotion/utils
1.0.0
Outdated
internal utils for emotion
+1
@emotion/cache
11.5.0
Outdated
emotion's cache
+1
@emotion/sheet
1.0.3
Outdated
emotion's stylesheet
+1
@emotion/weak-memoize
0.2.1 - 0.2.5
Outdated
A memoization function that uses a WeakMap
+1
lodash-es
4.17.21
Lodash exported as ES modules.
es6
modules
stdlib
util
react-fast-compare
3.1.0 - 3.2.0
Outdated
Fastest deep equal comparison for React. Great for React.memo & shouldComponentUpdate. Also really fast general-purpose deep comparison.
fast
equal
react
compare
shouldComponentUpdate
+1
+12
warning
4.0.3
A mirror of Facebook's Warning
warning
facebook
react
invariant
berkeleytrue
@emotion/react
11.5.0
Outdated
> Simple styling in React.
+1
react-remove-scroll
2.4.0 - 2.4.1
Outdated
Disables scroll outside of `children` node.
scroll
kashey
@emotion/styled
11.3.0
Outdated
styled API for emotion
+1
use-callback-ref
1.2.4 - 1.2.5
Outdated
The same useRef, but with callback
react
hook
useRef
createRef
merge refs
kashey
styled-jsx
3.3.2 - 4.0.1
Outdated
Full CSS support for JSX without compromises
babel-plugin-macros
vercel
zeit
css-in-js
css
use-sidecar
1.0.0 - 1.0.5
Outdated
Sidecar code splitting utils
code spliting
react
sidecar
kashey
copy-to-clipboard
3.3.0 - 3.3.1
Outdated
Copy stuff into clipboard using JS with fallbacks
clipboard
copy
browser
sudodoki
react-remove-scroll-bar
2.2.0
Outdated
Removes body scroll without content _shake_
scroll
kashey
aria-hidden
1.1.3
Outdated
Cast aria-hidden to everything, except...
DOM
aria
hidden
inert
kashey
toggle-selection
1.0.5 - 1.0.6
Toggle current selected content in browser
selection
toggle
browser
deselect
sudodoki
react-style-singleton
2.1.0 - 2.1.1
Outdated
Just create a single stylesheet...
react
style
css
kashey
get-nonce
1.0.0 - 1.0.1
returns nonce
webpack
nonce
__webpack_nonce__
kashey
lodash.mergewith
4.6.2
The Lodash method `_.mergeWith` exported as a module.
lodash-modularized
mergewith
framer-motion
4.1.17
Outdated
A simple and powerful JavaScript animation library
react animation
react
three
3d
pose
+8
+36
focus-lock
0.9.2
Outdated
DOM trap for a focus
focus
trap
vanilla
kashey
css-box-model
1.1.2 - 1.2.1
Get accurate and well named css box model information about an Element 📦
css
box model
css box model
getBoundingClientRect
DOMRect
+4
alexreardon
string-hash
1.1.3
fast string hashing function
string
hashing
react-icons
4.3.1
Outdated
SVG React icons of popular icon packs using ES6 imports
+2
react-focus-lock
2.5.0 - 2.5.2
Outdated
It is a trap! (for a focus)
react
focus
lock
trap
tabbable
kashey
framesync
5.3.0 - 6.0.1
Outdated
A frame-synced render loop for JavaScript
animation
raf
popmotion
react-clientside-effect
1.2.5 - 1.2.6
Create components whose prop changes map to a global side effect
react
component
side
effect
kashey
hey-listen
1.0.6 - 1.0.8
Warning and invariant dev-ex messaging.
warning
invariant
popmotion
@ctrl/tinycolor
3.3.4 - 3.4.0
Outdated
Fast, small color manipulation and conversion for JavaScript
typescript
color
manipulation
tinycolor
hsa
+1
scttcper
react-query
3.34.11 - 3.34.15
Outdated
Hooks for managing, caching and syncing asynchronous and remote data in React
popmotion
9.3.6
Outdated
The animator's toolbox
animation
ux
ui
popmotion
canvas animation
+11
popmotion
style-value-types
4.1.3 - 4.1.4
Outdated
Parsers, transformers and tests for special value types, eg: %, hex codes etc.
css
svg
hex
rgba
hsla
popmotion
mobx
6.3.12
Outdated
Simple, scalable state management.
mobx
mobservable
observable
react-component
react
+7
+3
nprogress
0.2.0
Simple slim progress bars
rstacruz
mobx-react-lite
3.2.3
Outdated
Lightweight React bindings for MobX based on React 16.8+ and Hooks
mobx
mobservable
react-component
react
reactjs
+4
@reach/utils
0.13.1 - 0.13.2
Outdated
Internal, shared utilities for Reach UI.
+1
use-subscription
1.5.1
Outdated
Reusable hooks
+1
@chakra-ui/utils
1.9.1
Outdated
Common utilities and types for Chakra UI
@chakra-ui/icon
1.2.1
Outdated
A base React component for icons
react
icon
svg
ui
chakra ui
@chakra-ui/styled-system
1.14.1
Outdated
Style function for css-in-js building component libraries
theme
theming
style
system
styled
+5
@chakra-ui/theme-tools
1.3.1 - 1.3.6
Outdated
Set of helpers that makes theming and styling easier
theme
theming
color
utilities
@chakra-ui/anatomy
1.2.1 - 1.2.3
Outdated
The anatomy of all chakra components
theme
theming
ui mode
ui
@chakra-ui/react-utils
1.2.1 - 2.0.1
Outdated
React utilities and helpers for Chakra UI
theme
theming
ui mode
ui
@chakra-ui/system
1.8.1 - 1.8.2
Outdated
Chakra UI system primitives
system
styled-component
emotion
ui-component
ui
+3
@chakra-ui/theme
1.12.1 - 1.12.2
Outdated
The default theme for chakra components
theme
theming
ui mode
ui
@chakra-ui/color-mode
1.3.2 - 1.3.3
Outdated
React component and hooks for handling light and dark mode.
react
theming
ui
light mode
use dark mode
+6
@chakra-ui/hooks
1.7.1
Outdated
React hooks for Chakra components
hooks
react
chakra ui
utilities
@chakra-ui/form-control
1.5.1 - 1.5.4
Outdated
React component to provide validation states to form fields
field
input
input group
form
theming
+4
@chakra-ui/transition
1.4.1
Outdated
Common transition components for Chakra UI
transition
animation
react
react transition group
motion
+1
@chakra-ui/react-env
1.1.1 - 1.1.6
Outdated
Component and hook for handling window and document object in iframe or ssr environment
dom
environment context
ssr
iframe
window
+1
@chakra-ui/layout
1.5.1 - 1.6.0
Outdated
Chakra UI layout components that give you massive speed
layout
component
grid
stack
wrap
+7
@chakra-ui/popper
2.4.1 - 2.4.3
Outdated
A React component and hooks wrapper for popper.js
react
popper
popover
tooltips
popper.js
+5
@chakra-ui/spinner
1.2.1 - 2.0.1
Outdated
A React component for displaying spinners and loaders
spinner
loader
react
chakra ui
@chakra-ui/react
1.7.1 - 1.8.7
Outdated
Responsive and accessible React UI components built with React and Emotion
react
ui
design-system
react-components
uikit
+5
@chakra-ui/portal
1.3.1 - 2.0.1
Outdated
React component used to render children outside the DOM hierarchy of the parent component
react
portal
nested portal
z-index
layer
+1
@chakra-ui/css-reset
1.1.1 - 1.1.3
Outdated
CSS reset component for Chakra UI
theme
theming
ui mode
chakra ui
css reset
@chakra-ui/close-button
1.2.1 - 2.0.1
Outdated
A React and Chakra UI close button component.
close-button
button
icon-button
react
close-icon
@chakra-ui/tooltip
1.4.1
Outdated
A React Component for rendering dynamically positioned Tooltips
react
tooltip
component
popper
chakra ui
+2
@chakra-ui/modal
1.10.1 - 1.10.8
Outdated
An accessible dialog (modal) component for React & Chakra UI
react
react component
modal
dialog
modal dialog
+8
@chakra-ui/popover
1.10.1
Outdated
A React component to render that renders its content in a popover
popover
popper
dialog
react
component
+1
@chakra-ui/input
1.3.1
Outdated
A React component for input text field
react
input
text field
chakra ui
react component
+2
@chakra-ui/visually-hidden
1.1.1 - 2.0.4
Outdated
A React component that visually hides its content
react
component
chakra
chakra ui
a11y
+7
@chakra-ui/media-query
1.2.1
Outdated
A React hook for changing properties or visibility of a component based on css media query
chakra ui
breakpoint
matchMedia
react
responsive
+1
@chakra-ui/focus-lock
1.2.1 - 2.0.5
Outdated
React focus lock for all Chakra components
react focus lock
focus trap
focus
chakra ui
react
@chakra-ui/provider
1.7.1 - 1.7.14
Outdated
Theme and components agnostic ChakraProvider
react
ui
design-system
react-components
uikit
+5
@chakra-ui/tag
1.2.1 - 1.2.6
Outdated
This component displays as a tag with an optional link and/or button to remove the given tag.
tag
tag group
react
component
removable tag
+1
@chakra-ui/button
1.5.1 - 1.5.2
Outdated
A React component that is a base button.
button
button-group
react
chakra-ui
component
+2
@chakra-ui/image
1.1.1 - 1.1.9
Outdated
React component for progressive image loading
react
progressive
lazyloading
component
chakra ui
+2
next-seo
5.1.0
Outdated
SEO plugin for Next.js projects
next.js
seo
react
node
ssr
garymeehan
react-swipeable
6.2.0
Outdated
React Swipe event handler hook
react swipe
react touch
react hook
touch
swipe
+3
+13
@reach/visually-hidden
0.13.1 - 0.14.0
Outdated
Render text that is announced to screen readers but visually hidden.
+1
@next/polyfill-module
10.0.1 - 12.2.4
Outdated
A standard library polyfill for ES Modules supporting browsers (Edge 16+, Firefox 60+, Chrome 61+, Safari 10.1+)
+2
@reach/alert
0.13.1 - 0.14.0
Outdated
Screen-reader-friendly alert messages.
+1
cross-domain-utils
2.0.38
Javascript module template.
template
bluepnume
react-amphtml
3.1.0 - 4.0.2
Use amphtml components inside your React apps easily!
react
amphtml
dfrankland
@chakra-ui/avatar
x.x.x
@chakra-ui/checkbox
x.x.x
@chakra-ui/skeleton
x.x.x
@chakra-ui/switch
x.x.x
react-use-keypress
x.x.x
@chakra-ui/toast
x.x.x
@chakra-ui/stat
x.x.x
embla-carousel-react
x.x.x
@chakra-ui/alert
x.x.x
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
lodash
relay-runtime
react-relay
react-use
lodash-es
+51 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites