About
Community
netflix.com
64 packages
Last scanned on Feb 26 at 11:56 AM
Update
Name
Size
Popularity
Severity
urijs
1.19.6
Vulnerable
Outdated
URI.js is a Javascript library for working with URLs.
Script
https://assets.nflxext.com/web/ffe/wp/signup/nmhp/nmhpFrameworkClient.js.788f9e0acce355ad1e94.js
License
MIT
Footprint
38 KB
Vulnerabilities
Moderate
GHSA-gcv8-gh4r-25x6
Authorization Bypass Through User-Controlled Key in urijs
Affected versions >=0 <1.19.8
Moderate
GHSA-gmv4-r438-p67f
Leading white space bypasses protocol validation
Affected versions >=0 <1.19.9
Moderate
GHSA-g694-m8vq-gv9h
URL Confusion When Scheme Not Supplied in medialize/uri.js
Affected versions >=0 <1.19.11
Moderate
GHSA-89gv-h8wf-cg8r
URIjs Vulnerable to Hostname spoofing via backslashes in URL
Affected versions >=0 <1.19.7
Moderate
GHSA-8h2f-7jc4-7m3m
Open Redirect in urijs
Affected versions >=0 <1.19.10
High
GHSA-3vjf-82ff-p4r3
Incorrect protocol extraction via \r, \n and \t characters
Affected versions >=0 <1.19.11
Matched Modules
Version distribution in production
61
1.19.11
43
1.19.1
42
1.19.0
42
1.19.2
42
1.19.3
42
1.19.6
Also used on 115 websites
netflix.com
64 packages
snapchat.com
69 packages
www.netflix.com
59 packages
airtable.com
39 packages
Repository
Homepage
More
uri
url
urn
uri mutation
url mutation
+13
rodneyrehm
next
7.0.0 - 7.0.3
Vulnerable
Outdated
The React Framework
tslib
1.2.0 - 2.6.2
Runtime library for TypeScript helper functions
TypeScript
Microsoft
compiler
language
javascript
+2
+5
isarray
0.0.0 - 0.0.1
Outdated
Array#isArray for older browsers
browser
isarray
array
juliangruber
react-is
16.3.0 - 16.13.1
Outdated
Brand checking of React Elements.
react
+1
qs
6.5.2
Outdated
A querystring parser that supports nesting and arrays, with a depth limit
querystring
qs
query
url
parse
+1
is-number
6.0.0
Outdated
Returns true if a number or string value is a finite number. Useful for regex matches, parsing, user input, etc.
cast
check
coerce
coercion
finite
+21
@babel/runtime
7.20.5 - 7.23.7
Outdated
babel's modular runtime helpers
+1
cookie
0.1.4 - 0.4.2
Outdated
HTTP server cookie parsing and serialization
cookie
cookies
dougwilson
path-to-regexp
1.7.0 - 1.8.0
Outdated
Express style path to RegExp utility
express
regexp
route
routing
+2
rxjs
5.5.12
Outdated
Reactive Extensions for modern JavaScript
Rx
RxJS
ReactiveX
ReactiveExtensions
Streams
+5
scheduler
0.21.0 - 0.23.0
Cooperative scheduler for the browser environment.
react
+1
prop-types
15.8.0 - 15.8.1
Runtime type checking for React props and similar objects.
react
react
17.0.0 - 18.2.0
React is a JavaScript library for building user interfaces.
react
+1
react-dom
18.0.0 - 18.2.0
React package for working with the DOM.
react
+2
url
0.11.0
Outdated
The core `url` packaged standalone for use with Browserify.
parsing
url
analyze
@emotion/memoize
0.7.5 - 0.8.1
emotion's memoize utility
+1
hoist-non-react-statics
3.3.1 - 3.3.2
Copies non-react specific statics from a child component to a parent component
react
mridgway
querystring
0.2.0
Outdated
Node's querystring module for all engines.
commonjs
query
querystring
classnames
2.2.2 - 2.2.6
Outdated
A simple utility for conditionally joining classNames together
react
css
classes
classname
classnames
+2
react-transition-group
4.2.1 - 4.4.5
A react component toolset for managing animations
react
transition
addons
transition-group
animation
+2
stylis
4.0.0 - 4.0.5
Outdated
A Light–weight CSS Preprocessor
symbol-observable
4.0.0
Symbol.observable ponyfill
symbol
observable
observables
ponyfill
polyfill
+1
ramda
0.24.0 - 0.24.1
Outdated
A practical functional library for JavaScript programmers.
ramda
functional
utils
utilities
toolkit
+6
+5
graphql
15.8.0
Outdated
A Query Language and Runtime which can target any service.
graphql
graphql-js
+5
@emotion/utils
1.0.0 - 1.2.1
internal utils for emotion
+1
@emotion/serialize
1.0.2 - 1.1.3
serialization utils for emotion
+1
react-fast-compare
3.1.0 - 3.2.2
Fastest deep equal comparison for React. Great for React.memo & shouldComponentUpdate. Also really fast general-purpose deep comparison.
fast
equal
react
compare
shouldComponentUpdate
+1
+12
@storybook/theming
6.5.0 - 6.5.16
Outdated
Core Storybook Components
storybook
+6
@emotion/react
11.0.0 - 11.11.3
Outdated
> Simple styling in React.
