Security News
The Dark Side of Open Source
At Node Congress, Socket CEO Feross Aboukhadijeh uncovers the darker aspects of open source, where applications that rely heavily on third-party dependencies can be exploited in supply chain attacks.
@01sal/lotide
Advanced tools
Readme
A mini clone of the Lodash library.
BEWARE: This library was published for learning purposes. It is not intended for use in production-grade software.
This project was created and published by me as part of my learnings at Lighthouse Labs.
Install it:
npm install @01saleban/lotide
Require it:
const _ = require('@01saleban/lotide');
Call it:
const results = _.tail([1, 2, 3]) // => [2, 3]
The following functions are currently implemented:
assertArraysEqual(arr,arr)
: Test if two arrays are equalassertEqual(Str)
: Test if two arrays are equal Str .assertObjectsEqual(obj, obj)
: Test if two arrays are equal ObjcountLetters(str)
: Count the letters from string.countOnly(arr, obj)
: Returns object from key/value iterative pairs.eqArrays(arr, arr)
: Equality-check through arrays.eqObjects(obj, obj)
: Equality-check through objects.findKey(obj, callback)
: Key search on object.findKeyByValue(key, str)
: Key search on object where the value matches is provide value.head(arr)
: Return the first element of array.letterPositions(str)
: Return the position of a character.map(arr, callback)
: Return new array on results of callback function.middle(arr)
: Get the middle element of array.tail(arr)
: Gets the last element of array.takeUntil(arr)
: Return apart of array until a desired index.without(arr)
: return array without indicated elements.FAQs
A mini clone of the [Lodash](https://lodash.com) library.
The npm package @01sal/lotide receives a total of 1 weekly downloads. As such, @01sal/lotide popularity was classified as not popular.
We found that @01sal/lotide demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
At Node Congress, Socket CEO Feross Aboukhadijeh uncovers the darker aspects of open source, where applications that rely heavily on third-party dependencies can be exploited in supply chain attacks.
Research
Security News
The Socket Research team found this npm package includes code for collecting sensitive developer information, including your operating system username, Git username, and Git email.
Security News
OpenJS is warning of social engineering takeovers targeting open source projects after receiving a credible attempt on the foundation.