About
Community
zhihu.com
67 packages
Last scanned on Oct 27 at 07:05 PM
Update
Name
Size
Popularity
Severity
url-parse
1.5.3
Vulnerable
Outdated
Small footprint URL parser that works seamlessly across Node.js and browser environments
Script
https://static.zhihu.com/heifetz/main.app.5f133fd5d02f908b8fc4.js
License
MIT
Footprint
4 KB
Vulnerabilities
Moderate
GHSA-jf5r-8hm2-f872
url-parse incorrectly parses hostname / protocol due to unstripped leading control characters.
Affected versions >=0 <1.5.9
Moderate
GHSA-rqff-837h-mm52
Authorization bypass in url-parse
Affected versions >=0 <1.5.6
Critical
GHSA-hgjh-723h-mx2j
Authorization Bypass Through User-Controlled Key in url-parse
Affected versions >=0 <1.5.8
Moderate
GHSA-8v38-pw62-9cw2
url-parse Incorrectly parses URLs that include an '@'
Affected versions >=0 <1.5.7
Matched Modules
Version distribution in production
206
1.5.10
167
1.5.9
50
1.5.3
47
1.4.6
47
1.4.7
24
1.5.4
Also used on 395 websites
giphy.com
209 packages
imdb.com
78 packages
hulu.com
140 packages
iheart.com
110 packages
Repository
Homepage
More
URL
parser
uri
url
parse
+4
+1
lodash
4.17.16
Vulnerable
Outdated
Lodash modular utilities.
modules
stdlib
util
jws
0.2.0 - 0.2.4
Vulnerable
Outdated
Implementation of JSON Web Signatures
jws
json
web
signatures
+4
next-auth
4.0.1 - 4.15.0
Vulnerable
Outdated
Authentication for Next.js
react
nodejs
oauth
jwt
oauth2
+5
next
9.0.6 - 13.0.0
Vulnerable
Outdated
The React Framework
tslib
1.2.0 - 2.4.0
Outdated
Runtime library for TypeScript helper functions
TypeScript
Microsoft
compiler
language
javascript
+2
+5
uuid
7.0.0 - 8.0.0
Outdated
RFC4122 (v1, v4, and v5) UUIDs
uuid
guid
rfc4122
isarray
1.0.0 - 2.0.5
Array#isArray for older browsers
browser
isarray
array
juliangruber
is-fullwidth-code-point
1.0.0
Outdated
Check if the character represented by a given Unicode code point is fullwidth
fullwidth
full-width
full
width
unicode
+9
sindresorhus
buffer
4.6.0 - 4.9.2
Outdated
Node.js Buffer API, for the browser
arraybuffer
browser
browserify
buffer
compatible
+2
feross
@babel/runtime
7.18.2 - 7.20.0
Outdated
babel's modular runtime helpers
+1
rxjs
6.5.0 - 6.6.7
Outdated
Reactive Extensions for modern JavaScript
Rx
RxJS
ReactiveX
ReactiveExtensions
Streams
+5
base64-js
1.3.0 - 1.5.1
Base64 encoding/decoding in pure JS
base64
events
3.0.0 - 3.3.0
Node's event emitter for all engines.
events
eventEmitter
eventDispatcher
listeners
eventemitter3
2.0.0 - 4.0.7
Outdated
EventEmitter3 focuses on performance while maintaining a Node.js AND browser compatible interface.
EventEmitter
EventEmitter2
EventEmitter3
Events
addEventListener
+10
requires-port
1.0.0
Check if a protocol requires a certain port number to be added to an URL.
port
require
http
https
ws
+11
prop-types
15.8.0 - 15.8.1
Runtime type checking for React props and similar objects.
react
react
17.0.0 - 18.2.0
React is a JavaScript library for building user interfaces.
react
+1
querystringify
2.2.0
Querystringify - Small, simple but powerful query string parser.
query
string
query-string
querystring
qs
+4
+1
url
0.11.0
Outdated
The core `url` packaged standalone for use with Browserify.
parsing
url
analyze
date-fns
2.29.3
Outdated
Modern JavaScript date utility library
kossnocorp
classnames
2.3.0 - 2.3.1
Outdated
A simple utility for conditionally joining classNames together
react
css
classes
classname
classnames
+2
@emotion/is-prop-valid
0.8.8
Outdated
A function to check whether a prop is valid for HTML and SVG elements
+1
graphql
15.0.0 - 15.8.0
Outdated
A Query Language and Runtime which can target any service.
graphql
graphql-js
+5
snapdragon-util
2.1.0 - 2.1.1
Outdated
Utilities for the snapdragon parser/compiler.
capture
compile
compiler
convert
match
+8
@emotion/serialize
0.11.12 - 0.11.16
Outdated
serialization utils for emotion
+1
@emotion/utils
0.0.4 - 0.11.3
Outdated
internal utils for emotion
+1
@emotion/sheet
0.9.1 - 0.9.4
Outdated
emotion's stylesheet
+1
react-router
3.0.0 - 3.2.6
Outdated
Declarative routing for React
react
router
route
routing
history
+1
is-promise
2.1.0 - 4.0.0
Test whether an object looks like a promises-a+ promise
@emotion/weak-memoize
0.1.1 - 0.3.0
Outdated
A memoization function that uses a WeakMap
+1
lodash-es
4.17.21
Lodash exported as ES modules.
es6
modules
stdlib
util
react-fast-compare
3.1.0 - 3.2.0
Outdated
Fastest deep equal comparison for React. Great for React.memo & shouldComponentUpdate. Also really fast general-purpose deep comparison.
fast
equal
react
compare
shouldComponentUpdate
+1
+12
crypto-browserify
0.0.0 - 2.0.0
Outdated
implementation of crypto for the browser
+2
js-cookie
3.0.1
Outdated
A simple, lightweight JavaScript API for handling cookies
cookie
cookies
browser
amd
commonjs
+3
querystring-es3
0.2.1
Node's querystring module for all engines. (ES3 compat fork)
commonjs
query
querystring
spaintrain
reselect
3.0.0 - 3.0.1
Outdated
Selectors for Redux.
react
redux
+3
shallowequal
1.0.1 - 1.1.0
Like lodash isEqualWith but for shallow equal.
shallowequal
shallow
equal
isequal
compare
+1
dashed
raf
3.0.0 - 3.1.0
Outdated
requestAnimationFrame polyfill for node and the browser
requestAnimationFrame
polyfill
throttleit
1.0.0
Outdated
Throttle a function to limit its execution rate
throttle
rate
limit
limited
rate-limit
+8
sindresorhus
redux-thunk
2.1.0 - 2.4.1
Outdated
Thunk middleware for Redux.
redux
thunk
middleware
redux-middleware
flux
+2
framer-motion
5.0.0 - 6.1.0
Outdated
A simple and powerful JavaScript animation library
react animation
react
three
3d
pose
+8
+36
tabbable
3.1.1 - 3.1.2
Outdated
Returns an array of all tabbable DOM nodes within a containing node.
uncontrollable
3.0.0 - 7.2.1
Outdated
Wrap a controlled react component, to allow specific prop/handler pairs to be uncontrolled
uncontrolled-component
react-component
input
controlled
uncontrolled
+1
monastic.panic
@emotion/core
10.0.17 - 10.3.1
Outdated
+1
framesync
4.1.0 - 6.1.2
A frame-synced render loop for JavaScript
animation
raf
popmotion
swr
0.2.3 - 0.5.7
Outdated
React Hooks library for remote data fetching
swr
react
hooks
request
cache
+1
+5
react-use
7.3.0 - 17.4.0
Outdated
Collection of React Hooks
streamich
react-beautiful-dnd
1.0.0 - 6.0.2
Outdated
Beautiful and accessible drag and drop for lists with React
drag and drop
dnd
sortable
reorder
reorderable
+5
react-intl
1.1.0 - 1.2.2
Outdated
Internationalize React apps. This library provides React components and an API to format dates, numbers, and strings, including pluralization and handling translations.
intl
i18n
internationalization
locale
localization
+7
+5
popmotion
7.3.1 - 11.0.5
The animator's toolbox
animation
ux
ui
popmotion
canvas animation
+11
popmotion
style-value-types
1.0.0 - 5.1.2
Parsers, transformers and tests for special value types, eg: %, hex codes etc.
css
svg
hex
rgba
hsla
popmotion
antd
3.11.3
Outdated
An enterprise-class UI design language and React components implementation
ant
component
components
design
framework
+4
+4
@emotion/styled-base
10.0.0 - 10.3.0
Outdated
Deprecated package which became `@emotion/styled/base`
+1
@reach/utils
0.10.1 - 0.14.0
Outdated
Internal, shared utilities for Reach UI.
+1
styled-system
3.1.0 - 3.1.2
Outdated
Responsive, theme-based style props for building design systems with React
react
css-in-js
styled-components
emotion
react-dates
14.1.0 - 21.8.0
A responsive and accessible date range picker component built with React
+4
react-native-web
0.0.72 - 0.0.74
Outdated
React Native for Web
react
react-component
react-native
web
necolas
normalizr
3.5.0 - 3.6.2
Normalizes and denormalizes JSON according to schema for Redux and Flux applications
flux
redux
normalize
denormalize
api
+1
@styled-system/should-forward-prop
5.0.7 - 5.1.5
Utility for filtering Styled System props with Emotion's shouldForwardProp option
jxnblk
subscribe-ui-event
2.0.0 - 2.0.7
A single, throttle built-in solution to subscribe to browser UI Events.
addEventListener
browser
events
requestAnimationFrame
resize
+3
+2
browser-cookies
1.0.0 - 1.0.2
Outdated
Tiny cookies library for the browser
cookies
cookie
client
voltace
@tannin/plural-forms
1.0.0 - 1.1.0
Compiles a function to compute the plural forms index for a given value
aduth
@theme-ui/components
0.2.45 - 0.13.1
Outdated
Primitive layout, typographic, and other components for use with Theme UI.
+1
@theme-ui/color-modes
0.11.0 - 0.15.3
Outdated
Adds support for user-controlled color modes
+1
lottie-api
1.0.0 - 1.0.2
Outdated
A library to edit lottie-web animations dynamically
airnan
botframework-webchat
0.11.2 - 0.15.0
Outdated
A highly-customizable web-based chat client for Azure Bot Services.
+5
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
lodash
relay-runtime
react-relay
react-use
lodash-es
+51 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites