uchicago.edu 71 packages

Last scanned on Oct 27 at 05:55 PM
url-parse 1.4.6 - 1.4.7VulnerableOutdated
Small footprint URL parser that works seamlessly across Node.js and browser environments
License
MIT
Footprint
3 KB
Vulnerabilities
url-parse incorrectly parses hostname / protocol due to unstripped leading control characters.
Affected versions >=0 <1.5.9
Authorization bypass in url-parse
Affected versions >=0 <1.5.6
Path traversal in url-parse
Affected versions >=0 <1.5.0
Open redirect in url-parse
Affected versions >=0 <1.5.2
url-parse Incorrectly parses URLs that include an '@'
Affected versions >=0 <1.5.7
Authorization Bypass Through User-Controlled Key in url-parse
Affected versions >=0 <1.5.8
Matched Modules
Version distribution in production
206
1.5.10
167
1.5.9
50
1.5.3
47
1.4.6
47
1.4.7
24
1.5.4
axios 0.19.2VulnerableOutdated
Promise based HTTP client for the browser and node.js
tslib 1.13.0 - 1.14.1Outdated
Runtime library for TypeScript helper functions
isarray 0.0.0 - 0.0.1Outdated
Array#isArray for older browsers
react-is 16.13.1Outdated
Brand checking of React Elements.
inherits 2.0.4
Browser-friendly inheritance fully compatible with standard node.js inherits()
regenerator-runtime 0.13.7Outdated
Runtime for Regenerator-compiled generator and async functions.
@babel/runtime 7.9.0 - 7.9.2Outdated
babel's modular runtime helpers
+1
hzoo
existentialism
nicolo-ribaudo
cookie 0.4.1Outdated
HTTP server cookie parsing and serialization
dougwilson
dougwilson
path-to-regexp 1.8.0Outdated
Express style path to RegExp utility
object-assign 4.1.1
ES2015 `Object.assign()` ponyfill
fast-json-stable-stringify 2.0.0 - 2.1.0
deterministic `JSON.stringify()` - a faster version of substack's json-stable-strigify without jsonify
core-js 3.6.5Outdated
Standard library
scheduler 0.15.0Outdated
Cooperative scheduler for the browser environment.
prop-types 15.7.0 - 15.7.2Outdated
Runtime type checking for React props and similar objects.
requires-port 1.0.0
Check if a protocol requires a certain port number to be added to an URL.
react 16.9.0Outdated
React is a JavaScript library for building user interfaces.
react-dom 16.9.0Outdated
React package for working with the DOM.
process 0.11.10
process information for node.js and browsers
querystringify 2.1.1Outdated
Querystringify - Small, simple but powerful query string parser.
asap 2.0.5 - 2.0.6
High-priority task queue for Node.js and browsers
minimalistic-assert 1.0.0 - 1.0.1
minimalistic-assert ===
cwmma
indutny
hoist-non-react-statics 3.3.2
Copies non-react specific statics from a child component to a parent component
mridgway
mridgway
promise 8.1.0Outdated
Bare bones Promises/A+ implementation
forbeslindesay
judgmentparking
then-promise-bot
symbol-observable 1.1.0 - 1.2.0Outdated
Symbol.observable ponyfill
whatwg-fetch 3.4.0 - 3.4.1Outdated
A window.fetch polyfill.
jakechampion
mattandrews
mislav
react-router 5.1.1 - 5.3.4Outdated
Declarative routing for React
react-router-dom 5.1.0 - 5.3.4Outdated
Declarative routing for React web applications
graphql 14.5.0 - 14.7.0Outdated
A Query Language and Runtime which can target any service.
react-fast-compare 2.0.4Outdated
Fastest deep equal comparison for React. Great for React.memo & shouldComponentUpdate. Also really fast general-purpose deep comparison.
hash.js 1.1.7
Various hash functions that could be run by both browser and node
tiny-invariant 1.1.0Outdated
A tiny invariant function
es5-ext 0.10.24 - 0.10.49Outdated
ECMAScript extensions and shims
history 4.10.1Outdated
Manage session history with JavaScript
shallowequal 1.1.0
Like lodash isEqualWith but for shallow equal.
resolve-pathname 3.0.0
Resolve URL pathnames using JavaScript
mjackson
mjackson
value-equal 1.0.1
Are these two JavaScript values equal?
mjackson
mjackson
isomorphic-fetch 2.1.1 - 3.0.0
Isomorphic WHATWG Fetch API, for Node & Browserify
mattandrews
the-ft
zen-observable-ts 0.8.10 - 0.8.21Outdated
Thin wrapper around zen-observable and @types/zen-observable, to support ESM exports as well as CommonJS exports
jbaxleyiii
apollo-bot
zen-observable 0.8.15Outdated
An Implementation of ES Observables
zenparsing
zenparsing
i18next 19.6.3Outdated
i18next internationalization framework
ts-invariant 0.4.4Outdated
TypeScript implementation of invariant(condition, message)
@wry/equality 0.1.9 - 0.1.11Outdated
Structural equality checking for JavaScript values
benjamn
benjamn
gud 1.0.0
Create a 'gud nuff' (not cryptographically secure) globally unique id
mini-create-react-context 0.3.2Outdated
Smaller Polyfill for the proposed React context API
react-app-polyfill 1.0.4 - 1.0.6Outdated
Polyfills for various browsers including commonly used language features
+1
fb
timer
iansu
@wry/context 0.4.4 - 0.6.0Outdated
Manage contextual information needed by (a)synchronous tasks without explicitly passing objects around
benjamn
benjamn
react-scripts 0.4.2Outdated
Configuration and scripts for Create React App.
+1
fb
timer
iansu
optimism 0.10.2 - 0.10.3Outdated
Composable reactive caching with efficient invalidation.
react-i18next 11.5.1 - 11.7.0Outdated
Internationalization for react done right. Using the i18next i18n ecosystem.
react-side-effect 1.2.0Outdated
Create components whose prop changes map to a global side effect
react-helmet 5.2.1Outdated
A document head manager for React
apollo-utilities 1.3.0 - 1.3.4
Utilities for working with GraphQL ASTs
+1
apollo-bot
benjamn
jbaxleyiii
universal-cookie 4.0.3Outdated
Universal cookies for JavaScript
apollo-link 1.2.12 - 1.2.14
Flexible, lightweight transport layer for GraphQL
jbaxleyiii
peggyrayzis
apollo-bot
apollo-link-http-common 0.2.15 - 0.2.16
Http utilities for Apollo Link shared across all links using http
lodash.unescape 4.0.1
The lodash method `_.unescape` exported as a module.
apollo-cache 1.1.22 - 1.3.5
Core abstract of Caching layer for Apollo Client
+3
apollo-bot
benjamn
jbaxleyiii
apollo-client 2.6.10
A simple yet functional GraphQL client.
apollo-cache-inmemory 1.6.3 - 1.6.6
Core abstract of Caching layer for Apollo Client
+1
apollo-bot
benjamn
jbaxleyiii
react-cookie 4.0.1 - 4.1.1Outdated
Universal cookies for React
react-loadable 5.5.0
A higher order component for loading components with promises
miksu
thejameskyle
@apollo/react-common 3.0.0 - 3.1.4
React Apollo common utilities.
@sitecore-jss/sitecore-jss 12.0.1 - 14.0.4Outdated
This module is provided as a part of Sitecore JavaScript Rendering SDK. It contains the core JSS APIs (layout service) and utilities.
+7
sc-yavorkrastev
sitecorecorporation
sc-maximnakhod
apollo-link-batch 1.1.10 - 1.1.15
Apollo Link that performs batching and operation on batched Operations
jbaxleyiii
apollo-bot
apollo-link-batch-http 1.2.9 - 1.2.14
Batch HTTP transport layer for GraphQL
jbaxleyiii
apollo-bot
style-attr 1.3.0
Parse and stringify style attributes
@sitecore-jss/sitecore-jss-react 13.1.0 - 13.2.2Outdated
This module is provided as a part of Sitecore JavaScript Rendering SDK (JSS). It contains React components and integration for JSS.
+7
sc-yavorkrastev
sitecorecorporation
sc-maximnakhod
i18next-fetch-backend 2.2.0 - 2.3.1Outdated
backend layer for i18next using browsers fetch
react-amphtml 3.1.0 - 4.0.2
Use amphtml components inside your React apps easily!
dfrankland
dfrankland
coveoforsitecore-jss x.x.x