About
Community
wish.com
48 packages
Last scanned on Oct 27 at 06:30 PM
Update
Name
Size
Popularity
Severity
lodash
4.17.16
Vulnerable
Outdated
Lodash modular utilities.
Script
https://main.cdn.wish.com/web/833de6d36607/dist/cozy/defaultVendors-node_modules_datadog_browser-rum_esm_entries_main_js-node_modules_loadable_com-064afa.cb7e55bdb4053e8968bf.gz.js
License
MIT
Footprint
9 KB
Vulnerabilities
High
GHSA-35jh-r3h4-6jhm
Command Injection in lodash
Affected versions >=0 <4.17.21
Moderate
GHSA-29mw-wpgm-hmr9
Regular Expression Denial of Service (ReDoS) in lodash
Affected versions >=0 <4.17.21
High
GHSA-p6mc-m468-83gw
Prototype Pollution in lodash
Affected versions >=3.7.0 <4.17.19
Matched Modules
Version distribution in production
3 846
4.17.16
946
4.17.21
337
4.17.20
322
4.17.15
302
4.17.19
301
4.17.13
Also used on 4830 websites
skype.com
20 packages
sentry.io
157 packages
pinterest.com
55 packages
pinimg.com
52 packages
Repository
Homepage
More
modules
stdlib
util
svelte
3.0.0 - 3.23.2
Vulnerable
Outdated
Cybernetically enhanced web apps
UI
framework
templates
templating
showdown
0.3.0 - 0.5.3
Vulnerable
Outdated
A Markdown to HTML converter written in Javascript
markdown
converter
tslib
1.2.0 - 2.4.0
Outdated
Runtime library for TypeScript helper functions
TypeScript
Microsoft
compiler
language
javascript
+2
+5
uuid
7.0.0 - 8.0.0
Outdated
RFC4122 (v1, v4, and v5) UUIDs
uuid
guid
rfc4122
isarray
0.0.0 - 0.0.1
Outdated
Array#isArray for older browsers
browser
isarray
array
juliangruber
react-is
16.3.0 - 18.2.0
Brand checking of React Elements.
react
+1
qs
6.9.1
Outdated
A querystring parser that supports nesting and arrays, with a depth limit
querystring
qs
query
url
parse
+1
path-to-regexp
1.7.0 - 2.4.0
Outdated
Express style path to RegExp utility
express
regexp
route
routing
+2
axios
0.24.0
Outdated
Promise based HTTP client for the browser and node.js
xhr
http
ajax
promise
node
+1
core-js
3.6.0 - 3.6.2
Outdated
Standard library
ES3
ES5
ES6
ES7
ES2015
+39
zloirock
scheduler
0.15.0 - 0.23.0
Cooperative scheduler for the browser environment.
react
+1
prop-types
15.8.0 - 15.8.1
Runtime type checking for React props and similar objects.
react
react
17.0.0 - 18.2.0
React is a JavaScript library for building user interfaces.
react
+1
date-fns
0.14.11 - 0.16.0
Outdated
Modern JavaScript date utility library
kossnocorp
hoist-non-react-statics
3.3.1 - 3.3.2
Copies non-react specific statics from a child component to a parent component
react
mridgway
tiny-invariant
0.0.2 - 1.3.1
Outdated
A tiny invariant function
invariant
error
assert
asserts
alexreardon
react-router
5.1.1 - 5.3.4
Outdated
Declarative routing for React
react
router
route
routing
history
+1
@sentry/utils
6.8.0 - 6.13.3
Outdated
Utilities for all Sentry JavaScript SDKs
+8
react-router-dom
5.1.0 - 5.3.4
Outdated
Declarative routing for React web applications
react
router
route
routing
history
+1
redux
4.1.0 - 4.2.0
Outdated
Predictable state container for JavaScript apps
redux
reducer
state
predictable
functional
+6
+3
lodash-es
4.17.21
Lodash exported as ES modules.
es6
modules
stdlib
util
crypto-browserify
1.0.9 - 2.0.0
Outdated
implementation of crypto for the browser
+2
shallowequal
1.0.1 - 1.1.0
Like lodash isEqualWith but for shallow equal.
shallowequal
shallow
equal
isequal
compare
+1
dashed
history
4.0.0 - 4.10.1
Outdated
Manage session history with JavaScript
history
location
mjackson
styled-components
5.0.0 - 5.3.6
Outdated
CSS for the <Component> Age. Style components your way with speed, strong typing, and flexibility.
react
css
css-in-js
styled-components
styling
+1
redux-thunk
2.1.0 - 2.4.1
Outdated
Thunk middleware for Redux.
redux
thunk
middleware
redux-middleware
flux
+2
@sentry/hub
4.3.3 - 6.19.4
Outdated
Sentry hub which handles global state managment.
+8
web-vitals
1.1.0
Outdated
Easily measure performance metrics in JavaScript
crux
performance
metrics
Core Web Vitals
CLS
+5
@sentry/minimal
4.3.3 - 6.19.7
Sentry minimal library that can be used in other packages
+8
fp-ts
0.6.0 - 1.19.5
Outdated
Functional programming in TypeScript
typescript
algebraic-data-types
functional-programming
gcanti
@datadog/browser-core
4.18.1
Outdated
Datadog browser core utilities.
datadog
react-beautiful-dnd
1.0.0 - 6.0.2
Outdated
Beautiful and accessible drag and drop for lists with React
drag and drop
dnd
sortable
reorder
reorderable
+5
@react-spring/shared
9.0.0 - 9.5.5
Outdated
Globals and shared modules
animated
animation
hooks
motion
react
+4
tdfka_rick
redux-devtools-extension
2.0.0 - 2.13.9
Wrappers for Redux DevTools Extension.
+1
@aws-amplify/auth
1.2.21 - 4.6.12
Outdated
Auth category of aws-amplify
+7
@auth0/auth0-spa-js
2.0.0
Outdated
Auth0 SDK for Single Page Applications using Authorization Code Grant Flow with PKCE
auth0
login
Authorization Code Grant Flow
PKCE
Single Page Application authentication
+1
+41
@chakra-ui/theme
2.1.0 - 2.1.3
Outdated
The default theme for chakra components
theme
theming
ui mode
ui
@chakra-ui/hooks
1.0.0 - 1.0.2
Outdated
React hooks for Chakra components
hooks
react
chakra ui
utilities
styled-system
5.0.15 - 5.1.5
Responsive, theme-based style props for building design systems with React
react
css-in-js
styled-components
emotion
rollbar
0.2.0 - 0.6.6
Outdated
Effortlessly track and debug errors in your JavaScript applications with Rollbar. This package includes advanced error tracking features and an intuitive interface to help you identify and fix issues more quickly.
error
tracking
logging
debugging
javascript
@loadable/component
5.14.1
Outdated
React code splitting made easy.
react
ssr
webpack
code-splitting
react-router
+4
rehype-react
2.0.0 - 6.2.0
Outdated
rehype plugin to transform to React
hast
html
plugin
preact
react
+6
nuka-carousel
4.7.0 - 4.7.3
Outdated
Pure React Carousel
react
carousel
nuka
+14
vue-gtag
1.14.1 - 2.0.1
Global Site Tag (gtag.js) plugin for Vue
google
google analytics
tracking
google tracking
vue-analytics
+6
matteo_gabriele
@atlaskit/spinner
9.0.10 - 11.0.0
Outdated
A spinner is an animated spinning icon that lets users know content is being loaded.
atlaskit
redux-promise-middleware
6.1.2 - 6.1.3
Outdated
Enables simple, yet robust handling of async action creators in Redux
redux
middleware
middlewares
promise
promises
+4
pburtchaell
lottie-api
1.0.0 - 1.0.2
Outdated
A library to edit lottie-web animations dynamically
airnan
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
libphonenumber-js
react-relay
jss
@babel/runtime
redux-form
+50 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites