JavaScript Libraries

Endless Lifecycle Support (ELS) for Libraries from TuxCare provides security fixes for a variety of JavaScript Libraries. This allows you to continue running your JavaScript applications without vulnerability concerns, even after official support has ended.

Supported JavaScript Libraries

acorn 6.0.4, 6.2.0
adm-zip 0.4.4
ag-grid 16.0.1, 17.1.0, 17.1.1, 18.0.1, 18.1.2
ag-grid-community 20.2.0, 21.0.0, 23.0.2, 23.2.1, 24.1.0, 25.0.0, 26.1.0, 26.2.0, 26.2.1, 28.1.0, 28.1.1, 28.2.0, 29.1.0, 30.1.0, 30.2.0, 31.1.1
ajv 4.11.8, 5.5.2, 6.4.0, 6.12.3, 6.12.4, 6.12.6, 6.14.0, 8.6.2, 8.9.0, 8.11.0, 8.12.0, 8.17.1
animations 6.0.1
ansi-html 0.0.7
ansi-regex 3.0.0
async 2.6.1, 2.6.3
axios 0.15.3, 0.18.1, 0.19.2, 0.27.2, 0.33.0
azure-identity 4.0.1
babel-helpers 7.15.4, 7.24.0, 7.24.1, 7.25.6, 7.26.0
babel-plugin-transform-modules-systemjs 7.15.4, 7.23.9, 7.24.1, 7.25.0
babel-runtime 7.11.2, 7.12.5, 7.12.18, 7.14.8, 7.15.4, 7.16.7, 7.18.9, 7.21.0, 7.22.6, 7.22.15, 7.23.1, 7.23.2, 7.23.9, 7.24.0, 7.24.1, 7.24.4, 7.24.7, 7.25.7, 7.26.0
babel-runtime-corejs3 7.15.3
babel-traverse 6.26.0, 7.15.4
base64url 0.0.6
basic-ftp 5.0.5, 5.3.1
bn.js 4.11.8, 4.12.0
body-parser 1.8.4, 1.13.3, 1.14.2, 1.19.0, 1.20.1, 1.20.2
bower 1.8.4
brace-expansion 1.1.11, 2.0.1
braces 0.1.5, 1.8.5, 2.3.1, 2.3.2, 3.0.2, 3.0.3
browserify-sign 4.0.4, 4.2.1
browserslist 4.10.0, 4.13.0, 4.27.0
bson 0.5.7, 1.0.9
chownr 0.0.2, 1.0.1
cipher-base 1.0.4
ckeditor 4.5.11
ckeditor4 4.17.1
clean-css 2.2.23, 3.4.28
concat-stream 1.4.8, 1.4.10, 1.5.0
connect 1.9.2, 2.6.0, 2.7.5
cookie 0.0.5, 0.1.3, 0.3.1, 0.4.0, 0.4.2, 0.5.0, 0.6.0, 0.7.2
copy-anything 2.0.6
cross-spawn 0.2.9, 3.0.1, 5.1.0, 6.0.5, 7.0.3
crypto-js 3.3.0
csvtojson 2.0.8
datatables.net 1.10.13
debug 0.7.4, 1.0.5, 2.1.1, 2.2.0, 2.3.3, 2.6.9, 3.1.0, 3.2.6, 3.2.7, 4.1.1, 4.4.3
decode-uri-component 0.2.0
defu 6.1.2
devalue 2.0.1, 4.3.3
diff 1.0.2, 1.4.0, 3.5.0, 7.0.0
dns-packet 1.3.1
dompurify 2.3.0, 2.4.0, 2.4.3, 2.4.7, 2.5.8, 2.5.9, 3.0.3, 3.1.6, 3.2.3
dset 3.1.3
ejs 1.0.0, 2.7.4, 3.1.9
elliptic 6.4.1, 6.5.4, 6.5.5, 6.6.0, 6.6.1
engine.io 3.2.1
es5-ext 0.10.7, 0.10.46
esbuild 0.13.8, 0.14.22, 0.14.25, 0.14.54, 0.15.5, 0.15.18, 0.17.8, 0.17.15, 0.17.19, 0.18.17, 0.18.20, 0.19.8, 0.19.12, 0.20.1, 0.21.5, 0.23.1
eslint-plugin-kit 0.2.7
eventsource 0.1.6, 1.1.0
express-jwt 0.1.3, 0.1.4
extend 3.0.0
fast-uri 3.0.1, 3.0.3
fast-xml-parser 3.14.0, 3.17.5, 3.19.0, 4.2.7, 4.4.0, 4.5.3, 4.5.6
file-type 17.1.6
flatted 3.2.9, 3.3.3
follow-redirects 0.0.3, 1.5.10, 1.15.2, 1.15.3, 1.15.5, 1.15.6, 1.15.9, 1.15.11
form-data 0.0.8, 0.1.4, 0.2.0, 1.0.0-rc3, 1.0.1, 2.0.0, 2.1.4, 2.3.3, 4.0.0, 4.0.1
formidable 2.1.2, 2.1.5
forwarded 0.1.0
fresh 0.2.4, 0.3.0, 0.5.2
fstream 1.0.8
gh-pages 0.12.0
glob 10.2.6, 10.4.5
got 2.9.2, 8.3.2, 9.6.0
growl 1.7.0
handlebars 1.0.12, 1.3.0, 2.0.0, 3.0.3, 4.7.7, 4.7.8
hapi-hoek 6.2.4
hawk 0.13.1, 1.0.0, 1.1.1, 2.3.1, 3.1.0
highlight.js 9.18.5
hoek 0.8.5, 0.9.1, 2.11.1, 2.12.0, 2.14.0, 2.16.3, 4.2.1
http-proxy-middleware 0.19.1, 2.0.8
i18next 23.16.8
ini 1.3.5
ip 1.1.5, 1.1.9, 2.0.0, 2.0.1
is-my-json-valid 2.10.1, 2.12.2
jquery-validation 1.19.0
js-cookie 2.2.1
js-yaml 3.3.1, 3.7.0, 3.14.1, 4.1.0
json5 0.4.0, 0.5.1, 1.0.1, 1.0.2
jsoneditor 5.19.0
jsonpath-plus 5.1.0, 6.0.1, 7.2.0
jsonpointer 1.1.0, 2.0.0, 4.1.0
jspdf 1.4.1, 2.5.1, 2.5.2, 3.0.4
knex 0.95.15
loader-utils 0.2.17, 1.1.0, 1.2.3, 2.0.0
lodash.merge 3.3.2
log4js 3.0.6, 4.5.1
markdown-it 4.0.3, 4.3.0, 8.4.2, 13.0.2
marked 0.2.10, 0.7.0, 4.0.6, 4.0.7, 4.0.9
mem 1.1.0
micromatch 2.3.11, 3.1.10
mime 1.2.11, 1.3.0, 1.3.4
minimatch 0.0.4, 0.0.5, 0.2.14, 0.3.0, 1.0.0, 2.0.10, 3.0.4, 3.1.2, 3.1.5, 5.1.0
minimist 0.0.8, 0.0.10, 1.2.0, 1.2.1, 1.2.8
moment 2.10.6, 2.24.0
moment-timezone 0.4.1
morgan 1.5.3
mout 0.9.1, 0.11.0
multer 1.4.5-lts, 1.4.5-lts.2
mysql 2.18.1
negotiator 0.5.3
netmask 1.0.6
nguniversal-express-engine 10.1.0
node-forge 0.10.0
nth-check 1.0.2
object-path 0.11.4
parse-git-config 3.0.0
parsejson 0.0.3
path-to-regexp 0.1.3, 0.1.12
pdfjs-dist 2.16.105, 3.11.174
picocolors 0.2.1
picomatch 2.3.1, 4.0.2
prismjs 1.27.0, 1.29.0
protobufjs 6.11.6
protobufjs-utf8 1.1.0
pug 2.0.4
qs 0.5.1, 0.6.6, 1.0.2, 1.2.2, 2.2.5, 2.3.3, 2.4.2, 4.0.0, 5.1.0, 5.2.0, 6.5.3, 6.5.5, 6.14.0
quill 1.3.7
redis 2.8.0
request 2.88.0, 2.88.2
rollup 0.41.6, 0.57.1, 2.1.0, 2.26.5, 2.38.4, 2.79.1, 2.79.2
sanitize-html 1.27.5
semver 2.3.2, 4.3.6, 5.0.3, 6.3.0, 7.1.3, 7.3.2, 7.3.4, 7.3.8
sentry-browser 5.7.1
serialize-javascript 1.9.1, 3.1.0, 4.0.0, 5.0.1, 6.0.2
shell-quote 1.4.3, 1.7.2
shelljs 0.1.4, 0.3.0
socket.io 2.1.1
socket.io-parser 3.2.0, 3.3.4, 3.4.3, 4.2.4
ssr-window 4.0.2
stringstream 0.0.4, 0.0.5
svgo 2.8.0
swiper 11.2.10
tar 1.0.3, 2.1.1, 2.2.1, 2.2.2, 4.4.19, 6.0.2, 6.2.1
terser 3.17.0, 4.6.3, 4.6.10, 4.8.1, 5.3.0, 5.5.1, 5.7.1
tinymce 4.9.11, 5.10.9, 6.8.6
tmp 0.0.24, 0.0.28, 0.0.30, 0.0.33, 0.1.0, 0.2.1
tough-cookie 0.12.1, 1.2.0, 2.2.0, 2.4.3, 2.5.0, 3.0.1
tunnel-agent 0.3.0, 0.4.0, 0.4.3
ua-parser-js 0.7.21
uglify-js 1.1.1, 1.3.5, 2.3.6
underscore 1.4.4, 1.6.0, 1.7.0
underscore.string 2.2.1, 2.3.3
uuid 3.4.0, 8.3.2, 9.0.1, 11.0.5
validator 8.2.0, 10.11.0
webpack-dev-middleware 1.12.2, 3.7.2, 3.7.3, 5.0.0, 5.3.0, 5.3.3
webpack-subresource-integrity 1.4.0, 1.4.1
websocket-extensions 0.1.1
ws 1.1.1, 1.1.2, 3.3.3, 4.1.0, 7.4.6
xlsx 0.18.5
xml2js 0.2.6, 0.2.8, 0.4.23
xmlhttprequest-ssl 1.5.3, 1.5.5
yaml 1.10.2
yargs-parser 4.2.1, 7.0.0, 10.1.0, 11.1.1, 13.1.2
zod 3.25.76

Other libraries upon request.

Installation

Docker compatible

Prerequisites

npm package manager installed
TuxCare registry token — contact sales@tuxcare.com
To browse available artifacts, visit TuxCare Nexus and click Sign in in the top right corner. You may need to refresh the page after logging in.

Create or update the .npmrc file
Navigate to the root directory of your JavaScript Libraries project and create a .npmrc file or update it if it already exists.
Example:
```
my-javascript-project/
├── node_modules/
├── package.json
├── .npmrc         ⚠️ ← Create it here
└── package-lock.json
```
Configure the npm registry
Use an editor of your choice (e.g., VS Code) to add the following registry address lines to the .npmrc file:
```
registry=https://registry.npmjs.org/
@els-js:registry=https://nexus.repo.tuxcare.com/repository/els_js/
//nexus.repo.tuxcare.com/repository/els_js/:_auth=${TOKEN}
```
Replace ${TOKEN} with the token you received from sales@tuxcare.com.
Update dependencies
Update your package.json file to replace JavaScript library dependencies with TuxCare-maintained packages. You can do this in two ways:
- Option 1: Manual update
  Manually update your package.json file by replacing your JavaScript library dependencies with the TuxCare packages. This method gives you full control over which packages to update.
```
"dependencies": {
  "cookie": "npm:@els-js/cookie@>=0.4.2-tuxcare.1"
},
"overrides": {
  "cookie@0.4.2": "npm:@els-js/cookie@>=0.4.2-tuxcare.1"
}
```
- Option 2: TuxCare Patcher (Automated)
  Install the Patcher globally and run it. The TuxCare Patcher automatically detects the JavaScript library versions in your package.json and updates your dependencies and overrides to use the corresponding TuxCare @els-js/* packages.
```
npm install -g @els-js/tuxcare-patcher --userconfig ./.npmrc
tuxcare-patch-js
```
Refresh the project dependencies
Remove node_modules, package-lock.json, and clear the npm cache:
```
rm -rf node_modules package-lock.json && npm cache clean --force
```
Install dependencies:
```
npm install
```
The token for the TuxCare repository is automatically picked up from your .npmrc file.
Verify the setup
Use npm to list the project's dependencies and confirm TuxCare packages are resolved correctly:
```
npm list
```
After reviewing the dependencies, run your application to ensure everything works correctly. The npm tool should be able to identify and resolve dependencies from the TuxCare ELS for JavaScript Libraries repository.