About
Community
khanacademy.org
67 packages
Last scanned on Oct 27 at 05:55 PM
Update
Name
Size
Popularity
Severity
next-auth
3.24.1 - 4.15.0
Vulnerable
Outdated
Authentication for Next.js
Script
https://cdn.kastatic.org/genwebpack/prod/en/shared.313b39fee5eba7785816.js
License
ISC
Footprint
10 KB
Vulnerabilities
High
GHSA-7r7x-4c4q-c4qf
Missing proper state, nonce and PKCE checks for OAuth authentication
Affected versions >=0 <4.20.1
Matched Modules
Version distribution in production
153
4.12.3
146
4.10.2
146
4.10.3
146
4.11.0
146
4.12.0
146
4.12.1
Also used on 254 websites
netflix.com
59 packages
www.netflix.com
59 packages
intuit.com
28 packages
teacherspayteachers.com
172 packages
Repository
Homepage
More
react
nodejs
oauth
jwt
oauth2
+5
tslib
1.9.2 - 2.4.0
Outdated
Runtime library for TypeScript helper functions
TypeScript
Microsoft
compiler
language
javascript
+2
+5
uuid
7.0.0 - 8.0.0
Outdated
RFC4122 (v1, v4, and v5) UUIDs
uuid
guid
rfc4122
isarray
0.0.0 - 0.0.1
Outdated
Array#isArray for older browsers
browser
isarray
array
juliangruber
react-is
16.3.0 - 17.0.2
Outdated
Brand checking of React Elements.
react
+2
@babel/runtime
7.12.13 - 7.20.0
Outdated
babel's modular runtime helpers
+1
path-to-regexp
1.7.0 - 1.8.0
Outdated
Express style path to RegExp utility
express
regexp
route
routing
+2
core-js
3.20.0 - 3.22.3
Outdated
Standard library
ES3
ES5
ES6
ES7
ES2015
+39
zloirock
fast-json-stable-stringify
2.0.0 - 2.1.0
deterministic `JSON.stringify()` - a faster version of substack's json-stable-strigify without jsonify
json
stringify
deterministic
hash
stable
esp
prop-types
15.7.0 - 15.7.2
Outdated
Runtime type checking for React props and similar objects.
react
+1
scheduler
0.15.0 - 0.23.0
Cooperative scheduler for the browser environment.
react
+2
react
17.0.0 - 17.0.2
Outdated
React is a JavaScript library for building user interfaces.
react
+2
lodash.debounce
4.0.8
The lodash method `_.debounce` exported as a module.
lodash-modularized
debounce
table
6.7.0 - 6.8.0
Outdated
Formats data into a string table.
ascii
text
table
align
ansi
hoist-non-react-statics
3.3.1 - 3.3.2
Copies non-react specific statics from a child component to a parent component
react
mridgway
react-transition-group
4.1.0 - 4.4.5
A react component toolset for managing animations
react
transition
addons
transition-group
animation
+2
classnames
1.1.2 - 1.1.4
Outdated
A simple utility for conditionally joining classNames together
react
css
classes
classname
classnames
+2
timers-browserify
2.0.9
Outdated
timers module for browserify
timers
browserify
browser
+36
graphql
14.5.5 - 14.7.0
Outdated
A Query Language and Runtime which can target any service.
graphql
graphql-js
+4
es5-ext
0.10.24 - 0.10.49
Outdated
ECMAScript extensions and shims
ecmascript
ecmascript5
ecmascript6
es5
es6
+11
medikoo
react-router
5.1.1 - 5.3.4
Outdated
Declarative routing for React
react
router
route
routing
history
+1
@storybook/addons
4.0.0 - 6.4.22
Outdated
Storybook addons store
storybook
+2
history
4.0.0 - 4.10.1
Outdated
Manage session history with JavaScript
history
location
mjackson
redux
4.0.0
Outdated
Predictable state container for JavaScript apps
redux
reducer
state
predictable
functional
+6
+1
react-fast-compare
3.1.0 - 3.2.0
Outdated
Fastest deep equal comparison for React. Great for React.memo & shouldComponentUpdate. Also really fast general-purpose deep comparison.
fast
equal
react
compare
shouldComponentUpdate
+1
+18
@sentry/utils
6.17.7 - 7.15.0
Outdated
Utilities for all Sentry JavaScript SDKs
+9
tiny-invariant
0.0.2 - 1.3.1
A tiny invariant function
invariant
error
assert
asserts
alexreardon
@sentry/core
7.0.0 - 7.17.1
Outdated
Base implementation for all Sentry JavaScript SDKs
+9
graphql-tag
2.1.0 - 2.9.0
Outdated
A JavaScript template literal tag that parses GraphQL queries
react-popper
2.2.5 - 2.3.0
Official library to use Popper on React projects
react
react-popper
popperjs
component
drop
+2
ts-dedent
2.2.0
TypeScript package which smartly trims and strips indentation from multi-line strings
dedent
deindent
indentation
multi-line string
multiline strings
+6
tamino-martinius
tailwindcss
1.0.2 - 3.1.6
Outdated
A utility-first CSS framework for rapidly building custom user interfaces.
+1
ts-invariant
0.1.0 - 0.2.1
Outdated
TypeScript implementation of invariant(condition, message)
invariant
assertion
precondition
TypeScript
benjamn
zen-observable
0.8.15
Outdated
An Implementation of ES Observables
zenparsing
@sentry/browser
7.0.0 - 7.15.0
Outdated
Official Sentry SDK for browsers
+9
lodash.throttle
4.1.1
The lodash method `_.throttle` exported as a module.
lodash-modularized
throttle
@wry/equality
0.1.8 - 0.1.11
Outdated
Structural equality checking for JavaScript values
benjamn
engine.io-client
6.1.1
Outdated
Client for the realtime Engine
hyphenate-style-name
1.0.3 - 1.0.4
Hyphenates a camelcased CSS property name
hyphenate
style
css
camelcase
rexxars
react-scripts
0.4.2
Outdated
Configuration and scripts for Create React App.
+2
mini-create-react-context
0.3.3 - 0.4.1
Smaller Polyfill for the proposed React context API
react
context
contextTypes
polyfill
ponyfill
stringepsilon
gud
1.0.0
Create a 'gud nuff' (not cryptographically secure) globally unique id
global
unique
id
identifier
number
+2
thejameskyle
optimism
0.6.8 - 0.6.9
Outdated
Composable reactive caching with efficient invalidation.
caching
cache
invalidation
reactive
reactivity
+4
benjamn
faker
2.0.1 - 2.1.5
Outdated
Generate massive amounts of fake contextual data
marak
string-hash
1.1.1 - 1.1.3
fast string hashing function
string
hashing
apollo-link
1.2.7 - 1.2.8
Outdated
Flexible, lightweight transport layer for GraphQL
create-react-class
15.6.3
Outdated
Legacy API for creating React components.
react
@firebase/firestore
3.5.0
Outdated
The Cloud Firestore component of the Firebase JS SDK.
+1
apollo-link-http-common
0.0.0 - 0.2.16
Http utilities for Apollo Link shared across all links using http
apollo
http
network
rc-select
14.1.11 - 14.1.13
Outdated
React Select
react
react-component
react-select
select
+6
lit-element
3.0.1 - 3.2.2
Outdated
A simple base class for creating fast, lightweight web components
+10
react-hot-loader
4.9.0 - 4.13.0
Outdated
Tweak React components in real time.
react
javascript
webpack
hmr
livereload
+5
+3
apollo-client
0.5.19 - 2.6.10
A simple yet functional GraphQL client.
ecmascript
es2015
jsnext
javascript
relay
+2
+5
apollo-cache-inmemory
1.0.0 - 1.6.6
Core abstract of Caching layer for Apollo Client
+1
react-player
1.12.0 - 1.15.3
Outdated
A React component for playing a variety of URLs, including file paths, YouTube, Facebook, Twitch, SoundCloud, Streamable, Vimeo, Wistia and DailyMotion
react
media
player
video
audio
+11
cookpete
@auth0/auth0-spa-js
2.0.0
Outdated
Auth0 SDK for Single Page Applications using Authorization Code Grant Flow with PKCE
auth0
login
Authorization Code Grant Flow
PKCE
Single Page Application authentication
+1
+40
@chakra-ui/theme
2.1.0 - 2.1.3
Outdated
The default theme for chakra components
theme
theming
ui mode
ui
react-loadable
5.0.0 - 5.1.0
Outdated
A higher order component for loading components with promises
detect-passive-events
1.0.0 - 1.0.5
Outdated
Detect if the browser supports passive events
detect
passive
passive events
rafgraph
aphrodite
1.2.4 - 1.2.5
Outdated
Framework-agnostic CSS-in-JS with support for server-side rendering, browser prefixing, and minimum CSS generation
css
react
inline-styles
+2
analytics-utils
0.0.7 - 0.0.15
Outdated
Analytics utility functions used by 'analytics' module
analytics
analytics-project
analytics-utilities
davidwells
picturefill
2.3.0 - 2.3.1
Outdated
A responsive image polyfill.
picturefill
srcset
picture
responsive
responsive images
immutable-tuple
0.4.10
Immutable finite list objects with constant-time equality testing (===) and no memory leaks
immutable
tuple
sequence
persistent
data
+9
benjamn
apollo-link-batch-http
1.2.7 - 1.2.14
Batch HTTP transport layer for GraphQL
react-tracking
4.1.0 - 5.4.0
Outdated
Declarative tracking for React apps.
declarative
layer
metrics
nyt
react
+1
tizmagik
js-component-framework
2.0.0 - 2.0.2
Outdated
This framework is a method of attaching an ES6 class to a DOM element or collection of DOM elements.
es6
@team-griffin/capra
0.1.0 - 0.3.0
Outdated
Common utilities
+1
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+8 packages
github.com
color-convert
engine.io-client
lit-html
web-vitals
next
+18 packages
pinterest.com
lodash
relay-runtime
react-query
react-relay
react-use
+50 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites