List of NPM packages that are used on jcrew.com

jcrew.com 67 packages

Last scanned on Oct 27 at 07:03 PM

dompurify 1.0.0VulnerableOutdated

DOMPurify is a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. It's written in JavaScript and works in all modern browsers (Safari, Opera (15+), Internet Explorer (10+), Firefox and Chrome - as well as almost anything else usin

Script

https://jcrew.com/_next/static/chunks/pages/_app-0059ab7fb64feb1d.js

License

(MPL-2.0 OR Apache-2.0)

Footprint

622 B

Vulnerabilities

ModerateGHSA-chqj-j4fh-rw7m

Cross-Site Scripting in dompurify

Affected versions >=0 <2.0.3

ModerateGHSA-8hgg-xxm5-3873

DOMPurify Open Redirect vulnerability

Affected versions >=0 <1.0.11

CriticalGHSA-mjjq-c88q-qhr6

Cross-Site Scripting in dompurify

Affected versions >=0 <2.0.7

ModerateGHSA-63q7-h895-m982

Cross-site Scripting in dompurify

Affected versions >=0 <2.0.17

Matched Modules

Version distribution in production

1.0.0

2.3.6

2.3.8

2.3.7

2.3.3

2.2.9

Also used on 160 websites

dom xss html svg mathml+6

cure53

lodash 4.17.16VulnerableOutdated

Lodash modular utilities.

modules stdlib util

next 12.1.6VulnerableOutdated

The React Framework

react-is 16.3.0 - 17.0.2Outdated

Brand checking of React Elements.

react

qs 6.11.0Outdated

A querystring parser that supports nesting and arrays, with a depth limit

querystring qs query url parse+1

is-number 7.0.0

Returns true if a number or string value is a finite number. Useful for regex matches, parsing, user input, etc.

cast check coerce coercion finite+21

@babel/runtime 7.13.6 - 7.13.7Outdated

babel's modular runtime helpers

get-intrinsic 1.1.0 - 1.1.1Outdated

Get and robustly cache all JS language-level intrinsics at first require time

javascript ecmascript es js intrinsic+2

ljharb

function-bind 1.1.0 - 1.1.1Outdated

Implementation of Function.prototype.bind

function bind shim es5

path-to-regexp 2.4.0Outdated

Express style path to RegExp utility

express regexp route routing

call-bind 1.0.2Outdated

Robustly `.call.bind()` a function

javascript ecmascript es js callbind+8

ljharb

object-inspect 1.11.0 - 1.11.1Outdated

string representations of objects in node and the browser

inspect util.inspect object stringify pretty

has-symbols 1.0.2 - 1.0.3

Determine if the JS environment has Symbol support. Supports spec, or shams.

Symbol symbols typeof sham polyfill+3

ljharb

isobject 3.0.0 - 4.0.0

Returns true if the value is an object and not an array or null.

check is is-object isobject kind+7

rxjs 6.6.2 - 6.6.7Outdated

Reactive Extensions for modern JavaScript

Rx RxJS ReactiveX ReactiveExtensions Streams+5

is-plain-object 2.0.0 - 3.0.0Outdated

Returns true if an object was created by the `Object` constructor, or Object.create(null).

check is is-object isobject javascript+7

side-channel 1.0.4Outdated

Store information about any JS value in a side channel. Uses WeakMap if available.

weakmap map side channel metadata

ljharb

lodash.merge 4.6.1 - 4.6.2

The Lodash method `_.merge` exported as a module.

lodash-modularized merge

eventemitter3 2.0.0 - 4.0.7Outdated

EventEmitter3 focuses on performance while maintaining a Node.js AND browser compatible interface.

EventEmitter EventEmitter2 EventEmitter3 Events addEventListener+10

has 1.0.1 - 1.0.3Outdated

Object.prototype.hasOwnProperty.call shortcut

tarruda

scheduler 0.15.0 - 0.23.0

Cooperative scheduler for the browser environment.

react

prop-types 15.7.0 - 15.7.2Outdated

Runtime type checking for React props and similar objects.

react

react 17.0.0 - 18.2.0

React is a JavaScript library for building user interfaces.

react

lodash.debounce 4.0.8

The lodash method `_.debounce` exported as a module.

lodash-modularized debounce

is-generator-function 1.0.0 - 1.0.4Outdated

Determine if a function is a native generator function.

generator generator function es6 es2015 yield+2

ljharb

dayjs 1.10.6 - 1.10.8Outdated

2KB immutable date time library alternative to Moment.js with the same modern API

dayjs date time immutable moment

iamkun

hoist-non-react-statics 3.3.1 - 3.3.2

Copies non-react specific statics from a child component to a parent component

react

mridgway

querystring 0.2.1

Node's querystring module for all engines.

commonjs query querystring

set-value 3.0.1 - 3.0.2Outdated

Create nested values and any intermediaries using dot notation (`'a.b.c'`) paths.

bury deep-get-set deep-object deep-property deep-set+29

classnames 2.3.0 - 2.3.1Outdated

A simple utility for conditionally joining classNames together

react css classes classname classnames+2

get-value 3.0.1

Use property paths like 'a.b.c' to get a nested value from an object. Even works when keys have dots in them (no other dot-prop library can do this!).

get key nested object path+8

graphql 14.0.0 - 15.8.0Outdated

A Query Language and Runtime which can target any service.

graphql graphql-js

ramda 0.27.0 - 0.27.2Outdated

A practical functional library for JavaScript programmers.

ramda functional utils utilities toolkit+6

memoize-one 5.1.0 - 5.1.1Outdated

A memoization library which only remembers the latest invocation

memoize memoization cache performance

alexreardon

@storybook/theming 5.3.0 - 6.2.9Outdated

Core Storybook Components

storybook

lodash-es 4.17.21

Lodash exported as ES modules.

es6 modules stdlib util

redux 4.1.0 - 4.2.0Outdated

Predictable state container for JavaScript apps

redux reducer state predictable functional+6

react-fast-compare 3.1.0 - 3.2.0Outdated

Fastest deep equal comparison for React. Great for React.memo & shouldComponentUpdate. Also really fast general-purpose deep comparison.

fast equal react compare shouldComponentUpdate+1

+12

dlv 1.1.3

Safely get a dot-notated property within an object.

delve dot notation dot

developit

reselect 4.1.1 - 4.1.6Outdated

Selectors for Redux.

react redux

jwt-decode 2.2.0Outdated

Decode JWT tokens, mostly useful for browser applications.

jwt browser

+42

debounce 1.2.0 - 1.2.1Outdated

Delay function calls until a set time elapses after the last invocation

debounce debouncing function throttle invoke+6

sindresorhus

toposort 2.0.2

Topological sort of directed ascyclic graphs (like dependecy lists)

topological sort sorting graphs graph+4

marcelklehr

resize-observer-polyfill 1.5.0 - 1.5.1

A polyfill for the Resize Observer API

ResizeObserver resize observer util client+3

que-etc

libphonenumber-js 1.10.10 - 1.10.14Outdated

A simpler (and smaller) rewrite of Google Android's libphonenumber library in javascript

telephone phone number input mobile+1

catamphetamine

property-expr 2.0.5Outdated

tiny util for getting and setting deep object props safely

expr expression setter getter deep+3

monastic.panic

hash-sum 2.0.0

Blazing fast unique hash generator

bevacqua

react-draggable 4.4.1 - 4.4.5Outdated

React draggable component

react draggable react-component

string-convert 0.2.0 - 0.2.1

String convertions

akiran

json2mq 0.2.0

Generate media query string from JSON or javascript object

akiran

react-dnd 15.0.0 - 16.0.1

Drag and Drop for React

lit-element 3.0.1 - 3.2.2Outdated

A simple base class for creating fast, lightweight web components

+11

xstate 4.7.0 - 4.33.6Outdated

Finite State Machines and Statecharts for the Modern Web.

statechart state machine finite state machine finite automata scxml+2

subscriptions-transport-ws 0.9.18 - 0.11.0

A websocket transport for GraphQL subscriptions

apollo-bot

react-bootstrap 0.30.2 - 0.33.1Outdated

Bootstrap 5 components built with React

bootstrap react component components ecosystem-react+1

enquire.js 2.1.6

Awesome Media Queries in JavaScript

media query media queries matchMedia enquire enquire.js

wickynilliams

react-slick 0.23.0 - 0.23.2Outdated

React port of slick carousel

slick carousel Image slider orbit slider+1

akiran

shortid 2.2.15 - 2.2.16

Amazingly short non-sequential url-friendly unique id generator.

short tiny id uuid bitly+4

@aws-amplify/auth 1.2.21 - 1.2.25Outdated

Auth category of aws-amplify

contentful 8.0.0 - 8.1.7Outdated

Client for Contentful's Content Delivery API

humps 0.5.1 - 2.0.1

Underscore-to-camelCase converter (and vice versa) for strings and object keys in JavaScript.

utils camel case underscore converter+2

domchristie

instantsearch.js 4.46.0 - 4.49.0Outdated

InstantSearch.js is a JavaScript library for building performant and instant search experiences with Algolia.

algolia instantsearch search widget vanilla

+10

react-lazyload 2.4.0 - 3.2.0Outdated

Lazyload your components, images or anything where performance matters.

react-component react lazyload

analytics-utils 0.0.12 - 0.0.15Outdated

Analytics utility functions used by 'analytics' module

analytics analytics-project analytics-utilities

davidwells

fg-loadcss 2.1.0 - 3.1.0

A function for loading CSS asynchronously

web-speech-cognitive-services 4.0.0Outdated

Polyfill Web Speech API with Cognitive Services Speech-to-Text service

cognitive services dictation microphone polyfill react+14

compulim

react-amphtml 3.1.0 - 4.0.2

Use amphtml components inside your React apps easily!

react amphtml

dfrankland

Popular search queries

webpack.js.org

urlreact-scriptsreactlottie-apireact-helmet-async+7 packages

github.com

color-convert@headlessui/reacthoist-non-react-staticsreactstraplit-html+60 packages

pinterest.com

lodashrelay-runtimereact-relayreact-uselodash-es+51 packages

Popular packages

react

React is a JavaScript library for building user interfaces.

ECMAScript extensions and shims

+10 229 websites

@babel/runtime

babel's modular runtime helpers

+8 352 websites

lodash

Lodash modular utilities.

+4 826 websites

axios

Promise based HTTP client for the browser and node.js

+4 742 websites