uchicago.edu 71 packages

Last scanned on Oct 27 at 05:55 PM
url-parse 1.4.6 - 1.4.7VulnerableOutdated
Small footprint URL parser that works seamlessly across Node.js and browser environments
License
MIT
Footprint
3 KB
Vulnerabilities
Authorization Bypass Through User-Controlled Key in url-parse
Affected versions >=0 <1.5.8
Incorrect hostname / protocol due to unstripped leading control characters.
Affected versions >=0 <1.5.9
Authorization bypass in url-parse
Affected versions >=0 <1.5.6
Path traversal in url-parse
Affected versions >=0 <1.5.0
Open redirect in url-parse
Affected versions >=0 <1.5.2
Incorrect returned href via an '@' sign but no user info and hostname
Affected versions >=0 <1.5.7
Matched Modules
Version distribution in production
206
1.5.10
167
1.5.9
50
1.5.3
47
1.4.6
47
1.4.7
24
1.5.4
axios 0.19.2VulnerableOutdated
Promise based HTTP client for the browser and node.js
tslib 1.13.0 - 1.14.1Outdated
Runtime library for TypeScript helper functions
isarray 0.0.0 - 0.0.1Outdated
Array#isArray for older browsers
inherits 2.0.4
Browser-friendly inheritance fully compatible with standard node.js inherits()
react-is 16.13.1Outdated
Brand checking of React Elements.
@babel/runtime 7.9.0 - 7.9.2Outdated
babel's modular runtime helpers
+1
hzoo
existentialism
nicolo-ribaudo
regenerator-runtime 0.13.7Outdated
Runtime for Regenerator-compiled generator and async functions.
path-to-regexp 1.8.0Outdated
Express style path to RegExp utility
cookie 0.4.1Outdated
HTTP server cookie parsing and serialization
dougwilson
dougwilson
core-js 3.6.5Outdated
Standard library
object-assign 4.1.1
ES2015 `Object.assign()` ponyfill
fast-json-stable-stringify 2.0.0 - 2.1.0
deterministic `JSON.stringify()` - a faster version of substack's json-stable-strigify without jsonify
prop-types 15.7.0 - 15.7.2Outdated
Runtime type checking for React props and similar objects.
requires-port 1.0.0
Check if a protocol requires a certain port number to be added to an URL.
scheduler 0.15.0Outdated
Cooperative scheduler for the browser environment.
react 16.9.0Outdated
React is a JavaScript library for building user interfaces.
react-dom 16.9.0Outdated
React package for working with the DOM.
process 0.11.10
process information for node.js and browsers
minimalistic-assert 1.0.0 - 1.0.1
minimalistic-assert ===
cwmma
indutny
asap 2.0.5 - 2.0.6
High-priority task queue for Node.js and browsers
hoist-non-react-statics 3.3.2
Copies non-react specific statics from a child component to a parent component
mridgway
mridgway
querystringify 2.1.1Outdated
Querystringify - Small, simple but powerful query string parser.
promise 8.1.0Outdated
Bare bones Promises/A+ implementation
forbeslindesay
judgmentparking
then-promise-bot
symbol-observable 1.1.0 - 1.2.0Outdated
Symbol.observable ponyfill
whatwg-fetch 3.4.0 - 3.4.1Outdated
A window.fetch polyfill.
jakechampion
mattandrews
mislav
hash.js 1.1.7
Various hash functions that could be run by both browser and node
graphql 14.5.0 - 14.7.0Outdated
A Query Language and Runtime which can target any service.
es5-ext 0.10.24 - 0.10.49Outdated
ECMAScript extensions and shims
react-router 5.1.1 - 5.3.4Outdated
Declarative routing for React
history 4.10.1Outdated
Manage session history with JavaScript
react-router-dom 5.1.0 - 5.3.4Outdated
Declarative routing for React web applications
react-fast-compare 2.0.4Outdated
Fastest deep equal comparison for React. Great for React.memo & shouldComponentUpdate. Also really fast general-purpose deep comparison.
shallowequal 1.1.0
Like lodash isEqualWith but for shallow equal.
tiny-invariant 1.1.0Outdated
A tiny invariant function
isomorphic-fetch 2.1.1 - 3.0.0
Isomorphic WHATWG Fetch API, for Node & Browserify
mattandrews
the-ft
resolve-pathname 3.0.0
Resolve URL pathnames using JavaScript
mjackson
mjackson
value-equal 1.0.1
Are these two JavaScript values equal?
mjackson
mjackson
zen-observable-ts 0.8.10 - 0.8.21Outdated
Thin wrapper around zen-observable and @types/zen-observable, to support ESM exports as well as CommonJS exports
jbaxleyiii
apollo-bot
ts-invariant 0.4.4Outdated
TypeScript implementation of invariant(condition, message)
zen-observable 0.8.15Outdated
An Implementation of ES Observables
zenparsing
zenparsing
@wry/equality 0.1.9 - 0.1.11Outdated
Structural equality checking for JavaScript values
benjamn
benjamn
react-app-polyfill 1.0.4 - 1.0.6Outdated
Polyfills for various browsers including commonly used language features
+2
gaearon
fb
timer
i18next 19.6.3Outdated
i18next internationalization framework
@wry/context 0.4.4 - 0.6.0Outdated
Manage contextual information needed by (a)synchronous tasks without explicitly passing objects around
benjamn
benjamn
react-scripts 0.4.2Outdated
Configuration and scripts for Create React App.
+2
gaearon
fb
timer
mini-create-react-context 0.3.2Outdated
Smaller Polyfill for the proposed React context API
gud 1.0.0
Create a 'gud nuff' (not cryptographically secure) globally unique id
optimism 0.10.2 - 0.10.3Outdated
Composable reactive caching with efficient invalidation.
react-i18next 11.5.1 - 11.7.0Outdated
Internationalization for react done right. Using the i18next i18n ecosystem.
apollo-utilities 1.3.0 - 1.3.4
Utilities for working with GraphQL ASTs
+1
apollo-bot
benjamn
jbaxleyiii
apollo-link 1.2.12 - 1.2.14
Flexible, lightweight transport layer for GraphQL
jbaxleyiii
peggyrayzis
apollo-bot
react-side-effect 1.2.0Outdated
Create components whose prop changes map to a global side effect
react-helmet 5.2.1Outdated
A document head manager for React
universal-cookie 4.0.3Outdated
Universal cookies for JavaScript
apollo-link-http-common 0.2.15 - 0.2.16
Http utilities for Apollo Link shared across all links using http
apollo-client 2.6.10
A simple yet functional GraphQL client.
apollo-cache 1.1.22 - 1.3.5
Core abstract of Caching layer for Apollo Client
+3
apollo-bot
benjamn
jbaxleyiii
lodash.unescape 4.0.1
The lodash method `_.unescape` exported as a module.
apollo-cache-inmemory 1.6.3 - 1.6.6
Core abstract of Caching layer for Apollo Client
+1
apollo-bot
benjamn
jbaxleyiii
react-cookie 4.0.1 - 4.1.1
Universal cookies for React
react-loadable 5.5.0
A higher order component for loading components with promises
miksu
thejameskyle
@apollo/react-common 3.0.0 - 3.1.4
React Apollo common utilities.
apollo-link-batch 1.1.10 - 1.1.15
Apollo Link that performs batching and operation on batched Operations
jbaxleyiii
apollo-bot
apollo-link-batch-http 1.2.9 - 1.2.14
Batch HTTP transport layer for GraphQL
jbaxleyiii
apollo-bot
@sitecore-jss/sitecore-jss 12.0.1 - 14.0.4Outdated
This module is provided as a part of Sitecore JavaScript Rendering SDK. It contains the core JSS APIs (layout service) and utilities.
+6
appadmin-svc
sc-artemalexeyenko
sc-chedhlidhouibi
style-attr 1.3.0
Parse and stringify style attributes
@sitecore-jss/sitecore-jss-react 13.1.0 - 13.2.2Outdated
This module is provided as a part of Sitecore JavaScript Rendering SDK (JSS). It contains React components and integration for JSS.
+6
appadmin-svc
sc-artemalexeyenko
sc-chedhlidhouibi
i18next-fetch-backend 2.2.0 - 2.3.1Outdated
backend layer for i18next using browsers fetch
react-amphtml 3.1.0 - 4.0.2
Use amphtml components inside your React apps easily!
dfrankland
dfrankland
coveoforsitecore-jss x.x.x