@cheapsteak/hast-util-find-and-replace
Advanced tools
hast utility to find and replace text in a tree.
npm:
npm install hast-util-find-and-replace
var h = require('hastscript')
var inspect = require('unist-util-inspect')
var findAndReplace = require('hast-util-find-and-replace')
var tree = h('p', [
'Some ',
h('em', 'emphasis'),
', ',
h('strong', 'importance'),
', and ',
h('code', 'code'),
'.'
])
findAndReplace(tree, 'and', 'or')
findAndReplace(tree, {emphasis: 'em', importance: 'strong'})
findAndReplace(tree, {
code: function($0) {
return h('a', {href: '//example.com#' + $0}, $0)
}
})
console.log(inspect(tree))
Yields:
element[9] [tagName="p"]
├─ text: "Some "
├─ element[1] [tagName="em"]
│ └─ text: "em"
├─ text: ", "
├─ element[1] [tagName="strong"]
│ └─ text: "strong"
├─ text: ", "
├─ text: "or"
├─ text: " "
├─ element[1] [tagName="code"]
│ └─ element[1] [tagName="a"][properties={"href":"//example.com#code"}]
│ └─ text: "code"
└─ text: "."
findAndReplace(tree, find[, replace][, options])Find and replace text in a hast tree.
The algorithm searches the tree in preorder for complete values
in Text nodes.
Partial matches are not supported.
findAndReplace(tree, find, replace[, options])findAndReplace(tree, search[, options])tree (Node)
— hast treefind (string or RegExp)
— Value to find and remove.
When string, escaped and made into a global RegExpreplace (string or Function)
— Value to insert.
When string, turned into a Text node.
When Function, invoked with the results of calling RegExp.exec as
arguments, in which case it can return a Node or a string, which
is in the latter case wrapped in a Text nodesearch (Object or Array)
— Perform multiple find-and-replace’s.
When Array, each entry is a tuple (Array) of a find (at 0) and
replace (at 1).
When Object, each key is a find (in string form) and each value is a
replaceoptions.ignore (Array, default: ['title', 'script', 'style', 'svg', 'math'])
— Tag-names of elements not to search.
This list can be accessed at findAndReplace.ignoreThe given, modified, tree.
Improper use of the replace can open you up to a
cross-site scripting (XSS) attack as the value of replace is injected
into the syntax tree.
The following example shows how a script is injected that runs when loaded in a
browser.
findAndReplace(h('p', 'This and that.'), 'and', function() {
return h('script', 'alert(1)')
})
Yields:
<p>This <script>alert(1)</script> that.</p>
Do not use user input in replace or use hast-util-santize.
hast-util-select
— querySelector, querySelectorAll, and matchesunist-util-select
— select unist nodes with CSS-like selectorsSee contributing.md in syntax-tree/.github for ways to get
started.
See support.md for ways to get help.
This project has a code of conduct. By interacting with this repository, organization, or community you agree to abide by its terms.
FAQs
hast utility to find and replace text in a tree
The npm package @cheapsteak/hast-util-find-and-replace receives a total of 2 weekly downloads. As such, @cheapsteak/hast-util-find-and-replace popularity was classified as not popular.
We found that @cheapsteak/hast-util-find-and-replace demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.