About
Community
my.setapp.com
102 packages
Last scanned on Oct 27 at 07:56 PM
Update
Name
Size
Popularity
Severity
crypto-js
4.1.0 - 4.1.1
Vulnerable
Outdated
JavaScript library of crypto standards.
Script
https://my.setapp.com/static/js/main.58c73792.js
License
MIT
Footprint
50 KB
Vulnerabilities
Critical
GHSA-xwcq-pm8m-c4vf
crypto-js PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard
Affected versions >=0 <4.2.0
Matched Modules
Version distribution in production
457
4.1.0
457
4.1.1
185
3.3.0
162
3.1.8
143
3.2.1
143
4.0.0
Also used on 738 websites
pubmatic.com
4 packages
tiktok.com
91 packages
redd.it
180 packages
www.reddit.com
183 packages
Repository
Homepage
More
security
crypto
Hash
MD5
SHA1
+15
evanvosberg
decode-uri-component
0.2.0
Vulnerable
Outdated
A better decodeURIComponent
decode
uri
component
decodeuricomponent
components
+2
samverschueren
next
7.0.0 - 7.0.3
Vulnerable
Outdated
The React Framework
es5-ext
0.10.1 - 0.10.62
Vulnerable
Outdated
ECMAScript extensions and shims
ecmascript
ecmascript5
ecmascript6
es5
es6
+11
medikoo
tslib
1.13.0 - 1.14.1
Outdated
Runtime library for TypeScript helper functions
TypeScript
Microsoft
compiler
language
javascript
+2
+5
uuid
8.3.0 - 8.3.1
Outdated
RFC4122 (v1, v4, and v5) UUIDs
uuid
guid
rfc4122
isarray
0.0.0 - 0.0.1
Outdated
Array#isArray for older browsers
browser
isarray
array
juliangruber
react-is
16.13.1
Outdated
Brand checking of React Elements.
react
+1
regenerator-runtime
0.13.7
Outdated
Runtime for Regenerator-compiled generator and async functions.
regenerator
runtime
generator
async
benjamn
@babel/runtime
7.9.6 - 7.11.2
Outdated
babel's modular runtime helpers
+1
path-to-regexp
1.8.0
Outdated
Express style path to RegExp utility
express
regexp
route
routing
+2
object-assign
4.1.1
ES2015 `Object.assign()` ponyfill
object
assign
extend
properties
es2015
+7
core-js
2.6.11
Outdated
Standard library
ES3
ES5
ES6
ES7
ES2015
+39
zloirock
deepmerge
4.2.2
Outdated
A library for deep (recursive) merging of Javascript objects
merge
deep
extend
copy
clone
+1
tehshrike
scheduler
0.19.1
Outdated
Cooperative scheduler for the browser environment.
react
+1
prop-types
15.7.0 - 15.7.2
Outdated
Runtime type checking for React props and similar objects.
react
react
16.13.1
Outdated
React is a JavaScript library for building user interfaces.
react
+1
react-dom
16.13.1
Outdated
React package for working with the DOM.
react
+2
date-fns
2.15.0 - 2.16.0
Outdated
Modern JavaScript date utility library
kossnocorp
hoist-non-react-statics
3.3.2
Copies non-react specific statics from a child component to a parent component
react
mridgway
invariant
2.2.3 - 2.2.4
invariant
test
invariant
classnames
2.2.6
Outdated
A simple utility for conditionally joining classNames together
react
css
classes
classname
classnames
+2
react-transition-group
4.4.1
Outdated
A react component toolset for managing animations
react
transition
addons
transition-group
animation
+2
query-string
7.0.0
Outdated
Parse and stringify URL query strings
browser
querystring
query
string
qs
+9
sindresorhus
ua-parser-js
0.7.28
Outdated
Detect Browser, Engine, OS, CPU, and Device type/model from User-Agent & Client Hints data. Supports browser & node.js environment
user-agent
client-hints
parser
browser
engine
+9
faisalman
dom-helpers
5.0.1 - 5.2.0
Outdated
tiny modular DOM lib for ie9+
dom-helpers
react-component
dom
api
cross-browser
+8
symbol-observable
1.1.0 - 1.2.0
Outdated
Symbol.observable ponyfill
symbol
observable
observables
ponyfill
polyfill
+1
@sentry/types
5.0.0 - 5.20.1
Outdated
Types for all Sentry JavaScript SDKs
+8
tiny-invariant
1.0.2 - 1.0.6
Outdated
A tiny invariant function
invariant
error
assert
asserts
alexreardon
strict-uri-encode
2.0.0
A stricter URI encode adhering to RFC 3986
component
encode
RFC3986
uri
kevva
validator
13.7.0
Outdated
String validation and sanitization
validator
validation
validate
sanitization
sanitize
+3
react-router
5.2.0
Outdated
Declarative routing for React
react
router
route
routing
history
+1
@sentry/utils
5.20.0 - 5.20.1
Outdated
Utilities for all Sentry JavaScript SDKs
+8
react-router-dom
5.2.0
Outdated
Declarative routing for React web applications
react
router
route
routing
history
+1
@sentry/core
5.18.0 - 5.20.1
Outdated
Base implementation for all Sentry JavaScript SDKs
+8
redux
4.0.5
Outdated
Predictable state container for JavaScript apps
redux
reducer
state
predictable
functional
+6
+3
warning
2.0.0 - 3.0.0
Outdated
A mirror of Facebook's Warning
warning
facebook
react
invariant
berkeleytrue
js-cookie
2.2.1
Outdated
A simple, lightweight JavaScript API for handling cookies
cookie
cookies
browser
amd
commonjs
+3
babel-runtime
6.18.0 - 6.26.0
babel selfContained runtime
reselect
4.0.0
Outdated
Selectors for Redux.
react
redux
+3
filter-obj
1.1.0
Outdated
Filter object keys and values into a new object
filter
object
key
keys
value
+7
sindresorhus
history
4.10.1
Outdated
Manage session history with JavaScript
history
location
mjackson
react-redux
7.2.1
Outdated
Official React bindings for Redux
react
reactjs
redux
+2
react-lifecycles-compat
3.0.4
Backwards compatibility polyfill for React class components
split-on-first
1.0.0 - 1.1.0
Outdated
Split a string on the first occurance of a given separator
split
string
first
once
occurrence
+3
sindresorhus
@sentry/browser
5.20.1
Outdated
Official Sentry SDK for browsers
+8
uniq
1.0.1
Removes duplicates from a sorted array in place
array
duplicate
unique
uniq
remove
+5
mikolalysenko
popper.js
1.16.1
A kickass library to manage your poppers
popperjs
component
drop
tooltip
popover
+2
fezvrasta
copy-to-clipboard
3.3.0 - 3.3.1
Outdated
Copy stuff into clipboard using JS with fallbacks
clipboard
copy
browser
sudodoki
redux-thunk
2.1.1 - 2.3.0
Outdated
Thunk middleware for Redux.
redux
thunk
middleware
redux-middleware
flux
+2
toggle-selection
1.0.5 - 1.0.6
Toggle current selected content in browser
selection
toggle
browser
deselect
sudodoki
resolve-pathname
3.0.0
Resolve URL pathnames using JavaScript
mjackson
value-equal
1.0.1
Are these two JavaScript values equal?
mjackson
intl-messageformat
2.1.0 - 2.2.0
Outdated
Formats ICU Message strings with number, date, plural, and select placeholders to create localized messages.
i18n
intl
internationalization
localization
globalization
+4
+9
@sentry/hub
5.18.0 - 5.20.1
Outdated
Sentry hub which handles global state managment.
+8
@apollo/client
3.0.0 - 3.7.1
Outdated
A fully-featured caching GraphQL client.
apollo
graphql
react
hooks
client
+1
+1
uncontrollable
4.1.0
Outdated
Wrap a controlled react component, to allow specific prop/handler pairs to be uncontrolled
uncontrolled-component
react-component
input
controlled
uncontrolled
+1
monastic.panic
@sentry/minimal
5.17.0 - 5.20.1
Outdated
Sentry minimal library that can be used in other packages
+8
mini-create-react-context
0.3.3 - 0.4.1
Smaller Polyfill for the proposed React context API
react
context
contextTypes
polyfill
ponyfill
stringepsilon
react-overlays
0.8.3
Outdated
Utilities for creating robust overlay components
react-overlays
react-component
react
overlay
react-component
+4
exenv
1.2.1 - 1.2.2
React's ExecutionEnvironment module extracted for use in other packages & components
react
browser
server
environment
env
+2
jedwatson
react-datepicker
1.5.0 - 1.6.0
Outdated
A simple and reusable datepicker component for React
react
datepicker
calendar
date
react-component
dijkstrajs
1.0.1 - 1.0.2
Outdated
A simple JavaScript implementation of Dijkstra's single-source shortest-paths algorithm.
dijkstra
shortest
path
search
graph
tcort
object-path
0.11.8
Access deep object properties using a path
deep
path
access
bean
get
+10
mariocasciaro
qrcode
1.5.0
Outdated
QRCode / 2d Barcode api with both server side and client side support using canvas
qr
code
canvas
qrcode
prop-types-extra
1.1.0 - 1.1.1
React PropType Utilities
react
proptypes
monastic.panic
react-intersection-observer
8.33.0 - 9.4.0
Outdated
Monitor if a component is inside the viewport, using IntersectionObserver API
react
component
hooks
viewport
intersection
+5
thebuilder
react-bootstrap
0.32.1
Outdated
Bootstrap 5 components built with React
bootstrap
react
component
components
ecosystem-react
+1
react-modal
3.11.2
Outdated
Accessible modal dialog component for React.JS
react
react-component
modal
dialog
diasbruno
react-intl
2.4.0
Outdated
Internationalize React apps. This library provides React components and an API to format dates, numbers, and strings, including pluralization and handling translations.
intl
i18n
internationalization
locale
localization
+7
+5
intl-messageformat-parser
1.2.0
Outdated
Parses ICU Message strings into an AST via JavaScript.
i18n
intl
internationalization
localization
globalization
+4
+3
keycode
2.2.0
Outdated
Convert between keyboard keycodes and keynames and vice versa.
keyboard
keycode
keyboardevent
ascii
keydown
+4
timoxley
react-device-detect
1.13.1
Outdated
Detect device type and render your component according to it
useragent
mobile
phone
tablet
detect
+7
duskload
react-async-script
0.11.0 - 0.11.1
Outdated
A composition mixin for loading scripts asynchronously for React
react
asynchronous
script-loader
dozoisch
humps
2.0.1
Underscore-to-camelCase converter (and vice versa) for strings and object keys in JavaScript.
utils
camel
case
underscore
converter
+2
domchristie
react-google-recaptcha
0.14.0 - 0.14.2
Outdated
React Component Wrapper for Google reCAPTCHA
react
react-component
captcha
recaptcha
google-recaptcha
dozoisch
intl-format-cache
2.0.5
Outdated
A memoizer factory for Intl format constructors.
intl
i18n
+3
react-event-listener
0.6.3 - 0.6.6
A React component that allow to bind events on the global scope
react
event
listener
binding
oliviertassinari
react-inlinesvg
2.0.1
Outdated
An SVG loader for React
react
svg
gilbarbara
react-from-dom
0.4.0 - 0.4.2
Outdated
Convert HTML/XML source code or DOM nodes to React elements
string
DOM
converter
react
component
+1
gilbarbara
amplitude-js
5.2.0
Outdated
Javascript library for Amplitude Analytics
analytics
amplitude
+5
react-prop-types
0.4.0
Additional PropTypes for React
react
proptypes
+1
intl-relativeformat
1.3.0 - 2.0.0
Outdated
Formats JavaScript dates to relative time strings.
intl
i18n
relative
moment
format
+1
+1
react-load-script
0.0.6
react-load-script enables you to easily create components which depend on third party JS scripts
react
script
jkottnauer
react-router-bootstrap
0.25.0
Outdated
Integration between React Router and React-Bootstrap
react
react-router
react-bootstrap
+4
lottie-api
1.0.0 - 1.0.2
Outdated
A library to edit lottie-web animations dynamically
airnan
@setapp/abn-tests-client
x.x.x
@setapp/auth-tokens-manager
x.x.x
@setapp/customer-authenticator
x.x.x
@setapp/request-error
x.x.x
@setapp/desktop-app-helper
x.x.x
@setapp/desktop-app-installer-url
x.x.x
@setapp/health-metrics-helper
x.x.x
@setapp/signup-metadata
x.x.x
@setapp/ui-kit
x.x.x
braintree-web
x.x.x
encode-utf8
x.x.x
http-status
x.x.x
lodash.chunk
x.x.x
react-intl-redux
x.x.x
react-tippy
x.x.x
pkce-challenge
x.x.x
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
libphonenumber-js
react-relay
jss
@babel/runtime
redux-form
+50 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites