About
Community
prom.ua
55 packages
Last scanned on Sep 29 at 09:15 AM
Update
Name
Size
Popularity
Severity
lodash-es
3.0.0 - 4.16.0
Vulnerable
Outdated
Lodash exported as ES modules.
Script
https://prom.ua/cloud-cgi/static/catalog-ui/js/build/portal-portable/portable_f30b0d38ca646645ecec.js
License
MIT
Footprint
251 B
Vulnerabilities
Critical
GHSA-jf85-cpcp-j695
Prototype Pollution in lodash
Affected versions >=0 <4.17.14
Moderate
GHSA-x5rq-j2xg-h7qm
Regular Expression Denial of Service (ReDoS) in lodash
Affected versions >=0 <4.17.11
High
GHSA-35jh-r3h4-6jhm
Command Injection in lodash
Affected versions >=0 <4.17.21
Moderate
GHSA-29mw-wpgm-hmr9
Regular Expression Denial of Service (ReDoS) in lodash
Affected versions >=0 <4.17.21
Matched Modules
Version distribution in production
3 519
4.17.21
1 221
4.17.20
526
4.10.0
420
4.17.11
419
4.17.15
418
4.17.13
Also used on 4452 websites
skype.com
20 packages
snapchat.com
69 packages
sentry.io
157 packages
pinterest.com
55 packages
Repository
Homepage
More
es6
modules
stdlib
util
es5-ext
0.10.24 - 0.10.49
Vulnerable
Outdated
ECMAScript extensions and shims
ecmascript
ecmascript5
ecmascript6
es5
es6
+11
medikoo
debug
3.2.2 - 3.2.7
Outdated
Lightweight debugging utility for Node.js and the browser
debug
log
debugger
+1
emoji-regex
9.0.0
Outdated
A regular expression to match all Emoji-only symbols as per the Unicode Standard.
unicode
regex
regexp
regular expressions
code points
+3
isarray
0.0.0 - 2.0.5
Array#isArray for older browsers
browser
isarray
array
juliangruber
react-is
16.3.0 - 16.13.1
Outdated
Brand checking of React Elements.
react
+1
qs
6.3.3 - 6.11.2
Outdated
A querystring parser that supports nesting and arrays, with a depth limit
querystring
qs
query
url
parse
+1
buffer
4.6.0 - 4.9.2
Outdated
Node.js Buffer API, for the browser
arraybuffer
browser
browserify
buffer
compatible
+2
feross
@babel/runtime
7.6.0 - 7.23.1
Outdated
babel's modular runtime helpers
+1
function-bind
1.1.0 - 1.1.1
Outdated
Implementation of Function.prototype.bind
function
bind
shim
es5
path-to-regexp
1.7.0 - 1.8.0
Outdated
Express style path to RegExp utility
express
regexp
route
routing
+2
object-inspect
1.12.2 - 1.12.3
Outdated
string representations of objects in node and the browser
inspect
util.inspect
object
stringify
pretty
call-bind
1.0.1 - 1.0.2
Outdated
Robustly `.call.bind()` a function
javascript
ecmascript
es
js
callbind
+8
ljharb
has-symbols
1.0.2 - 1.0.3
Determine if the JS environment has Symbol support. Supports spec, or shams.
Symbol
symbols
typeof
sham
polyfill
+3
ljharb
base64-js
1.3.0 - 1.5.1
Base64 encoding/decoding in pure JS
base64
core-js
3.22.5
Outdated
Standard library
ES3
ES5
ES6
ES7
ES2015
+39
zloirock
deepmerge
2.1.0 - 4.0.0
Outdated
A library for deep (recursive) merging of Javascript objects
merge
deep
extend
copy
clone
+1
tehshrike
has
1.0.1 - 1.0.3
Outdated
Object.prototype.hasOwnProperty.call shortcut
tarruda
scheduler
0.15.0 - 0.23.0
Cooperative scheduler for the browser environment.
react
+1
prop-types
15.8.0 - 15.8.1
Runtime type checking for React props and similar objects.
react
react
16.13.0 - 18.2.0
React is a JavaScript library for building user interfaces.
react
+1
url
0.10.0 - 0.11.3
The core `url` packaged standalone for use with Browserify.
parsing
url
analyze
hoist-non-react-statics
3.3.1 - 3.3.2
Copies non-react specific statics from a child component to a parent component
react
mridgway
react-transition-group
4.1.0 - 4.4.5
A react component toolset for managing animations
react
transition
addons
transition-group
animation
+2
dom-helpers
5.0.1 - 5.2.1
tiny modular DOM lib for ie9+
dom-helpers
react-component
dom
api
cross-browser
+8
graphql
14.4.0 - 16.8.1
A Query Language and Runtime which can target any service.
graphql
graphql-js
+5
tiny-invariant
0.0.2 - 1.3.1
Outdated
A tiny invariant function
invariant
error
assert
asserts
alexreardon
react-router
1.0.0 - 5.3.4
Outdated
Declarative routing for React
react
router
route
routing
history
+1
js-cookie
3.0.1 - 3.0.5
A simple, lightweight JavaScript API for handling cookies
cookie
cookies
browser
amd
commonjs
+3
history
4.0.0 - 4.10.1
Outdated
Manage session history with JavaScript
history
location
mjackson
zen-observable-ts
1.2.4 - 1.2.5
Outdated
Thin wrapper around zen-observable and @types/zen-observable, to support ESM exports as well as CommonJS exports
@wry/equality
0.5.1 - 0.5.3
Outdated
Structural equality checking for JavaScript values
benjamn
@firebase/util
1.7.0 - 1.9.3
Outdated
_NOTE: This is specifically tailored for Firebase JS SDK usage, if you are not a member of the Firebase team, please avoid using this package_
+1
optimism
0.16.1 - 0.16.2
Outdated
Composable reactive caching with efficient invalidation.
caching
cache
invalidation
reactive
reactivity
+4
benjamn
react-i18next
10.0.3 - 12.3.0
Outdated
Internationalization for react done right. Using the i18next i18n ecosystem.
i18next
internationalization
i18n
translation
localization
+4
@angular/core
2.0.0 - 2.4.10
Outdated
Angular - the core framework
web-vitals
3.0.0 - 3.0.4
Outdated
Easily measure performance metrics in JavaScript
crux
performance
metrics
Core Web Vitals
CLS
+5
@apollo/client
3.7.11 - 3.7.17
Outdated
A fully-featured caching GraphQL client.
apollo
graphql
react
hooks
client
+1
+1
zustand
3.0.0 - 3.3.3
Outdated
🐻 Bear necessities for state management in React
react
state
manager
management
redux
+1
jss
3.4.0 - 3.5.0
Outdated
A lib for generating Style Sheets with JavaScript.
jss
style
sheet
stylesheet
css
+4
kof
exenv
1.1.0 - 1.2.2
React's ExecutionEnvironment module extracted for use in other packages & components
react
browser
server
environment
env
+2
jedwatson
react-helmet-async
1.1.0 - 1.1.2
Outdated
Thread-safe Helmet for React 16+ and friends
wonderboymusic
xstate
4.7.0 - 4.38.2
Outdated
Finite State Machines and Statecharts for the Modern Web.
statechart
state machine
finite state machine
finite automata
scxml
+2
popmotion
8.2.0 - 8.7.6
Outdated
The animator's toolbox
animation
ux
ui
popmotion
canvas animation
+11
popmotion
react-player
1.12.0 - 1.15.3
Outdated
A React component for playing a variety of URLs, including file paths, YouTube, Facebook, Twitch, SoundCloud, Streamable, Vimeo, Wistia and DailyMotion
react
media
player
video
audio
+11
cookpete
@chakra-ui/theme-tools
1.0.0 - 1.2.3
Outdated
Set of helpers that makes theming and styling easier
theme
theming
color
utilities
@chakra-ui/theme
2.1.0 - 2.1.3
Outdated
The default theme for chakra components
theme
theming
ui mode
ui
@loadable/component
5.15.0 - 5.15.3
Outdated
React code splitting made easy.
react
ssr
webpack
code-splitting
react-router
+4
react-apollo
2.5.0 - 2.5.8
Outdated
React Apollo Hooks, Components, and HOC.
apollo
graphql
react
hooks
hoc
+1
+5
@apollo/react-components
3.0.0 - 3.1.5
Outdated
React Apollo Query, Mutation and Subscription components.
apollo
graphql
react
components
+1
react-scrolllock
4.0.0 - 5.0.1
Prevent scroll on the body when component is mounted.
react
scroll
scroll-lock
disable-scroll
react-tracking
9.2.1 - 9.3.2
Declarative tracking for React apps.
declarative
layer
metrics
nyt
react
+1
tizmagik
most
0.6.0 - 0.9.1
Outdated
Monadic streams
reactive
reactive programming
reactive streams
stream
streams
+11
+2
lottie-api
1.0.0 - 1.0.2
Outdated
A library to edit lottie-web animations dynamically
airnan
tg-core-api
0.0.3
Outdated
tg-core-api
+4
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
libphonenumber-js
react-relay
jss
@babel/runtime
redux-form
+50 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites