![Malicious npm Package Typosquats react-login-page to Deploy Keylogger](https://cdn.sanity.io/images/cgdhsj6q/production/007b21d9cf9e03ae0bb3f577d1bd59b9d715645a-1024x1024.webp?w=400&fit=max&auto=format)
Research
Security News
Malicious npm Package Typosquats react-login-page to Deploy Keylogger
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
@babel/plugin-transform-block-scoped-functions
Advanced tools
Package description
The @babel/plugin-transform-block-scoped-functions npm package is designed to ensure that functions defined within blocks (such as if statements or for loops) are properly scoped to those blocks in environments that may not support this feature natively. This is particularly useful for ensuring compatibility with older browsers or JavaScript environments that do not fully implement ES6 scoping rules.
Function Scoping
This feature ensures that functions defined within a block are scoped to that block. This is important for compatibility with ES6, where functions are block-scoped, unlike in ES5 where they are function-scoped. The plugin transforms the code to work correctly in environments that do not support block scoping natively.
"use strict";\n\nif (true) {\n function foo() { return 1; }\n}\n\nfoo(); // Throws ReferenceError in ES6, transformed code works by scoping function within the block
Similar to @babel/plugin-transform-block-scoped-functions, this package transforms let and const declarations to be properly scoped to blocks, ensuring compatibility with older environments. While @babel/plugin-transform-block-scoped-functions focuses specifically on function declarations, @babel/plugin-transform-block-scoping handles all block-scoped declarations.
While not a direct equivalent, @babel/preset-env includes @babel/plugin-transform-block-scoped-functions as part of its comprehensive transformation of ES6+ code to be compatible with a target environment. It provides a broader range of transformations, including block-scoped functions, making it a more versatile choice for projects needing wide-ranging compatibility.
Readme
Babel plugin to ensure function declarations at the block level are block scoped
See our website @babel/plugin-transform-block-scoped-functions for more information.
Using npm:
npm install --save-dev @babel/plugin-transform-block-scoped-functions
or using yarn:
yarn add @babel/plugin-transform-block-scoped-functions --dev
FAQs
Unknown package
We found that @babel/plugin-transform-block-scoped-functions demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
Security News
The JavaScript community has launched the e18e initiative to improve ecosystem performance by cleaning up dependency trees, speeding up critical parts of the ecosystem, and documenting lighter alternatives to established tools.
Product
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.