About
Community
weatherbug.com
138 packages
Last scanned on Jan 19 at 08:03 AM
Update
Name
Size
Popularity
Severity
crypto-js
4.1.0 - 4.1.1
Vulnerable
Outdated
JavaScript library of crypto standards.
Script
https://weatherbug.com/dist/main.2c60174cb9982d3de663.js?v=MH0NvguWFVUD5PYpjyfLweS4vVFubTFAw7tpK94Blpo
License
MIT
Footprint
17 KB
Vulnerabilities
Critical
GHSA-xwcq-pm8m-c4vf
crypto-js PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard
Affected versions >=0 <4.2.0
Matched Modules
Version distribution in production
457
4.1.0
457
4.1.1
185
3.3.0
162
3.1.8
143
3.2.1
143
4.0.0
Also used on 738 websites
pubmatic.com
4 packages
tiktok.com
91 packages
redd.it
180 packages
www.reddit.com
183 packages
Repository
Homepage
More
security
crypto
Hash
MD5
SHA1
+15
evanvosberg
axios
0.21.1
Vulnerable
Outdated
Promise based HTTP client for the browser and node.js
xhr
http
ajax
promise
node
+1
moment
2.24.0
Vulnerable
Outdated
Parse, validate, manipulate, and display dates
moment
date
time
parse
format
+4
+2
urijs
1.19.0 - 1.19.8
Vulnerable
Outdated
URI.js is a Javascript library for working with URLs.
uri
url
urn
uri mutation
url mutation
+13
rodneyrehm
moment-timezone
0.5.26 - 0.5.27
Vulnerable
Outdated
Parse and display moments in any timezone.
moment
date
time
timezone
olson
+3
+4
html-parse-stringify
1.0.0 - 1.0.3
Vulnerable
Outdated
Parses well-formed HTML (meaning all tags closed) into an AST and back. quickly.
ast
html
parse
stringify
+2
angular
1.2.29 - 1.8.3
Vulnerable
HTML enhanced for web apps
angular
framework
browser
client-side
angular
es5-ext
0.10.24 - 0.10.49
Vulnerable
Outdated
ECMAScript extensions and shims
ecmascript
ecmascript5
ecmascript6
es5
es6
+11
medikoo
uuid
7.0.0 - 8.0.0
Outdated
RFC4122 (v1, v4, and v5) UUIDs
uuid
guid
rfc4122
react-is
16.3.0 - 16.13.1
Outdated
Brand checking of React Elements.
react
+1
regenerator-runtime
x.x.x
Runtime for Regenerator-compiled generator and async functions.
regenerator
runtime
generator
async
benjamn
@babel/runtime
7.12.0 - 7.12.18
Outdated
babel's modular runtime helpers
+1
function-bind
1.1.0 - 1.1.1
Outdated
Implementation of Function.prototype.bind
function
bind
shim
es5
lodash
x.x.x
Lodash modular utilities.
modules
stdlib
util
object-inspect
1.6.0
Outdated
string representations of objects in node and the browser
inspect
util.inspect
object
stringify
pretty
has-symbols
1.0.0 - 1.0.1
Outdated
Determine if the JS environment has Symbol support. Supports spec, or shams.
Symbol
symbols
typeof
sham
polyfill
+3
ljharb
object-assign
4.1.0 - 4.1.1
ES2015 `Object.assign()` ponyfill
object
assign
extend
properties
es2015
+7
es-abstract
1.16.0
Outdated
ECMAScript spec abstract operations.
ECMAScript
ES
abstract
operation
abstract operation
+4
ljharb
define-properties
1.1.3
Outdated
Define multiple non-enumerable properties at once. Uses `Object.defineProperty` when available; falls back to standard assignment in older engines.
Object.defineProperty
Object.defineProperties
object
property descriptor
descriptor
+2
ljharb
is-callable
1.1.4 - 1.1.5
Outdated
Is this JS value callable? Works with Functions and GeneratorFunctions, despite ES6 @@toStringTag.
Function
function
callable
generator
generator function
+5
ljharb
object-keys
1.1.0 - 1.1.1
An Object.keys replacement, in case Object.keys is not available. From https://github.com/es-shims/es5-shim
Object.keys
keys
ES5
shim
ljharb
core-js
2.6.10
Outdated
Standard library
ES3
ES5
ES6
ES7
ES2015
+39
zloirock
is-regex
1.0.4 - 1.0.5
Outdated
Is this value a JS regex? Works cross-realm/iframe, and despite ES6 @@toStringTag
regex
regexp
is
regular expression
regular
+1
ljharb
is-date-object
1.0.1 - 1.0.3
Outdated
Is this value a JS Date object? This module works cross-realm/iframe, and despite ES6 @@toStringTag.
Date
ES6
toStringTag
@@toStringTag
Date object
ljharb
is-symbol
1.0.0 - 1.0.4
Determine if a value is an ES6 Symbol or not.
symbol
es6
is
Symbol
ljharb
es-to-primitive
1.2.0 - 1.2.1
ECMAScript “ToPrimitive” algorithm. Provides ES5 and ES2015 versions.
primitive
abstract
ecmascript
es5
es6
+11
ljharb
xtend
4.0.1 - 4.0.2
extend like a boss
extend
merge
options
opts
object
+1
raynos
object.values
1.0.4 - 1.1.0
Outdated
ES2017 spec-compliant Object.values shim.
Object.values
Object.keys
Object.entries
values
ES7
+8
ljharb
scheduler
0.20.0 - 0.20.2
Outdated
Cooperative scheduler for the browser environment.
react
+1
has
1.0.1 - 1.0.3
Outdated
Object.prototype.hasOwnProperty.call shortcut
tarruda
prop-types
15.7.0 - 15.7.2
Outdated
Runtime type checking for React props and similar objects.
react
react
16.13.0 - 18.2.0
Outdated
React is a JavaScript library for building user interfaces.
react
+1
process
x.x.x
process information for node.js and browsers
process
react-dom
17.0.0 - 17.0.2
Outdated
React package for working with the DOM.
react
+2
lodash.debounce
4.0.8
The lodash method `_.debounce` exported as a module.
lodash-modularized
debounce
@emotion/memoize
0.6.1 - 0.7.4
Outdated
emotion's memoize utility
+1
hoist-non-react-statics
1.2.0
Outdated
Copies non-react specific statics from a child component to a parent component
react
mridgway
invariant
2.2.0 - 2.2.4
invariant
test
invariant
lodash.once
4.1.1
The lodash method `_.once` exported as a module.
lodash-modularized
once
@emotion/unitless
0.7.2 - 0.8.0
Outdated
An object of css properties that don't accept values with units
+1
classnames
2.2.6
Outdated
A simple utility for conditionally joining classNames together
react
css
classes
classname
classnames
+2
@emotion/is-prop-valid
0.8.8
Outdated
A function to check whether a prop is valid for HTML and SVG elements
+1
react-transition-group
2.5.3 - 4.4.5
A react component toolset for managing animations
react
transition
addons
transition-group
animation
+2
dom-helpers
5.0.1 - 5.2.1
tiny modular DOM lib for ie9+
dom-helpers
react-component
dom
api
cross-browser
+8
lodash.sortby
4.7.0
The lodash method `_.sortBy` exported as a module.
lodash-modularized
sortby
object.getownpropertydescriptors
2.0.0 - 2.1.5
Outdated
ES2017 spec-compliant shim for `Object.getOwnPropertyDescriptors` that works in ES5.
Object.getOwnPropertyDescriptors
descriptor
property descriptor
ES8
ES2017
+4
ljharb
lodash.clonedeep
4.5.0
The lodash method `_.cloneDeep` exported as a module.
lodash-modularized
clonedeep
react-router
0.5.3
Outdated
Declarative routing for React
react
router
route
routing
history
+1
redux
4.0.1 - 4.2.0
Outdated
Predictable state container for JavaScript apps
redux
reducer
state
predictable
functional
+6
+3
crypto-browserify
1.0.9 - 2.0.0
Outdated
implementation of crypto for the browser
+2
react-redux
5.1.0
Outdated
Official React bindings for Redux
react
reactjs
redux
+2
shallowequal
1.0.1 - 1.1.0
Like lodash isEqualWith but for shallow equal.
shallowequal
shallow
equal
isequal
compare
+1
dashed
void-elements
3.1.0
Array of "void elements" defined by the HTML specification.
html
void
elements
+4
resize-observer-polyfill
1.5.1
A polyfill for the Resize Observer API
ResizeObserver
resize
observer
util
client
+3
que-etc
styled-components
4.0.0 - 5.3.6
Outdated
CSS for the <Component> Age. Style components your way with speed, strong typing, and flexibility.
react
css
css-in-js
styled-components
styling
+1
i18next
20.3.0 - 20.6.1
Outdated
i18next internationalization framework
i18next
internationalization
i18n
translation
localization
+3
redux-thunk
2.1.0 - 2.4.2
Outdated
Thunk middleware for Redux.
redux
thunk
middleware
redux-middleware
flux
+2
react-select
4.1.0 - 5.5.4
Outdated
A Select control built with and for ReactJS
combobox
form
input
multiselect
react
+3
+2
@emotion/stylis
0.8.1
Outdated
A custom build of Stylis
+1
framer-motion
5.0.0 - 8.5.0
Outdated
A simple and powerful JavaScript animation library
react animation
react
three
3d
pose
+8
+36
tabbable
3.1.1 - 3.1.2
Outdated
Returns an array of all tabbable DOM nodes within a containing node.
@firebase/util
1.7.0 - 1.8.0
Outdated
_NOTE: This is specifically tailored for Firebase JS SDK usage, if you are not a member of the Firebase team, please avoid using this package_
+1
react-i18next
11.11.0 - 11.16.2
Outdated
Internationalization for react done right. Using the i18next i18n ecosystem.
i18next
internationalization
i18n
translation
localization
+4
rc-util
5.12.0 - 5.13.2
Outdated
Common Utils For React Component
react
util
+6
lodash.uniqby
4.7.0
The lodash method `_.uniqBy` exported as a module.
lodash-modularized
uniqby
@turf/helpers
5.1.0 - 6.5.0
turf helpers module
geo
point
turf
geojson
+4
fp-ts
0.2.1 - 0.2.9
Outdated
Functional programming in TypeScript
typescript
algebraic-data-types
functional-programming
gcanti
rc-tooltip
5.0.2 - 5.1.1
Outdated
React Tooltip
react
react-component
react-tooltip
tooltip
+5
rc-slider
9.7.1 - 9.7.5
Outdated
Slider UI component for React
react
react-component
react-slider
slider
input
+1
+6
@babel/polyfill
7.4.3 - 7.12.1
Provides polyfills necessary for a full ES2015+ environment
+1
react-beautiful-dnd
1.0.0 - 6.0.2
Outdated
Beautiful and accessible drag and drop for lists with React
drag and drop
dnd
sortable
reorder
reorderable
+5
focus-trap
3.0.0
Outdated
Trap focus within a DOM node.
focus
accessibility
trap
capture
keyboard
+1
rc-motion
2.6.3
Outdated
React lifecycle controlled motion library
react
react-component
react-motion
motion
antd
+1
+1
airbnb-prop-types
2.14.0 - 2.15.0
Outdated
Custom React PropType validators that we use at Airbnb.
react
propTypes
airbnb
prop
types
+2
+1
i18next-browser-languagedetector
x.x.x
language detector used in browser environment for i18next
i18next
i18next-languageDetector
rc-trigger
5.2.3 - 5.2.10
Outdated
base abstract trigger component for react
react
react-component
react-trigger
trigger
+2
rc-select
10.0.0 - 14.2.0
Outdated
React Select
react
react-component
react-select
select
+6
rc-align
4.0.9
Outdated
align ui component for react
react
react-component
react-align
align
+1
dom-align
1.10.0 - 1.10.2
Outdated
Align DOM Node Flexibly
dom
align
+1
rc-picker
2.6.10 - 2.7.0
Outdated
React date & time picker
react
react-component
react-picker
+3
react-tooltip
x.x.x
react tooltip component
react
react-component
tooltip
react-tooltip
+3
css-mediaquery
0.1.2
Parses and determines if a given CSS Media Query matches a set of values.
ericf
mapbox-gl
x.x.x
A WebGL interactive maps library
+25
@reach/utils
0.4.0 - 0.6.1
Outdated
Internal, shared utilities for Reach UI.
+1
consolidated-events
2.0.2
Manage multiple event handlers using few event listeners
events
performance
lencioni
redux-devtools-extension
2.0.0 - 2.13.9
Wrappers for Redux DevTools Extension.
+1
recompose
0.29.0 - 0.30.0
A React utility belt for function components and higher-order components
react
higher-order
components
microcomponentization
toolkit
+2
focus-trap-react
4.0.1
Outdated
A React component that traps focus.
react
reactjs
react-component
aria
accessibility
+4
+1
document.contains
1.0.1
Outdated
Polyfill/shim for `document.contains`
contains
document
element
node
polyfill
+1
ljharb
react-outside-click-handler
1.3.0
A React component for dealing with clicks outside its subtree
+2
lodash.uniqueid
4.0.1
The lodash method `_.uniqueId` exported as a module.
lodash-modularized
uniqueid
get-size
1.2.2
Outdated
measures element size
size
DOM
desandro
fizzy-ui-utils
1.0.1
Outdated
UI utilities
ui
utility
browser
DOM
desandro
desandro-matches-selector
1.0.2 - 1.0.3
Outdated
matches/matchesSelector helper
DOM
matchesSelector
matches
desandro
react-visibility-sensor
5.1.1
Sensor component for React that notifies you when it goes in or out of the window viewport.
react
react-component
visibility
+1
outlayer
1.3.0
Outdated
the brains and guts of a layout library
DOM
layout
desandro
react-lazy-load-image-component
1.5.0 - 1.5.1
Outdated
React Component to lazy load images using a HOC to track window scroll position.
react
react-component
lazyload
lazyloading
lazy-loading
+1
albertjuhe
wolfy87-eventemitter
4.2.0 - 5.2.9
Event based JavaScript for the browser
eventemitter
events
browser
amd
olical
deepcopy
2.0.0 - 2.1.0
deep copy data
sasaplus1
i18next-xhr-backend
x.x.x
backend layer for i18next using browsers xhr
i18next
i18next-backend
jamuhl
unidragger
1.1.5
Outdated
Base draggable class
draggable
flickity
draggabilly
browser
dom
desandro
flickity
1.0.1 - 1.0.2
Outdated
Touch, responsive, flickable carousels
touch
responsive
flick
slider
carousel
+3
desandro
no-scroll
2.1.1
Disable the document's scrolling
scroll
scrolling
disable
modal
dialog
davidtheclark
redux-promise-middleware
5.0.0 - 5.1.1
Outdated
Enables simple, yet robust handling of async action creators in Redux
redux
middleware
middlewares
promise
promises
+4
pburtchaell
unipointer
1.1.0
Outdated
Do one thing with one pointer
pointer
touch
mouse
browser
DOM
desandro
@tannin/plural-forms
1.0.0 - 1.1.0
Compiles a function to compute the plural forms index for a given value
aduth
react-responsive-modal
x.x.x
A simple responsive and accessible react modal
react
responsive
modal
mobile
flex
leopradel
lottie-api
1.0.0 - 1.0.2
Outdated
A library to edit lottie-web animations dynamically
airnan
@bower_components/flickity
x.x.x
@weatherbug/react
x.x.x
oidc-client
x.x.x
@bower_components/angular-dynamic-locale
x.x.x
angulartics
x.x.x
matchmediaquery
x.x.x
lodash.find
x.x.x
desandro-get-style-property
x.x.x
react-async-script-loader
x.x.x
@bower_components/uri.js
x.x.x
@weatherbug/common
x.x.x
tap-listener
x.x.x
ngreact
x.x.x
react-smartbanner
x.x.x
@bower_components/outlayer
x.x.x
lodash.orderby
x.x.x
angular-route
x.x.x
eventie
x.x.x
@bower_components/object-fit
x.x.x
desandro-classie
x.x.x
@bower_components/fizzy-ui-utils
x.x.x
morphism
x.x.x
@bower_components/tap-listener
x.x.x
redux-connect-standalone
x.x.x
@bower_components/raf.js
x.x.x
react-native-storage
x.x.x
@bower_components/fastclick
x.x.x
doc-ready
x.x.x
lodash.tostring
x.x.x
jssha
x.x.x
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
lodash
relay-runtime
react-relay
react-use
lodash-es
+51 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites