Research
Security News
Malicious npm Package Typosquats react-login-page to Deploy Keylogger
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
@aws-sdk/util-uri-escape
Advanced tools
Package description
The @aws-sdk/util-uri-escape package is part of the AWS SDK for JavaScript and provides utilities for encoding and decoding URI components. It's specifically designed to handle the quirks of URI encoding in a way that's compatible with AWS service expectations. This can be particularly useful when working with AWS services that require specific encoding of URIs for API requests.
URI encoding
This feature allows you to encode URI components to ensure they are safe to transmit over the network. It is particularly useful for encoding paths and query parameters that may contain characters which have special meanings in URIs.
"import { escapeUri } from '@aws-sdk/util-uri-escape';\nconst encodedUri = escapeUri('/path/to resource?queryParam=value');"
URI decoding
This feature enables the decoding of URI components. It's useful for parsing encoded URIs to retrieve the original data. This can be particularly important when handling encoded URIs received from web requests or other sources.
"import { unescapeUri } from '@aws-sdk/util-uri-escape';\nconst decodedUri = unescapeUri('%2Fpath%2Fto%20resource%3FqueryParam%3Dvalue');"
The querystring package provides utilities for parsing and formatting URL query strings. It's similar to @aws-sdk/util-uri-escape in that it deals with URL encoding and decoding, but it focuses specifically on the query string portion of the URL.
Though not a package, encodeURIComponent is a built-in JavaScript function that provides similar functionality to the encoding aspect of @aws-sdk/util-uri-escape. It's designed to encode a URI component by escaping certain characters. However, it does not include decoding functionality and is not tailored to AWS's specific requirements.
Changelog
Readme
FAQs
Unknown package
The npm package @aws-sdk/util-uri-escape receives a total of 2,378,512 weekly downloads. As such, @aws-sdk/util-uri-escape popularity was classified as popular.
We found that @aws-sdk/util-uri-escape demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 5 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
Security News
The JavaScript community has launched the e18e initiative to improve ecosystem performance by cleaning up dependency trees, speeding up critical parts of the ecosystem, and documenting lighter alternatives to established tools.
Product
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.