nytimes.com 110 packages
Last scanned on Oct 27 at 05:54 PM
dompurify 1.0.0VulnerableOutdated
DOMPurify is a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. It's written in JavaScript and works in all modern browsers (Safari, Opera (15+), Internet Explorer (10+), Firefox and Chrome - as well as almost anything else usin
License
(MPL-2.0 OR Apache-2.0)
Vulnerabilities
Version distribution in production
27
1.0.0
23
2.3.6
23
2.3.8
16
2.3.7
7
2.3.3
5
2.2.9
Also used on 160 websites
moment-timezone 0.5.33VulnerableOutdated
Parse and display moments in any timezone.
es5-ext 0.10.24 - 0.10.49VulnerableOutdated
ECMAScript extensions and shims
medikoo
debug 1.0.2 - 2.0.0Outdated
Lightweight debugging utility for Node.js and the browser
tslib 1.9.3Outdated
Runtime library for TypeScript helper functions
color-convert 1.9.2 - 1.9.3Outdated
Plain color conversion functions
color-name 1.1.3 - 1.1.4Outdated
A list of color names and its values
react-is 16.3.0 - 16.13.1Outdated
Brand checking of React Elements.
+1
inherits 2.0.3 - 2.0.4
Browser-friendly inheritance fully compatible with standard node.js inherits()
buffer 4.9.1Outdated
Node.js Buffer API, for the browser
regenerator-runtime 0.13.2 - 0.13.3Outdated
Runtime for Regenerator-compiled generator and async functions.
@babel/runtime 7.6.0 - 7.7.4Outdated
babel's modular runtime helpers
+1
ieee754 1.1.9 - 1.1.13Outdated
Read/write IEEE754 floating point numbers from/to a Buffer or array-like object
object-assign 4.1.1
ES2015 `Object.assign()` ponyfill
base64-js 1.3.0Outdated
Base64 encoding/decoding in pure JS
fast-json-stable-stringify 2.0.0 - 2.1.0
deterministic `JSON.stringify()` - a faster version of substack's json-stable-strigify without jsonify
deepmerge 4.2.2Outdated
A library for deep (recursive) merging of Javascript objects
lodash.merge 4.6.2
The Lodash method `_.merge` exported as a module.
util 0.10.0 - 0.12.5
Node.js's util module for all engines
+3
scheduler 0.13.6Outdated
Cooperative scheduler for the browser environment.
+1
prop-types 15.7.0 - 15.7.2Outdated
Runtime type checking for React props and similar objects.
prompts 0.1.9 - 2.0.4Outdated
Lightweight, beautiful and user-friendly prompts
react 16.8.6Outdated
React is a JavaScript library for building user interfaces.
+1
process 0.11.10
process information for node.js and browsers
react-dom 16.8.6Outdated
React package for working with the DOM.
+2
lodash.debounce 4.0.8
The lodash method `_.debounce` exported as a module.
lodash.isplainobject 4.0.6
The lodash method `_.isPlainObject` exported as a module.
minimalistic-assert 1.0.0 - 1.0.1
minimalistic-assert ===
@emotion/memoize 0.6.6 - 0.7.4Outdated
emotion's memoize utility
+1
hoist-non-react-statics 2.5.1 - 2.5.5Outdated
Copies non-react specific statics from a child component to a parent component
mridgway
@emotion/unitless 0.7.2 - 0.7.5Outdated
An object of css properties that don't accept values with units
+1
query-string 6.5.0 - 7.1.1Outdated
Parse and stringify URL query strings
sindresorhus
@emotion/is-prop-valid 0.8.8Outdated
A function to check whether a prop is valid for HTML and SVG elements
+1
@emotion/hash 0.8.0Outdated
A MurmurHash2 implementation
+1
graphql 15.4.0 - 15.8.0Outdated
A Query Language and Runtime which can target any service.
@sentry/types 6.17.0 - 6.17.4Outdated
Types for all Sentry JavaScript SDKs
+8
lodash.clonedeep 4.5.0
The lodash method `_.cloneDeep` exported as a module.
@sentry/utils 6.17.0 - 6.17.4Outdated
Utilities for all Sentry JavaScript SDKs
+8
hash.js 1.1.2 - 1.1.7
Various hash functions that could be run by both browser and node
@sentry/core 6.17.4Outdated
Base implementation for all Sentry JavaScript SDKs
+8
@emotion/weak-memoize 0.2.1 - 0.2.5Outdated
A memoization function that uses a WeakMap
+1
react-fast-compare 3.1.0 - 3.2.0Outdated
Fastest deep equal comparison for React. Great for React.memo & shouldComponentUpdate. Also really fast general-purpose deep comparison.
js-cookie 3.0.1Outdated
A simple, lightweight JavaScript API for handling cookies
querystring-es3 0.2.1
Node's querystring module for all engines. (ES3 compat fork)
spaintrain
filter-obj 1.1.0Outdated
Filter object keys and values into a new object
shallowequal 1.0.1 - 1.1.0
Like lodash isEqualWith but for shallow equal.
react-lifecycles-compat 3.0.4
Backwards compatibility polyfill for React class components
split-on-first 1.0.0 - 1.1.0Outdated
Split a string on the first occurance of a given separator
sindresorhus
@sentry/browser 6.17.4 - 6.17.6Outdated
Official Sentry SDK for browsers
+8
@emotion/stylis 0.8.4 - 0.8.5
A custom build of Stylis
+1
@aws-sdk/signature-v4 3.55.0 - 3.186.0Outdated
A standalone implementation of the AWS Signature V4 request signing algorithm
+2
ts-invariant 0.3.0 - 0.10.3
TypeScript implementation of invariant(condition, message)
zen-observable 0.8.15Outdated
An Implementation of ES Observables
zenparsing
resolve-pathname 2.0.0 - 3.0.0
Resolve URL pathnames using JavaScript
mjackson
value-equal 0.5.0 - 1.0.1
Are these two JavaScript values equal?
mjackson
@aws-sdk/middleware-retry 3.0.0 - 3.16.0Outdated
[](https://www.npmjs.com/package/@aws-sdk/middleware-retry) [](https://www.npmjs.com/package/@aws
+2
@wry/equality 0.1.8 - 0.1.11Outdated
Structural equality checking for JavaScript values
benjamn
intl-messageformat 7.8.0 - 7.8.4Outdated
Formats ICU Message strings with number, date, plural, and select placeholders to create localized messages.
@wry/context 0.4.0 - 0.6.1Outdated
Manage contextual information needed by (a)synchronous tasks without explicitly passing objects around
benjamn
optimism 0.9.0 - 0.11.4Outdated
Composable reactive caching with efficient invalidation.
@sentry/hub 6.17.0 - 6.17.9Outdated
Sentry hub which handles global state managment.
+8
@apollo/client 3.0.0 - 3.7.1Outdated
A fully-featured caching GraphQL client.
@sentry/react 6.10.0Outdated
Official Sentry SDK for React.js
+8
@sentry/minimal 6.17.0 - 6.18.2Outdated
Sentry minimal library that can be used in other packages
+8
custom-event 1.0.1
Cross-browser `CustomEvent` constructor
tootallnate
exenv 1.1.0 - 1.2.2
React's ExecutionEnvironment module extracted for use in other packages & components
jedwatson
fp-ts 2.0.0 - 2.10.5Outdated
Functional programming in TypeScript
faker 2.0.1 - 2.1.5Outdated
Generate massive amounts of fake contextual data
marak
react-use 1.2.0 - 5.10.0Outdated
Collection of React Hooks
streamich
intersection-observer 0.12.0Outdated
A polyfill for IntersectionObserver
philipwalton
react-modal 3.12.1 - 3.16.1
Accessible modal dialog component for React.JS
diasbruno
intl-messageformat-parser 3.3.0 - 5.4.2Outdated
Parses ICU Message strings into an AST via JavaScript.
apollo-utilities 1.0.0 - 1.3.4
Utilities for working with GraphQL ASTs
+1
react-day-picker 1.3.0 - 7.4.10Outdated
Customizable Date Picker for React
apollo-link 0.7.0 - 1.2.6Outdated
Flexible, lightweight transport layer for GraphQL
rc-field-form 1.19.0 - 1.27.3Outdated
React Form Component
@auth0/auth0-spa-js 2.0.0Outdated
Auth0 SDK for Single Page Applications using Authorization Code Grant Flow with PKCE
apollo-link-error 1.1.8 - 1.1.10Outdated
Error Apollo Link for GraphQL Network Stack
apollo-bot
apollo-cache 1.2.0 - 1.3.5
Core abstract of Caching layer for Apollo Client
+3
apollo-cache-inmemory 1.0.0 - 1.6.6
Core abstract of Caching layer for Apollo Client
+1
react-dates 20.2.4 - 21.8.0
A responsive and accessible date range picker component built with React
+4
@atlaskit/icon 21.3.0 - 21.11.0Outdated
An icon is a visual representation of a command, device, directory, or common action.
@apollo/react-components 3.0.0 - 3.1.5Outdated
React Apollo Query, Mutation and Subscription components.
apollo-link-retry 2.0.0 - 2.2.8Outdated
Retry Apollo Link for GraphQL Network Stack
@tannin/plural-forms 1.0.0 - 1.1.0
Compiles a function to compute the plural forms index for a given value
aduth
react-tracking 9.1.0 - 9.2.0Outdated
Declarative tracking for React apps.
tizmagik
local-storage 2.0.0
A simplified localStorage API that just works
web-speech-cognitive-services 4.0.0Outdated
Polyfill Web Speech API with Cognitive Services Speech-to-Text service
@quintype/components 1.6.0 - 1.34.1Outdated
Components to help build Quintype Node.js apps
+27
slug x.x.x
@nyt/burst x.x.x
@nyt/components x.x.x
@nyt/foundation x.x.x
@nyt/piano x.x.x
@nyt/interactive x.x.x
pretty-lights x.x.x
Popular search queries
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites