
Research
/Security News
jscrambler npm Package Compromised in Supply Chain Attack
A compromised jscrambler npm release added a malicious preinstall hook that runs hidden native binaries on Linux, macOS, and Windows.
@complex-suite/utils
Advanced tools
@complex-suite/utils 是一个功能强大且全面的 TypeScript/JavaScript 工具库,旨在为现代Web开发提供一组高效、可靠的辅助函数和类。
npm install @complex-suite/utils
Life - 事件与生命周期管理器一个强大的发布-订阅(Pub/Sub)系统,用于管理事件回调和生命周期。
import { Life } from '@complex-suite/utils';
const life = new Life();
// 订阅事件
const id = life.on('data-loaded', (data) => {
console.log('Data has been loaded:', data);
});
// 触发事件
life.trigger('data-loaded', { user: 'Alice' });
// 取消订阅
life.off('data-loaded', id);
Limit - 白名单/黑名单限制器轻松实现功能的白名单或黑名单控制。
import { Limit } from '@complex-suite/utils';
// 黑名单模式 (默认)
const blackList = new Limit({ list: ['admin'] });
console.log(blackList.getLimit('admin')); // true (被限制)
console.log(blackList.getLimit('user')); // false (不被限制)
// 白名单模式
const whiteList = new Limit({ type: 'allow', list: ['user'] });
console.log(whiteList.getLimit('admin')); // true (被限制)
console.log(whiteList.getLimit('user')); // false (不被限制)
debounce - 函数防抖在事件频繁触发时,确保函数只在最后一次触发后的指定时间内执行一次。
import { debounce } from '@complex-suite/utils';
window.addEventListener(
'resize',
debounce(() => {
console.log('Window resized!');
}, 250)
);
throttle - 函数节流确保函数在指定的时间间隔内最多只执行一次。
import { throttle } from '@complex-suite/utils';
window.addEventListener(
'scroll',
throttle(() => {
console.log('User is scrolling!');
}, 100)
);
deepClone - 深拷贝提供两种深拷贝模式,满足不同需求。
import { deepClone } from '@complex-suite/utils';
const obj = { a: 1, b: { c: new Date() } };
// 快速模式 (默认, 基于 JSON.stringify)
const clonedObj1 = deepClone(obj);
// 复杂模式 (支持 Map, Set, 循环引用等)
const clonedObj2 = deepClone(obj, true);
formatTree - 列表转树形结构高效地将包含 id 和 parentId 的扁平数组转换为嵌套的树形结构。
import { formatTree } from '@complex-suite/utils';
const list = [
{ id: 1, name: 'Root', parentId: 0 },
{ id: 2, name: 'Child A', parentId: 1 },
{ id: 3, name: 'Child B', parentId: 1 },
];
const tree = formatTree(list).parse();
/*
[
{
id: 1,
name: 'Root',
parentId: 0,
children: [
{ id: 2, name: 'Child A', parentId: 1 },
{ id: 3, name: 'Child B', parentId: 1 }
]
}
]
*/
getComplexProp - 安全地获取深层属性通过点分隔的字符串路径安全地访问对象的深层属性。
import { getComplexProp } from '@complex-suite/utils';
const user = {
name: 'Alice',
address: {
city: 'Wonderland',
zip: 12345
}
};
const city = getComplexProp(user, 'address.city'); // 'Wonderland'
const street = getComplexProp(user, 'address.street'); // undefined
... 以及更多强大的工具函数等待您的探索!
项目使用 Vitest 进行单元测试,以确保代码的质量和可靠性。
运行测试:
npm test
生成测试覆盖率报告:
npm run coverage
FAQs
a complex utils
The npm package @complex-suite/utils receives a total of 818 weekly downloads. As such, @complex-suite/utils popularity was classified as not popular.
We found that @complex-suite/utils demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Research
/Security News
A compromised jscrambler npm release added a malicious preinstall hook that runs hidden native binaries on Linux, macOS, and Windows.

Research
/Security News
A malicious .NET package is typosquatting the Braintree SDK to steal live payment card data, merchant API keys, and host secrets from production apps.

Security News
/Research
Compromised Injective SDK npm version 1.20.21 exfiltrates wallet private keys and mnemonics through fake telemetry functionality.