notion.so 56 packages

Last scanned on Jul 11 at 11:05 PM
markdown-it 12.3.0VulnerableOutdated
Markdown-it - modern pluggable markdown parser.
License
MIT
Footprint
43 KB
Vulnerabilities
Uncontrolled Resource Consumption in markdown-it
Affected versions >=0 <12.3.2
Matched Modules
Version distribution in production
188
2.0.0
188
2.1.0
180
2.1.1
180
2.1.2
180
2.1.3
17
12.3.0
tslib 1.2.0 - 2.6.0Outdated
Runtime library for TypeScript helper functions
debug 2.3.1 - 3.1.0Outdated
Lightweight debugging utility for Node.js and the browser
ms 0.7.2 - 2.0.0Outdated
Tiny millisecond conversion utility
+4
gdborton
rauchg
matt.straka
uuid 7.0.0 - 9.0.0Outdated
RFC4122 (v1, v4, and v5) UUIDs
isarray 1.0.0 - 2.0.5
Array#isArray for older browsers
react-is 16.3.0 - 16.13.1Outdated
Brand checking of React Elements.
punycode 2.1.1 - 2.3.0
A robust Punycode converter that fully complies to RFC 3492 and RFC 5891, and works on nearly all JavaScript platforms.
qs 6.10.0 - 6.10.5Outdated
A querystring parser that supports nesting and arrays, with a depth limit
buffer 4.9.1 - 4.9.2Outdated
Node.js Buffer API, for the browser
path-to-regexp 6.1.0 - 6.2.0Outdated
Express style path to RegExp utility
get-intrinsic 1.2.0Outdated
Get and robustly cache all JS language-level intrinsics at first require time
fast-deep-equal 3.0.0 - 3.1.3
Fast deep equal
has-symbols 1.0.2 - 1.0.3
Determine if the JS environment has Symbol support. Supports spec, or shams.
object-inspect 1.12.2 - 1.12.3
string representations of objects in node and the browser
has 1.0.1 - 1.0.3
Object.prototype.hasOwnProperty.call shortcut
tarruda
ljharb
function-bind 1.1.0 - 1.1.1
Implementation of Function.prototype.bind
is-buffer 1.1.4 - 1.1.6Outdated
Determine if an object is a Buffer
call-bind 1.0.1 - 1.0.2
Robustly `.call.bind()` a function
base64-js 1.3.0 - 1.5.1
Base64 encoding/decoding in pure JS
side-channel 1.0.4
Store information about any JS value in a side channel. Uses WeakMap if available.
prop-types 15.7.0 - 15.7.2Outdated
Runtime type checking for React props and similar objects.
scheduler 0.21.0 - 0.23.0
Cooperative scheduler for the browser environment.
react 17.0.0 - 18.2.0
React is a JavaScript library for building user interfaces.
react-dom 18.0.0 - 18.2.0
React package for working with the DOM.
hoist-non-react-statics 3.3.1 - 3.3.2
Copies non-react specific statics from a child component to a parent component
mridgway
mridgway
classnames 2.2.6Outdated
A simple utility for conditionally joining classNames together
ua-parser-js 0.7.24Outdated
Detect Browser, Engine, OS, CPU, and Device type/model from User-Agent data. Supports browser & node.js environment
mdurl 1.0.0 - 1.0.1
URL utilities for markdown-it
vitaly
vitaly
proto-list 1.0.0 - 1.1.0Outdated
A utility for managing a prototype chain
isaacs
isaacs
@floating-ui/core 0.3.0 - 1.3.1Outdated
Positioning library for floating elements: tooltips, popovers, dropdowns, and more
linkify-it 3.0.3Outdated
Links recognition library with FULL unicode support
charenc 0.0.0 - 0.0.2
character encoding utilities
pvorb
pvorb
crypto-js 3.1.2 - 4.1.1
JavaScript library of crypto standards.
uc.micro 1.0.6
Micro subset of unicode data files for markdown-it projects.
vitaly
vitaly
@emotion/core 0.11.0 - 0.12.0Outdated
+1
emmatown
tkh44
emotion-release-bot
@formatjs/ecma402-abstract 1.0.2 - 1.17.0Outdated
A collection of implementation for ECMAScript abstract operations
@angular/core 8.1.1 - 15.2.9Outdated
Angular - the core framework
angular
google-wombot
react-i18next 10.0.3 - 12.3.0Outdated
Internationalization for react done right. Using the i18next i18n ecosystem.
framesync 3.1.6 - 3.1.9Outdated
A frame-synced render loop for JavaScript
popmotion
popmotion
react-use 9.12.0 - 17.4.0
Collection of React Hooks
streamich
streamich
@formatjs/intl-listformat 6.3.6 - 7.4.0Outdated
Formats JS list in a i18n-safe way
load-script 1.0.0 - 2.0.0
Dynamic script loading for browser
@formatjs/intl 2.2.3 - 2.9.0Outdated
Internationalize JS apps. This library provides an API to format dates, numbers, and strings, including pluralization and handling translations.
email-validator 2.0.4
Provides a fast, pretty robust e-mail validator. Only checks form, not function.
react-calendar 3.2.0 - 4.3.0Outdated
Ultimate calendar for your React app.
sister 3.0.1 - 3.0.2
Event manager.
gajus
gajus
@contentful/rich-text-react-renderer 15.4.0 - 15.10.1Outdated
React renderer for the Contentful rich text field type.
+169
jjolton_contentful
nealdavies
dkim-cf
react-youtube 7.12.0 - 7.14.0Outdated
React.js powered YouTube player component
@vimeo/player 2.16.1 - 2.19.0Outdated
Interact with and control an embedded Vimeo Player.
react-instantsearch-core 6.0.0 - 6.40.1Outdated
⚡ Lightning-fast search for React, by Algolia
instantsearch.js 4.36.0Outdated
InstantSearch.js is a JavaScript library for building performant and instant search experiences with Algolia.
subscribe-ui-event 0.1.0 - 1.0.4Outdated
A single, throttle built-in solution to subscribe to browser UI Events.
@react-hook/window-scroll 0.1.0 - 1.0.4Outdated
A React hook for updating components when the scroll position of the window on the y-axis changes
botframework-webchat-component 4.9.2 - 4.15.8Outdated
React component of botframework-webchat
+2
botframework
sgellock
cwhitten
js-component-framework 2.0.0 - 2.0.2Outdated
A framework for configuring a JavaScript component and attaching it to a DOM element or collection of DOM elements, simplifying organization of DOM interactions on your website.