+1
shallowequal
1.0.1 - 1.1.0
Like lodash isEqualWith but for shallow equal.
shallowequal
shallow
equal
isequal
compare
+1
dashed
history
5.0.0 - 5.1.0
Outdated
Manage session history with JavaScript
history
location
mjackson
@emotion/styled
11.0.0 - 11.11.0
styled API for emotion
+1
aria-hidden
1.2.0 - 1.2.3
Cast aria-hidden to everything, except...
DOM
aria
hidden
inert
kashey
libphonenumber-js
1.10.0 - 1.10.16
Outdated
A simpler (and smaller) rewrite of Google Android's libphonenumber library in javascript
telephone
phone
number
input
mobile
+1
catamphetamine
compute-scroll-into-view
1.0.6 - 1.0.17
Outdated
The engine that powers scroll-into-view-if-needed
if-needed
scroll
scroll-into-view
scroll-into-view-if-needed
scrollIntoView
+3
stipsan
ts-invariant
0.10.0 - 0.10.3
TypeScript implementation of invariant(condition, message)
invariant
assertion
precondition
TypeScript
benjamn
zen-observable
0.8.15
Outdated
An Implementation of ES Observables
zenparsing
@wry/equality
0.5.3
Outdated
Structural equality checking for JavaScript values
benjamn
@wry/trie
0.2.1 - 0.3.2
Outdated
https://en.wikipedia.org/wiki/Trie
trie
prefix
weak
dictionary
lexicon
benjamn
intl-messageformat
1.1.0 - 2.0.0
Outdated
Formats ICU Message strings with number, date, plural, and select placeholders to create localized messages.
i18n
intl
internationalization
localization
globalization
+4
+9
@wry/context
0.4.0 - 0.6.1
Outdated
Manage contextual information needed by (a)synchronous tasks without explicitly passing objects around
benjamn
optimism
0.16.0 - 0.16.2
Outdated
Composable reactive caching with efficient invalidation.
caching
cache
invalidation
reactive
reactivity
+4
benjamn
@apollo/client
3.1.0 - 3.4.17
Outdated
A fully-featured caching GraphQL client.
apollo
graphql
react
hooks
client
+1
+1
react-scripts
0.4.2
Outdated
Configuration and scripts for Create React App.
+1
@hookform/resolvers
1.0.0
Outdated
React Hook Form validation resolvers: Yup, Joi, Superstruct, Zod, Vest, Class Validator, io-ts, Nope, computed-types, TypeBox, arktype and Typanion
scheme
validation
scheme-validation
hookform
react-hook-form
+14
@datadog/browser-core
2.17.0 - 5.9.0
Outdated
Datadog browser core utilities.
datadog
create-react-class
15.7.0
Legacy API for creating React components.
react
react-use
16.0.0 - 17.5.0
Collection of React Hooks
streamich
react-helmet-async
1.0.7 - 1.0.9
Outdated
Thread-safe Helmet for React 16+ and friends
wonderboymusic
rc-motion
2.2.0 - 2.4.5
Outdated
React lifecycle controlled motion library
react
react-component
react-motion
motion
antd
+1
+1
use-debounce
8.0.0 - 9.0.4
Outdated
Debounce hook for react
debounce
react-hook
react
xnimorz
rc-select
6.0.0 - 7.7.5
Outdated
React Select
react
react-component
react-select
select
+6
emotion
9.0.0 - 10.0.27
Outdated
The Next Generation of CSS-in-JS.
styles
emotion
react
css
css-in-js
+2
apollo-link-error
1.1.11 - 1.1.13
Error Apollo Link for GraphQL Network Stack
apollo-bot
focus-trap-react
10.0.2 - 10.2.3
A React component that traps focus.
react
reactjs
react-component
aria
accessibility
+4
+1
@chakra-ui/theme-tools
1.0.0 - 1.2.3
Outdated
Set of helpers that makes theming and styling easier
theme
theming
color
utilities
react-with-direction
1.0.0 - 1.4.0
Components to provide and consume RTL or LTR direction in React
+4
react-native-web
0.13.0 - 0.19.10
React Native for Web
react
react-component
react-native
web
necolas
react-apollo
2.1.0 - 2.5.2
Outdated
React Apollo Hooks, Components, and HOC.
apollo
graphql
react
hooks
hoc
+1
+5
crypto-hash
2.0.0 - 3.0.0
Tiny hashing module that uses the native crypto API in Node.js and the browser
crypto
hash
isomorphic
hashing
hasher
+6
sindresorhus
lottie-api
1.0.0 - 1.0.2
Outdated
A library to edit lottie-web animations dynamically
airnan
react-amphtml
4.0.0 - 4.0.2
Use amphtml components inside your React apps easily!
react
amphtml
dfrankland
@quintype/components
1.6.0 - 1.34.1
Outdated
Components to help build Quintype Node.js apps
quintype
+27
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
libphonenumber-js
react-relay
jss
@babel/runtime
redux-form
+50 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites