List of NPM packages that are used on sutori.com

About Community

sutori.com 46 packages

Last scanned on Jan 19 at 09:44 AM

handlebars 1.1.0 - 1.2.1VulnerableOutdated

Handlebars provides the power necessary to let you build semantic templates effectively with no frustration

Script

https://assets.sutori.com/frontend-assets/assets/chunk.836.075d7f5a95b614b44ad9.js

License

MIT

Footprint

319 B

Vulnerabilities

ModerateGHSA-fmr4-7g9q-7hc7

Moderate severity vulnerability that affects handlebars

Affected versions >=0 <4.0.0

ModerateGHSA-9prh-257w-9277

Cross-Site Scripting in handlebars

Affected versions >=0 <4.0.0

CriticalGHSA-f2jv-r9rf-7988

Remote code execution in handlebars when compiling templates

Affected versions >=0 <4.7.7

CriticalGHSA-765h-qjxv-5f44

Prototype Pollution in handlebars

Affected versions >=0 <4.7.7

ModerateGHSA-6r5x-hmgg-7h53

Remote code execution in Handlebars.js

Affected versions >=0 <4.1.0

Matched Modules

Version distribution in production

182

4.7.7

172

4.7.6

168

4.7.3

166

4.7.2

166

4.7.4

1.2.1

Also used on 307 websites

handlebars mustache template html

lodash-es 4.6.0 - 4.16.4VulnerableOutdated

Lodash exported as ES modules.

es6 modules stdlib util

urijs 1.19.0 - 1.19.8VulnerableOutdated

URI.js is a Javascript library for working with URLs.

uri url urn uri mutation url mutation+13

rodneyrehm

isarray 1.0.0 - 2.0.5

Array#isArray for older browsers

browser isarray array

juliangruber

punycode 2.1.1 - 2.2.0Outdated

A robust Punycode converter that fully complies to RFC 3492 and RFC 5891, and works on nearly all JavaScript platforms.

punycode unicode idn idna dns+2

get-intrinsic 1.1.0 - 1.1.1Outdated

Get and robustly cache all JS language-level intrinsics at first require time

javascript ecmascript es js intrinsic+2

ljharb

function-bind 1.1.0 - 1.1.1Outdated

Implementation of Function.prototype.bind

function bind shim es5

call-bind 1.0.2Outdated

Robustly `.call.bind()` a function

javascript ecmascript es js callbind+8

ljharb

object-inspect 1.12.0Outdated

string representations of objects in node and the browser

inspect util.inspect object stringify pretty

has-symbols 1.0.0 - 1.0.1Outdated

Determine if the JS environment has Symbol support. Supports spec, or shams.

Symbol symbols typeof sham polyfill+3

ljharb

es-abstract 1.18.7 - 1.19.1Outdated

ECMAScript spec abstract operations.

ECMAScript ES abstract operation abstract operation+4

ljharb

define-properties 1.1.3 - 1.1.4Outdated

Define multiple non-enumerable properties at once. Uses `Object.defineProperty` when available; falls back to standard assignment in older engines.

Object.defineProperty Object.defineProperties object property descriptor descriptor+2

ljharb

is-callable 1.1.4 - 1.2.4Outdated

Is this JS value callable? Works with Functions and GeneratorFunctions, despite ES6 @@toStringTag.

Function function callable generator generator function+5

ljharb

has-tostringtag 1.0.0Outdated

Determine if the JS environment has `Symbol.toStringTag` support. Supports spec, or shams.

javascript ecmascript symbol symbols tostringtag+1

ljharb

object-keys 1.1.0 - 1.1.1

An Object.keys replacement, in case Object.keys is not available. From https://github.com/es-shims/es5-shim

Object.keys keys ES5 shim

ljharb

is-regex 1.1.4

Is this value a JS regex? Works cross-realm/iframe, and despite ES6 @@toStringTag

regex regexp is regular expression regular+1

ljharb

is-date-object 1.0.1 - 1.0.3Outdated

Is this value a JS Date object? This module works cross-realm/iframe, and despite ES6 @@toStringTag.

Date ES6 toStringTag @@toStringTag Date object

ljharb

is-string 1.0.4 - 1.0.5Outdated

Is this value a JS String object or primitive? This module works cross-realm/iframe, and despite ES6 @@toStringTag.

String string ES6 toStringTag @@toStringTag+1

ljharb

es-to-primitive 1.2.0 - 1.2.1

ECMAScript “ToPrimitive” algorithm. Provides ES5 and ES2015 versions.

primitive abstract ecmascript es5 es6+11

ljharb

has 1.0.1 - 1.0.3Outdated

Object.prototype.hasOwnProperty.call shortcut

tarruda

is-arguments 1.1.1

Is this an arguments object? It's a harder question than you think.

arguments js javascript is-arguments is+1

ljharb

date-fns 2.24.0 - 2.28.0Outdated

Modern JavaScript date utility library

kossnocorp

is-set 2.0.1 - 2.0.2Outdated

Is this value a JS Set? This module works cross-realm/iframe, and despite ES6 @@toStringTag.

map set collection is robust

ljharb

is-map 2.0.1 - 2.0.2Outdated

Is this value a JS Map? This module works cross-realm/iframe, and despite ES6 @@toStringTag.

map set collection is robust

ljharb

lodash.uniq 4.4.0 - 4.5.0

The lodash method `_.uniq` exported as a module.

lodash-modularized uniq

lodash.isstring 4.0.1

The lodash method `_.isString` exported as a module.

lodash-modularized isstring

es-get-iterator 1.1.2 - 1.1.3

Get an iterator for any JS language value. Works robustly across all environments, all versions.

iterator Symbol.iterator iterable collection next+1

ljharb

lodash.sortby 4.7.0

The lodash method `_.sortBy` exported as a module.

lodash-modularized sortby

lodash.clonedeep 4.5.0

The lodash method `_.cloneDeep` exported as a module.

lodash-modularized clonedeep

lodash.truncate 4.4.2

The lodash method `_.truncate` exported as a module.

lodash-modularized truncate

os-browserify 0.1.0Outdated

The [os](https://nodejs.org/api/os.html) module from node.js, but for browsers.

cheerio 0.8.1 - 0.8.3Outdated

Tiny, fast, and elegant implementation of core jQuery designed specifically for the server

htmlparser jquery selector scraper parser+1

tinycolor2 1.4.0 - 1.5.1Outdated

Fast Color Parsing and Manipulation

color parser tinycolor

bgrins

iterate-iterator 1.0.0 - 1.0.2

Iterate any JS iterator. Works robustly in all environments, all versions.

iterate iterator iterable es2015 es6+3

ljharb

string-convert 0.2.0 - 0.2.1

String convertions

akiran

screenfull 5.0.0 - 5.2.0Outdated

Simple wrapper for cross-browser usage of the JavaScript Fullscreen API, which lets you bring the page or any element into fullscreen.

browser fullscreen

sindresorhus

lit-element 3.0.1 - 3.2.2Outdated

A simple base class for creating fast, lightweight web components

+11

intl-messageformat-parser 6.4.0 - 6.4.4

Parses ICU Message strings into an AST via JavaScript.

i18n intl internationalization localization globalization+4

fast-memoize 2.3.0 - 2.5.2

Fastest memoization lib that supports N arguments

caiogondim

@redux-saga/core 1.0.0 - 1.2.2Outdated

Saga middleware for Redux to handle Side Effects

javascript redux middleware saga effects+1

ev-emitter 1.1.1Outdated

lil' event emitter

event emitter pubsub

desandro

imagesloaded 4.1.4Outdated

JavaScript is all like _You images done yet or what?_

images loaded ui dom jquery-plugin

desandro

detect-it 4.0.0 - 4.0.1

Detect if a device is mouse only, touch only, or hybrid

detect device mouse touch hybrid+2

rafgraph

velocity-animate 1.5.1 - 1.5.2

Accelerated JavaScript animation.

velocity animation jquery animate ui+3

shave 2.5.10Outdated

Shave is a javascript plugin that truncates multi-line text within a html element based on set max height

ellipsis truncate truncation truncated semantic+7

yowainwright

botframework-webchat 0.4.1 - 0.11.1Outdated

A highly-customizable web-based chat client for Azure Bot Services.

Popular search queries

webpack.js.org

urlreact-scriptsreactlottie-apireact-helmet-async+7 packages

github.com

color-convert@headlessui/reacthoist-non-react-staticsreactstraplit-html+60 packages

pinterest.com

lodashrelay-runtimereact-relayreact-uselodash-es+51 packages

Popular packages

react

React is a JavaScript library for building user interfaces.

+6 634 websites

core-js

Standard library

+10 238 websites

es5-ext

ECMAScript extensions and shims

+10 229 websites

@babel/runtime

babel's modular runtime helpers

+8 352 websites

lodash

Lodash modular utilities.

+4 826 websites

axios

Promise based HTTP client for the browser and node.js

+4 742 websites