![Malicious npm Package Typosquats react-login-page to Deploy Keylogger](https://cdn.sanity.io/images/cgdhsj6q/production/007b21d9cf9e03ae0bb3f577d1bd59b9d715645a-1024x1024.webp?w=400&fit=max&auto=format)
Research
Security News
Malicious npm Package Typosquats react-login-page to Deploy Keylogger
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
@babel/helper-plugin-utils
Advanced tools
Package description
The @babel/helper-plugin-utils package is designed to simplify the creation and management of Babel plugins. It provides utility functions that help in validating and constructing Babel plugins with the correct structure and options. This package is particularly useful for developers working on custom Babel plugins, as it abstracts away some of the boilerplate code required for plugin development.
Creating a simple Babel plugin
This code sample demonstrates how to use the `declare` function from @babel/helper-plugin-utils to create a simple Babel plugin. The `declare` function takes a callback that receives the Babel API, plugin options, and the directory name. Inside the callback, you can define your plugin logic under the `visitor` object, targeting specific types of AST nodes.
const { declare } = require('@babel/helper-plugin-utils');
const myPlugin = declare((api, options, dirname) => {
api.assertVersion(7);
return {
visitor: {
Identifier(path) {
// Plugin logic goes here
}
}
};
});
module.exports = myPlugin;
While not a utility for creating plugins directly, @babel/core is the core library of the Babel ecosystem and provides the API for transforming code. It is often used alongside @babel/helper-plugin-utils for developing custom Babel plugins. Compared to @babel/helper-plugin-utils, @babel/core is more comprehensive and includes functionalities for parsing, transforming, and generating code.
babel-plugin-tester is a package designed to help test Babel plugins. It provides a simple and powerful API for writing tests for your Babel plugins, making it easier to ensure they work as expected. While @babel/helper-plugin-utils aids in the creation of plugins, babel-plugin-tester complements it by offering a streamlined testing workflow.
Changelog
v7.21.5 (2023-04-28)
babel-generator
, babel-parser
, babel-types
mixins
and implements
for DeclareInterface
and InterfaceDeclaration
(@liuxingbaoyu)babel-core
, babel-generator
, babel-plugin-transform-modules-commonjs
, babel-plugin-transform-react-jsx
)
position with createParenthesizedExpressions
(@liuxingbaoyu)babel-preset-env
babel-types
babel-core
lt
instead of lte
to check TS version for .cts config (@nicolo-ribaudo)babel-core
import.meta.resolve
(@nicolo-ribaudo)babel-helper-fixtures
, babel-preset-typescript
babel-helper-create-class-features-plugin
, babel-helper-create-regexp-features-plugin
semver
package to compare versions (@nicolo-ribaudo)Readme
General utilities for plugins to use
See our website @babel/helper-plugin-utils for more information.
Using npm:
npm install --save @babel/helper-plugin-utils
or using yarn:
yarn add @babel/helper-plugin-utils
FAQs
Unknown package
We found that @babel/helper-plugin-utils demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
Security News
The JavaScript community has launched the e18e initiative to improve ecosystem performance by cleaning up dependency trees, speeding up critical parts of the ecosystem, and documenting lighter alternatives to established tools.
Product
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.