About
Community
ultimate-guitar.com
35 packages
Last scanned on Oct 27 at 06:00 PM
Update
Name
Size
Popularity
Severity
lodash
4.17.16
Vulnerable
Outdated
Lodash modular utilities.
Script
https://www.ultimate-guitar.com/static/public/build/ug_react/vendor.3eab9b3da165a6488c26abd36aac2d67.js
License
MIT
Footprint
1 KB
Vulnerabilities
High
GHSA-35jh-r3h4-6jhm
Command Injection in lodash
Affected versions >=0 <4.17.21
Moderate
GHSA-29mw-wpgm-hmr9
Regular Expression Denial of Service (ReDoS) in lodash
Affected versions >=0 <4.17.21
High
GHSA-p6mc-m468-83gw
Prototype Pollution in lodash
Affected versions >=3.7.0 <4.17.19
Matched Modules
Version distribution in production
3 846
4.17.16
946
4.17.21
337
4.17.20
322
4.17.15
302
4.17.19
301
4.17.13
Also used on 4830 websites
skype.com
20 packages
sentry.io
157 packages
pinterest.com
56 packages
pinimg.com
52 packages
Repository
Homepage
More
modules
stdlib
util
react-is
16.3.0 - 17.0.2
Outdated
Brand checking of React Elements.
react
+1
@babel/runtime
7.18.0 - 7.19.4
Outdated
babel's modular runtime helpers
+1
axios
1.0.0 - 1.1.3
Outdated
Promise based HTTP client for the browser and node.js
xhr
http
ajax
promise
node
+1
domutils
1.4.1 - 3.0.1
Outdated
Utilities for working with htmlparser2's dom
dom
htmlparser2
feedic
prop-types
15.8.0 - 15.8.1
Runtime type checking for React props and similar objects.
react
hoist-non-react-statics
3.3.1 - 3.3.2
Copies non-react specific statics from a child component to a parent component
react
mridgway
classnames
2.2.6
Outdated
A simple utility for conditionally joining classNames together
react
css
classes
classname
classnames
+2
lodash-es
4.17.21
Lodash exported as ES modules.
es6
modules
stdlib
util
redux
4.1.0 - 4.2.0
Outdated
Predictable state container for JavaScript apps
redux
reducer
state
predictable
functional
+6
+3
d3-array
1.0.1 - 2.3.1
Outdated
Array manipulation, ordering, searching, summarizing, etc.
d3
d3-module
histogram
bisect
shuffle
+4
reselect
4.1.0 - 4.1.6
Outdated
Selectors for Redux.
react
redux
+3
react-lifecycles-compat
3.0.4
Backwards compatibility polyfill for React class components
redux-thunk
2.1.0 - 2.4.1
Outdated
Thunk middleware for Redux.
redux
thunk
middleware
redux-middleware
flux
+2
preact
10.4.8 - 10.11.2
Outdated
Fast 3kb React-compatible Virtual DOM library.
preact
react
ui
user interface
virtual dom
+5
+6
web-vitals
2.0.0 - 2.1.1
Outdated
Easily measure performance metrics in JavaScript
crux
performance
metrics
Core Web Vitals
CLS
+5
relay-runtime
7.1.0 - 14.1.0
Outdated
A core runtime for building GraphQL-driven applications.
graphql
relay
+4
shallow-equal
1.1.0 - 1.2.1
Outdated
Typescript-compatible minimalistic shallow equality check for arrays/objects
shallow
equality
compare
comparison
shallowequal
+14
firebase
4.1.4 - 4.5.0
Outdated
Firebase JavaScript library for web and Node.js
authentication
database
Firebase
firebase
realtime
+3
+1
react-query
1.0.0 - 2.5.6
Outdated
Hooks for managing, caching and syncing asynchronous and remote data in React
react-bootstrap
2.5.0
Outdated
Bootstrap 5 components built with React
bootstrap
react
component
components
ecosystem-react
+1
mapbox-gl
0.8.0 - 0.16.0
Outdated
A WebGL interactive maps library
+25
recompose
0.21.1 - 0.30.0
A React utility belt for function components and higher-order components
react
higher-order
components
microcomponentization
toolkit
+2
change-emitter
0.1.2 - 0.1.6
Listen for changes. Like an event emitter that only emits a single event type. Really tiny.
change
event
emitter
@chakra-ui/theme-tools
1.0.0 - 1.2.3
Outdated
Set of helpers that makes theming and styling easier
theme
theming
color
utilities
@chakra-ui/theme
2.1.0 - 2.1.3
Outdated
The default theme for chakra components
theme
theming
ui mode
ui
react-dates
14.1.0 - 21.8.0
A responsive and accessible date range picker component built with React
+4
react-loadable
5.2.0 - 5.5.0
A higher order component for loading components with promises
normalizr
3.5.0 - 3.6.2
Normalizes and denormalizes JSON according to schema for Redux and Flux applications
flux
redux
normalize
denormalize
api
+1
node-polyglot
2.3.0 - 2.3.1
Outdated
Give your JavaScript the ability to speak many languages.
i18n
internationalization
internationalisation
translation
interpolation
+2
+2
vue-gtag
1.14.1 - 2.0.1
Global Site Tag (gtag.js) plugin for Vue
google
google analytics
tracking
google tracking
vue-analytics
+6
matteo_gabriele
@tannin/plural-forms
1.0.0 - 1.1.0
Compiles a function to compute the plural forms index for a given value
aduth
lottie-api
1.0.0 - 1.0.2
Outdated
A library to edit lottie-web animations dynamically
airnan
tg-core-redux
0.0.2 - 0.0.4
Outdated
tg-core-redux
+4
@team-griffin/uteals
1.0.0
Outdated
Utilities for Tealium
+1
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
lodash
relay-runtime
react-relay
react-use
lodash-es
+51 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites