![Namecheap Takes Down Polyfill.io Service Following Supply Chain Attack](https://cdn.sanity.io/images/cgdhsj6q/production/6af25114feaaac7179b18127c83327568ff592d1-1024x1024.webp?w=800&fit=max&auto=format)
Security News
Namecheap Takes Down Polyfill.io Service Following Supply Chain Attack
Polyfill.io has been serving malware for months via its CDN, after the project's open source maintainer sold the service to a company based in China.
@babel/plugin-transform-block-scoping
Advanced tools
Package description
The @babel/plugin-transform-block-scoping npm package is a Babel plugin that transforms JavaScript code to convert block scoping (let and const) to function scoping (var) where necessary. This is particularly useful for ensuring compatibility with older environments that do not support ES6 block-scoped variables.
Transform let and const to var
This feature transforms block-scoped variables (let and const) into function-scoped variables (var) to ensure compatibility with older JavaScript engines.
if (true) {
let x = 'hello';
}
// Transformed to:
if (true) {
var x = 'hello';
}
Block scoping for loops
This feature correctly scopes the loop variable within closures, preventing common errors when using setTimeout or similar asynchronous functions within loops.
for (let i = 0; i < 3; i++) {
setTimeout(function() { console.log(i); }, 0);
}
// Transformed to:
for (var i = 0; i < 3; i++) {
(function(i) {
setTimeout(function() { console.log(i); }, 0);
})(i);
}
This package is a predecessor to @babel/plugin-transform-block-scoping and offers similar functionality, transforming ES2015 block-scoped variables to ES5. It is now deprecated in favor of the @babel suite of plugins.
While not a direct alternative, fast-async is a Babel plugin that transforms async/await and generators to ES5, including handling block scoping within async functions. It provides a different set of features but deals with modern JavaScript syntax transformation like @babel/plugin-transform-block-scoping.
babel-preset-env is a Babel preset that includes @babel/plugin-transform-block-scoping among other plugins. It automatically determines the Babel plugins and polyfills you need based on your supported environments. It's a more comprehensive solution that includes similar functionality.
Changelog
v7.24.7 (2024-06-05)
babel-node
babel-traverse
constantViolations
with destructuring (@liuxingbaoyu)babel-helper-transform-fixture-test-runner
, babel-plugin-proposal-explicit-resource-management
using
in switch
correctly (@liuxingbaoyu)babel-helpers
, babel-runtime-corejs2
, babel-runtime-corejs3
, babel-runtime
Readme
Compile ES2015 block scoping (const and let) to ES5
See our website @babel/plugin-transform-block-scoping for more information.
Using npm:
npm install --save-dev @babel/plugin-transform-block-scoping
or using yarn:
yarn add @babel/plugin-transform-block-scoping --dev
FAQs
Compile ES2015 block scoping (const and let) to ES5
The npm package @babel/plugin-transform-block-scoping receives a total of 14,981,288 weekly downloads. As such, @babel/plugin-transform-block-scoping popularity was classified as popular.
We found that @babel/plugin-transform-block-scoping demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Polyfill.io has been serving malware for months via its CDN, after the project's open source maintainer sold the service to a company based in China.
Security News
OpenSSF is warning open source maintainers to stay vigilant against reputation farming on GitHub, where users artificially inflate their status by manipulating interactions on closed issues and PRs.
Security News
A JavaScript library maintainer is under fire after merging a controversial PR to support legacy versions of Node.js.