![Malicious npm Package Typosquats react-login-page to Deploy Keylogger](https://cdn.sanity.io/images/cgdhsj6q/production/007b21d9cf9e03ae0bb3f577d1bd59b9d715645a-1024x1024.webp?w=400&fit=max&auto=format)
Research
Security News
Malicious npm Package Typosquats react-login-page to Deploy Keylogger
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
@audius/fixed-decimal
Advanced tools
Readme
A data structure to represent fixed precision decimals.
FixedDecimal
is a data structure used to represent fixed precision decimals.
It's particularly useful for representing currency, especially cryptocurrency, as the underlying bigint
can handle large amounts and extremely fractional amounts while keeping exact precision, and the configured decimal places count allows the class to conveniently operate on the underlying value and represent it in a user-friendly manner.
Unlike BigDecimal
solutions elsewhere, FixedDecimal
is not intended to be persisted and arithmetically operated on, but rather used ephemerally for normalizing and formatting. Almost all of its methods are chainable to make it convenient to initialize a FixedDecimal
, operate on it, and immediately get back a string or bigint
representation.
In fact, you probably won't need to initialize a FixedDecimal
directly. Instead, use helper currency constructors that will ensure the input will be coerced to the proper number of decimals.
npm install @audius/fixed-decimal
new FixedDecimal('12.345').toString() // '12.345'
new FixedDecimal(12.345).toString() // '12.345'
new FixedDecimal(BigInt(12345), 3).toString() // '12.345'
new FixedDecimal('12.345', 6).toString() // '12.345000'
new FixedDecimal(12.345, 6).toString() // '12.345000'
new FixedDecimal(BigInt(12345), 6).toString() // '0.012345'
new FixedDecimal(12345.6789).toLocaleString('en-US', {
maximumFractionDigits: 2
}) // 12,345.67
new FixedDecimal(12345.6789).toLocaleString('en-US', {
maximumFractionDigits: 2,
roundingMode: 'halfExpand'
}) // 12,345.68
If, for example, you want to use the 18 decimal ETH in your code, you could create a helper like:
const ETH = (value) => new FixedDecimal(value, 18)
// Calling .value will get the wei amount
console.log(ETH('1.42')).value // 1420000000000000000n
// Can also go from wei to UI string
console.log(
ETH(12345678901234567890n).toLocaleString('en-US', {
maximumFractionDigits: 2
})
) // 12.34
More examples and documentation can be found in the JSDoc and in the tests.
FAQs
Unknown package
The npm package @audius/fixed-decimal receives a total of 110 weekly downloads. As such, @audius/fixed-decimal popularity was classified as not popular.
We found that @audius/fixed-decimal demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 12 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
Security News
The JavaScript community has launched the e18e initiative to improve ecosystem performance by cleaning up dependency trees, speeding up critical parts of the ecosystem, and documenting lighter alternatives to established tools.
Product
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.