List of NPM packages that are used on thumbtack.com - GradeJS

About Community

thumbtack.com 58 packages

Last scanned on Oct 27 at 06:23 PM

crypto-js 3.1.2 - 4.1.1VulnerableOutdated

JavaScript library of crypto standards.

Script

https://cdn.thumbtackstatic.com/fe-assets-rr/_next/static/chunks/pages/_app-29b79e1b0b6d32ea.js

License

MIT

Footprint

1 KB

Vulnerabilities

CriticalGHSA-xwcq-pm8m-c4vf

crypto-js PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard

Affected versions >=0 <4.2.0

Matched Modules

Version distribution in production

457

4.1.0

457

4.1.1

185

3.3.0

162

3.1.8

143

3.2.1

143

4.0.0

Also used on 738 websites

Repository Homepage

security crypto Hash MD5 SHA1+15

evanvosberg

lodash 4.17.16VulnerableOutdated

Lodash modular utilities.

modules stdlib util

es5-ext 0.10.1 - 0.10.62VulnerableOutdated

ECMAScript extensions and shims

ecmascript ecmascript5 ecmascript6 es5 es6+11

medikoo

next 12.2.4 - 12.2.6VulnerableOutdated

The React Framework

sweetalert2 10.15.4 - 11.4.18VulnerableOutdated

A beautiful, responsive, customizable and accessible (WAI-ARIA) replacement for JavaScript's popup boxes, supported fork of sweetalert

sweetalert sweetalert2 alert modal popup+4

tslib 1.6.0 - 2.4.0Outdated

Runtime library for TypeScript helper functions

TypeScript Microsoft compiler language javascript+2

+5

react-is 16.3.0 - 17.0.2Outdated

Brand checking of React Elements.

+1

qs 6.5.1Outdated

A querystring parser that supports nesting and arrays, with a depth limit

querystring qs query url parse+1

@babel/runtime 7.13.16 - 7.13.17Outdated

babel's modular runtime helpers

+1

fast-json-stable-stringify 2.0.0 - 2.1.0

deterministic `JSON.stringify()` - a faster version of substack's json-stable-strigify without jsonify

json stringify deterministic hash stable

esp

flatted 0.1.0 - 3.0.1Outdated

A super light and fast circular JSON parser.

circular JSON fast parser minimal

webreflection

scheduler 0.15.0 - 0.23.0

Cooperative scheduler for the browser environment.

+1

prop-types 15.7.0 - 15.8.1

Runtime type checking for React props and similar objects.

react 16.13.0 - 18.2.0

React is a JavaScript library for building user interfaces.

+1

date-fns 1.26.0 - 1.27.2Outdated

Modern JavaScript date utility library

kossnocorp

hoist-non-react-statics 3.3.0 - 3.3.2

Copies non-react specific statics from a child component to a parent component

mridgway

classnames 2.2.6Outdated

A simple utility for conditionally joining classNames together

react css classes classname classnames+2

react-transition-group 2.4.0 - 2.5.2Outdated

A react component toolset for managing animations

react transition addons transition-group animation+2

graphql 14.4.2 - 15.0.0Outdated

A Query Language and Runtime which can target any service.

graphql graphql-js

+5

dom-helpers 5.0.1 - 5.2.1

tiny modular DOM lib for ie9+

dom-helpers react-component dom api cross-browser+8

lodash-es 4.17.21

Lodash exported as ES modules.

es6 modules stdlib util

react-fast-compare 3.1.0 - 3.2.0Outdated

Fastest deep equal comparison for React. Great for React.memo & shouldComponentUpdate. Also really fast general-purpose deep comparison.

fast equal react compare shouldComponentUpdate+1

+12

babel-runtime 5.0.13 - 6.0.14Outdated

babel selfContained runtime

react-lifecycles-compat 3.0.4

Backwards compatibility polyfill for React class components

quick-format-unescaped 4.0.4

Solves a problem with util.format

davidmarkclements

react-popper 2.2.0 - 2.3.0

Official library to use Popper on React projects

react react-popper popperjs component drop+2

react-select 4.1.0 - 5.5.4Outdated

A Select control built with and for ReactJS

combobox form input multiselect react+3

+2

ts-invariant 0.5.1 - 0.8.2Outdated

TypeScript implementation of invariant(condition, message)

invariant assertion precondition TypeScript

benjamn

zen-observable 0.8.15Outdated

An Implementation of ES Observables

zenparsing

@wry/equality 0.3.4 - 0.4.0Outdated

Structural equality checking for JavaScript values

benjamn

tabbable 3.1.1 - 3.1.2Outdated

Returns an array of all tabbable DOM nodes within a containing node.

@wry/context 0.4.0 - 0.6.1Outdated

Manage contextual information needed by (a)synchronous tasks without explicitly passing objects around

benjamn

web-vitals 2.1.4Outdated

Easily measure performance metrics in JavaScript

crux performance metrics Core Web Vitals CLS+5

@apollo/client 3.3.0 - 3.3.21Outdated

A fully-featured caching GraphQL client.

apollo graphql react hooks client+1

+1

@angular/router 10.0.0 - 14.1.3Outdated

Angular - the routing library

react-draggable 4.4.1 - 4.4.5Outdated

React draggable component

react draggable react-component

xstate 4.7.0 - 4.33.6Outdated

Finite State Machines and Statecharts for the Modern Web.

statechart state machine finite state machine finite automata scxml+2

focus-trap 4.0.0 - 4.0.2Outdated

Trap focus within a DOM node.

focus accessibility trap capture keyboard+1

antd 3.11.3Outdated

An enterprise-class UI design language and React components implementation

ant component components design framework+4

+4

@material-ui/core 1.5.1 - 4.12.4

React components that implement Google's Material Design.

react react-component material design material-ui

react-phone-number-input 0.3.0 - 0.5.5Outdated

Telephone number input React component

react phone number input telephone+1

catamphetamine

react-dates 1.0.0 - 21.8.0

A responsive and accessible date range picker component built with React

+4

react-waypoint 9.0.3 - 10.0.0Outdated

A React component to execute a function whenever you scroll to an element.

react component react-component scroll onscroll+1

+2

react-swipeable 4.2.2 - 4.3.2Outdated

React Swipe event handler hook

react swipe react touch react hook touch swipe+3

+13

detect-passive-events 1.0.0 - 1.0.5Outdated

Detect if the browser supports passive events

detect passive passive events

rafgraph

@analytics/storage-utils 0.2.5 - 0.2.14Outdated

Storage utility with fallbacks

analytics analytics-project analytics-util storage cookies+3

davidwells

reakit-utils 0.14.3 - 0.15.2

Reakit utils

reakit react utils

diegohaz

@apollo/react-components 3.0.0 - 3.1.5Outdated

React Apollo Query, Mutation and Subscription components.

apollo graphql react components

+1

no-scroll 2.1.0 - 2.1.1

Disable the document's scrolling

scroll scrolling disable modal dialog

davidtheclark

url-search-params 0.7.0 - 1.0.2Outdated

Simple polyfill for URLSearchParams standard

DOM URLSearchParams polyfill shim

webreflection

tesseract.js 2.0.0 - 3.0.3Outdated

Pure Javascript Multilingual OCR

+1

@tannin/plural-forms 1.0.0 - 1.1.0

Compiles a function to compute the plural forms index for a given value

aduth

react-scroll-to-bottom 4.1.1 - 4.2.0

React container that will auto scroll to bottom

react follow jump jump to bottom jump to top+7

@most/scheduler 0.7.0 - 1.3.0

Reactive programming with lean, functions-only, curried, tree-shakeable API

reactive reactive programming events event stream promise+5

+2

lottie-api 1.0.0 - 1.0.2Outdated

A library to edit lottie-web animations dynamically

airnan

botframework-webchat 0.11.2 - 0.15.0Outdated

A highly-customizable web-based chat client for Azure Bot Services.

+5

react-amphtml 3.1.0 - 4.0.2

Use amphtml components inside your React apps easily!

dfrankland

@quintype/components 1.6.0 - 1.34.1Outdated

Components to help build Quintype Node.js apps

+27

Popular search queries

urlreact-scriptsreactlottie-apireact-helmet-async+7 packages

color-convert@headlessui/reacthoist-non-react-staticsreactstraplit-html+60 packages

lodashrelay-runtimereact-relayreact-uselodash-es+51 packages

Popular packages

React is a JavaScript library for building user interfaces.

+6 634 websites

Standard library

+10 238 websites

ECMAScript extensions and shims

+10 229 websites

babel's modular runtime helpers

+8 352 websites

Lodash modular utilities.

+4 826 websites

Promise based HTTP client for the browser and node.js

+4 742 websites