About
Community
zencastr.com
73 packages
Last scanned on Jan 19 at 08:18 AM
Update
Name
Size
Popularity
Severity
lodash
4.17.16
Vulnerable
Outdated
Lodash modular utilities.
Script
https://zencastr.com/_next/static/chunks/pages/_app-f73943f4ff67deb7.js
License
MIT
Footprint
6 KB
Vulnerabilities
High
GHSA-35jh-r3h4-6jhm
Command Injection in lodash
Affected versions >=0 <4.17.21
Moderate
GHSA-29mw-wpgm-hmr9
Regular Expression Denial of Service (ReDoS) in lodash
Affected versions >=0 <4.17.21
High
GHSA-p6mc-m468-83gw
Prototype Pollution in lodash
Affected versions >=3.7.0 <4.17.19
Matched Modules
Version distribution in production
3 846
4.17.16
946
4.17.21
337
4.17.20
322
4.17.15
302
4.17.19
301
4.17.13
Also used on 4830 websites
skype.com
20 packages
sentry.io
157 packages
pinterest.com
56 packages
pinimg.com
52 packages
Repository
Homepage
More
modules
stdlib
util
next
12.3.0 - 12.3.4
Vulnerable
Outdated
The React Framework
debug
4.3.4
Lightweight debugging utility for Node.js and the browser
debug
log
debugger
+1
tslib
1.2.0 - 2.4.1
Outdated
Runtime library for TypeScript helper functions
TypeScript
Microsoft
compiler
language
javascript
+2
+5
ms
2.1.2 - 2.1.3
Tiny millisecond conversion utility
+5
react-is
16.3.0 - 18.2.0
Outdated
Brand checking of React Elements.
react
+1
qs
6.11.0
Outdated
A querystring parser that supports nesting and arrays, with a depth limit
querystring
qs
query
url
parse
+1
buffer
5.7.0 - 6.0.3
Node.js Buffer API, for the browser
arraybuffer
browser
browserify
buffer
compatible
+2
feross
@babel/runtime
7.14.0 - 7.16.3
Outdated
babel's modular runtime helpers
+1
get-intrinsic
1.1.2
Outdated
Get and robustly cache all JS language-level intrinsics at first require time
javascript
ecmascript
es
js
intrinsic
+2
ljharb
function-bind
1.1.0 - 1.1.1
Outdated
Implementation of Function.prototype.bind
function
bind
shim
es5
path-to-regexp
6.1.0 - 6.2.0
Outdated
Express style path to RegExp utility
express
regexp
route
routing
+2
call-bind
1.0.2
Outdated
Robustly `.call.bind()` a function
javascript
ecmascript
es
js
callbind
+8
ljharb
object-inspect
1.12.2 - 1.12.3
Outdated
string representations of objects in node and the browser
inspect
util.inspect
object
stringify
pretty
@typescript-eslint/types
3.7.0 - 3.9.1
Outdated
Types for the TypeScript-ESTree AST spec
eslint
typescript
estree
has-symbols
1.0.2 - 1.0.3
Determine if the JS environment has Symbol support. Supports spec, or shams.
Symbol
symbols
typeof
sham
polyfill
+3
ljharb
side-channel
1.0.4
Outdated
Store information about any JS value in a side channel. Uses WeakMap if available.
weakmap
map
side
channel
metadata
ljharb
base64-js
1.3.0 - 1.5.1
Base64 encoding/decoding in pure JS
base64
has
1.0.1 - 1.0.3
Outdated
Object.prototype.hasOwnProperty.call shortcut
tarruda
scheduler
0.15.0 - 0.23.0
Outdated
Cooperative scheduler for the browser environment.
react
+1
prop-types
15.8.0 - 15.8.1
Runtime type checking for React props and similar objects.
react
react
17.0.0 - 18.2.0
Outdated
React is a JavaScript library for building user interfaces.
react
+1
@emotion/memoize
0.7.5 - 0.8.0
Outdated
emotion's memoize utility
+1
hoist-non-react-statics
3.3.1 - 3.3.2
Copies non-react specific statics from a child component to a parent component
react
mridgway
@emotion/unitless
0.7.2 - 0.8.0
Outdated
An object of css properties that don't accept values with units
+1
classnames
2.3.0 - 2.3.1
Outdated
A simple utility for conditionally joining classNames together
react
css
classes
classname
classnames
+2
query-string
6.5.0 - 7.1.3
Outdated
Parse and stringify URL query strings
browser
querystring
query
string
qs
+9
sindresorhus
react-transition-group
2.0.0 - 4.4.5
A react component toolset for managing animations
react
transition
addons
transition-group
animation
+2
dom-helpers
5.0.1 - 5.2.1
tiny modular DOM lib for ie9+
dom-helpers
react-component
dom
api
cross-browser
+8
@popperjs/core
2.11.6
Outdated
Tooltip and Popover Positioning Engine
tooltip
popover
dropdown
popup
popper
+1
lodash-es
4.17.21
Lodash exported as ES modules.
es6
modules
stdlib
util
redux
4.1.0 - 4.2.0
Outdated
Predictable state container for JavaScript apps
redux
reducer
state
predictable
functional
+6
+3
react-fast-compare
3.1.0 - 3.2.0
Outdated
Fastest deep equal comparison for React. Great for React.memo & shouldComponentUpdate. Also really fast general-purpose deep comparison.
fast
equal
react
compare
shouldComponentUpdate
+1
+12
filter-obj
1.1.0
Outdated
Filter object keys and values into a new object
filter
object
key
keys
value
+7
sindresorhus
babel-runtime
5.0.13 - 6.0.14
Outdated
babel selfContained runtime
reselect
4.1.1 - 4.1.7
Outdated
Selectors for Redux.
react
redux
+3
socket.io-parser
4.2.0 - 4.2.1
Outdated
socket.io protocol parser
shallowequal
1.0.1 - 1.1.0
Like lodash isEqualWith but for shallow equal.
shallowequal
shallow
equal
isequal
compare
+1
dashed
engine.io-parser
5.0.0 - 5.0.6
Outdated
Parser for the client for the realtime Engine
polished
2.1.1 - 4.2.2
Outdated
A lightweight toolset for writing styles in Javascript.
styled-components
polished
emotion
glamor
css-in-js
+9
split-on-first
1.0.0 - 1.1.0
Outdated
Split a string on the first occurance of a given separator
split
string
first
once
occurrence
+3
sindresorhus
styled-components
5.0.0 - 5.3.6
Outdated
CSS for the <Component> Age. Style components your way with speed, strong typing, and flexibility.
react
css
css-in-js
styled-components
styling
+1
react-hook-form
7.0.0 - 7.21.2
Outdated
Performant, flexible and extensible forms library for React Hooks
react
hooks
form
forms
form-validation
+3
bluebill1049
socket.io-client
4.0.0 - 4.2.0
Outdated
Realtime application framework client
realtime
framework
websocket
tcp
events
+1
base64-arraybuffer
0.1.5 - 1.0.2
Encode/decode base64 data into ArrayBuffers
niklasvh
engine.io-client
6.2.0 - 6.3.0
Outdated
Client for the realtime Engine
tabbable
5.3.0 - 6.0.1
Outdated
Returns an array of all tabbable DOM nodes within a containing node.
@reduxjs/toolkit
1.6.0 - 1.8.2
Outdated
The official, opinionated, batteries-included toolset for efficient Redux development
redux
react
starter
toolkit
reducer
+4
+2
@angular/router
10.0.0 - 14.1.3
Outdated
Angular - the routing library
angular
router
uncontrollable
7.1.0 - 7.2.1
Outdated
Wrap a controlled react component, to allow specific prop/handler pairs to be uncontrolled
uncontrolled-component
react-component
input
controlled
uncontrolled
+1
monastic.panic
react-datepicker
0.59.0
Outdated
A simple and reusable datepicker component for React
react
datepicker
calendar
date
react-component
react-draggable
4.4.1 - 4.4.5
Outdated
React draggable component
react
draggable
react-component
swr
0.2.3 - 0.5.7
Outdated
React Hooks library for remote data fetching
swr
react
hooks
request
cache
+1
+5
@datadog/browser-core
1.2.2 - 1.25.1
Outdated
Datadog browser core utilities.
datadog
lit-element
3.0.0
Outdated
A simple base class for creating fast, lightweight web components
+11
focus-trap
6.9.0 - 7.0.0
Outdated
Trap focus within a DOM node.
focus
accessibility
trap
capture
keyboard
+1
@restart/hooks
0.4.6 - 0.4.7
Outdated
A set of utility and general-purpose React hooks.
rc-trigger
4.3.0 - 4.3.4
Outdated
base abstract trigger component for react
react
react-component
react-trigger
trigger
+2
mobx
6.1.1 - 6.7.0
Outdated
Simple, scalable state management.
mobx
mobservable
observable
react-component
react
+7
+3
react-bootstrap
2.5.0 - 2.7.0
Outdated
Bootstrap 5 components built with React
bootstrap
react
component
components
ecosystem-react
+1
mobx-react-lite
3.0.0 - 3.4.0
Outdated
Lightweight React bindings for MobX based on React 16.8+ and Hooks
mobx
mobservable
react-component
react
reactjs
+4
shortid
2.2.15 - 2.2.16
Amazingly short non-sequential url-friendly unique id generator.
short
tiny
id
uuid
bitly
+4
@auth0/auth0-spa-js
2.0.0 - 2.0.2
Outdated
Auth0 SDK for Single Page Applications using Authorization Code Grant Flow with PKCE
auth0
login
Authorization Code Grant Flow
PKCE
Single Page Application authentication
+1
+41
@chakra-ui/theme
2.1.0 - 2.1.3
Outdated
The default theme for chakra components
theme
theming
ui mode
ui
focus-trap-react
8.11.3 - 10.0.1
Outdated
A React component that traps focus.
react
reactjs
react-component
aria
accessibility
+4
+1
@restart/ui
0.2.6 - 1.5.1
Outdated
Utilities for creating robust overlay components
react-overlays
react-component
react
overlay
react-component
+4
amplitude-js
5.2.0
Outdated
Javascript library for Amplitude Analytics
analytics
amplitude
+5
store
2.0.12
A localStorage wrapper for all browsers without using cookies or flash. Uses localStorage, globalStorage, and userData behavior under the hood
marcuswestin
analytics-utils
0.0.7 - 0.0.11
Outdated
Analytics utility functions used by 'analytics' module
analytics
analytics-project
analytics-utilities
davidwells
tesseract.js
2.0.0 - 4.0.2
Outdated
Pure Javascript Multilingual OCR
+1
browser-cookies
1.2.0
Tiny cookies library for the browser
cookies
cookie
client
voltace
@most/scheduler
0.7.0 - 1.3.0
Reactive programming with lean, functions-only, curried, tree-shakeable API
reactive
reactive programming
events
event stream
promise
+5
+2
react-amphtml
3.1.0 - 4.0.2
Use amphtml components inside your React apps easily!
react
amphtml
dfrankland
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
lodash
relay-runtime
react-relay
react-use
lodash-es
+51 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites