post.at 105 packages

Last scanned on Jan 19 at 10:11 AM
lodash.merge 3.3.0 - 3.3.2VulnerableOutdated
The Lodash method `_.merge` exported as a module.
License
MIT
Footprint
5 KB
Vulnerabilities
Prototype Pollution in lodash
Affected versions >=0 <4.6.2
Prototype Pollution in lodash.merge
Affected versions >=0 <4.6.1
Prototype Pollution in lodash.merge
Affected versions >=0 <4.6.2
Matched Modules
Version distribution in production
271
4.6.2
235
4.6.1
47
3.3.2
46
3.3.0
46
3.3.1
1
4.5.0
lodash 4.17.16VulnerableOutdated
Lodash modular utilities.
axios 0.19.1 - 0.19.2VulnerableOutdated
Promise based HTTP client for the browser and node.js
trim 0.0.1VulnerableOutdated
Trim string whitespace
es5-ext 0.10.53 - 0.10.62VulnerableOutdated
ECMAScript extensions and shims
react-is 16.3.0 - 16.13.1Outdated
Brand checking of React Elements.
inherits 2.0.3Outdated
Browser-friendly inheritance fully compatible with standard node.js inherits()
qs 6.5.2Outdated
A querystring parser that supports nesting and arrays, with a depth limit
@babel/runtime 7.0.0 - 7.20.7Outdated
babel's modular runtime helpers
+1
hzoo
existentialism
nicolo-ribaudo
entities 2.0.0Outdated
Encode & decode XML and HTML entities with ease & speed
fast-deep-equal 3.0.0 - 3.1.3
Fast deep equal
is-plain-obj 1.1.0Outdated
Check if a value is a plain object
sindresorhus
sindresorhus
domutils 2.0.0 - 2.2.0Outdated
Utilities for working with htmlparser2's dom
dom-serializer 0.2.0 - 0.2.2Outdated
render domhandler DOM nodes to a string
domhandler 3.0.0Outdated
Handler for htmlparser2 that turns pages into a dom
is-buffer 1.1.4 - 1.1.6Outdated
Determine if an object is a Buffer
events 3.0.0 - 3.3.0
Node's event emitter for all engines.
core-js 3.9.0 - 3.15.2Outdated
Standard library
deepmerge 2.1.0 - 2.2.1Outdated
A library for deep (recursive) merging of Javascript objects
domelementtype 2.0.0 - 2.1.0Outdated
all the types of nodes in htmlparser2's dom
htmlparser2 4.0.0Outdated
Fast & forgiving HTML/XML parser
extend 3.0.2
Port of jQuery.extend for node.js and the browser
scheduler 0.15.0 - 0.23.0
Cooperative scheduler for the browser environment.
prop-types 15.7.0 - 15.7.2Outdated
Runtime type checking for React props and similar objects.
react 16.13.0 - 17.0.2Outdated
React is a JavaScript library for building user interfaces.
lodash.debounce 4.0.8
The lodash method `_.debounce` exported as a module.
is-generator-function 1.0.0 - 1.0.4Outdated
Determine if a function is a native generator function.
dayjs 1.8.18 - 1.8.20Outdated
2KB immutable date time library alternative to Moment.js with the same modern API
repeat-string 1.6.0 - 1.6.1
Repeat the given string n times. Fastest implementation for repeating a string.
hoist-non-react-statics 3.3.1 - 3.3.2
Copies non-react specific statics from a child component to a parent component
mridgway
mridgway
unist-util-visit-parents 1.0.0 - 2.0.1Outdated
unist utility to recursively walk over nodes, with ancestral information
unist-util-is 2.1.0 - 2.1.3Outdated
unist utility to check if a node passes a test
path-browserify 0.0.0 - 0.0.1Outdated
the path module from node core for browsers
unist-util-visit 1.4.0 - 2.0.3Outdated
unist utility to visit nodes
dom-helpers 5.0.1 - 5.2.1
tiny modular DOM lib for ie9+
lodash.camelcase 4.2.0 - 4.3.0
The lodash method `_.camelCase` exported as a module.
ramda 0.26.0 - 0.27.2Outdated
A practical functional library for JavaScript programmers.
unist-util-stringify-position 1.1.1 - 1.1.2Outdated
unist utility to serialize a node, position, or point as a human readable location
vfile-message 1.0.0 - 2.0.4Outdated
vfile utility to create a virtual message
unified 6.2.0 - 7.0.0Outdated
parse, inspect, transform, and serialize content through syntax trees
vfile 2.1.0 - 4.2.0Outdated
Virtual file format for text processing
is-promise 2.1.0 - 4.0.0
Test whether an object looks like a promises-a+ promise
forbeslindesay
then-bot
react-fast-compare 2.0.4Outdated
Fastest deep equal comparison for React. Great for React.memo & shouldComponentUpdate. Also really fast general-purpose deep comparison.
next-tick 1.1.0
Environment agnostic nextTick polyfill
es6-symbol 3.1.2 - 3.1.3Outdated
ECMAScript 6 Symbol polyfill
d 1.0.1Outdated
Property descriptor factory
lodash-es 4.17.9 - 4.17.21
Lodash exported as ES modules.
timers-browserify 2.0.9Outdated
timers module for browserify
remark-parse 5.0.0Outdated
remark plugin to add support for parsing markdown input
trough 1.0.3 - 1.0.5Outdated
`trough` is middleware
bail 1.0.0 - 2.0.2
Throw a given error
parse-entities 1.1.1 - 1.1.2Outdated
Parse HTML character references
is-alphabetical 1.0.0 - 2.0.0Outdated
Check if a character is alphabetical
is-decimal 1.0.0 - 2.0.0Outdated
Check if a character is decimal
is-hexadecimal 1.0.0 - 2.0.0Outdated
Check if a character is hexadecimal
react-lifecycles-compat 3.0.4
Backwards compatibility polyfill for React class components
fb
sophiebits
style-to-object 0.2.3 - 0.4.1Outdated
Parse CSS inline style to JavaScript object.
event-emitter 0.3.0 - 0.3.5
Environment agnostic event emitter
toposort 2.0.2
Topological sort of directed ascyclic graphs (like dependecy lists)
replace-ext 0.0.1 - 1.0.0Outdated
Replaces a file extension with another one.
inline-style-parser 0.1.0 - 0.1.1Outdated
An inline style parser.
react-popper 1.3.1 - 1.3.4Outdated
Official library to use Popper on React projects
popper.js 1.12.6 - 1.16.1
A kickass library to manage your poppers
synchronous-promise 2.0.0 - 2.0.16Outdated
Synchronous Promise-like prototype to use in testing where you would have used an ES6 Promise
fluffynuts
fluffynuts
property-expr 2.0.4Outdated
tiny util for getting and setting deep object props safely
bootstrap 4.4.0 - 4.4.1Outdated
The most popular front-end framework for developing responsive, mobile first projects on the web.
vfile-location 2.0.0 - 3.0.1Outdated
vfile utility to convert between positional (line and column-based) and offset (range-based) locations
unist-util-remove-position 1.1.0 - 3.0.0Outdated
unist utility to remove positions from a tree
graphql-request 1.5.0 - 1.8.2Outdated
Minimal GraphQL client supporting Node and browsers for scripts or simple apps
collapse-white-space 1.0.0 - 2.0.0Outdated
Collapse white space
attr-accept 2.2.2
JavaScript implementation of the "accept" attribute for HTML5 <input type="file">
unherit 1.1.0 - 1.1.3Outdated
Create a subclass that can be modified without affecting the super class
trim-trailing-lines 1.1.0 - 1.1.3Outdated
Remove final line feeds from a string
is-whitespace-character 1.0.0 - 2.0.1
Check if a character is a whitespace character
state-toggle 1.0.0 - 2.0.1Outdated
Enter/exit a state
markdown-escapes 1.0.0 - 1.0.4Outdated
Legacy list of escapable characters in markdown
is-word-character 1.0.0 - 2.0.1
Check if a character is a word character
react-markdown 4.2.0 - 4.3.1Outdated
React component to render markdown
formik 2.0.1 - 2.2.6Outdated
Build forms in React, without the tears
gud 1.0.0
Create a 'gud nuff' (not cryptographically secure) globally unique id
exenv 1.1.0 - 1.2.2
React's ExecutionEnvironment module extracted for use in other packages & components
react-dnd 9.1.0 - 9.3.4Outdated
Drag and Drop for React
+2
jordangens
gaearon
darthtrevino
react-day-picker 7.4.1 - 7.4.8Outdated
Customizable Date Picker for React
gpbl
gpbl-bot
lit-element 3.0.1 - 3.2.2Outdated
A simple base class for creating fast, lightweight web components
+11
aomarks
emarquez
sorvell
react-modal 3.3.1 - 3.11.2Outdated
Accessible modal dialog component for React.JS
html-react-parser 0.10.0 - 0.10.3Outdated
HTML to React parser.
react-property 1.0.1 - 1.0.2Outdated
HTML and SVG DOM property configs used by React.
@reach/utils 0.12.0 - 0.17.0Outdated
Internal, shared utilities for Reach UI.
+1
ryanflorence
mjackson
chancestrickland
react-spring 3.0.0Outdated
<p align="center"> <img src="https://i.imgur.com/QZownhg.png" width="240" /> </p>
@auth0/auth0-spa-js 2.0.0 - 2.0.2Outdated
Auth0 SDK for Single Page Applications using Authorization Code Grant Flow with PKCE
react-input-mask 1.0.6 - 1.2.2Outdated
Masked input component for React
smoothscroll-polyfill 0.4.4
Smooth Scroll behavior polyfill
react-sortable-hoc 0.4.6 - 0.8.4Outdated
Set of higher-order components to turn any list into a sortable, touch-friendly, animated list
@chakra-ui/hooks 1.0.0 - 1.6.2Outdated
React hooks for Chakra components
html-to-react 1.4.2Outdated
A lightweight library that converts raw HTML to a React DOM structure.
webfontloader 1.6.18 - 1.6.28
Web Font Loader gives you added control when using linked fonts via @font-face.
mdast-add-list-metadata 1.0.1 - 1.1.0
Enhances the metadata of list and listItem nodes
ev-emitter 1.1.1Outdated
lil' event emitter
dom-scroll-into-view 1.0.0 - 1.0.1Outdated
scroll dom node into view automatically
react-truncate 2.3.0 - 2.4.0
React component for truncating multi-line spans and adding an ellipsis
react-image-lightbox 5.1.0 - 5.1.1Outdated
A lightbox component for React.js
picturefill 3.0.0 - 3.0.3
A responsive image polyfill.
react-autocomplete 1.5.10 - 1.8.1
Accessible, extensible, Autocomplete for React.js
+1
cmtegner
mzabriskie
ryanflorence
headroom.js 0.11.0Outdated
Give your page some headroom. Hide your header until you need it
react-amphtml 3.1.0 - 4.0.2
Use amphtml components inside your React apps easily!
dfrankland
dfrankland