Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket

@contrast/require-hook

Package Overview
Dependencies
Maintainers
8
Versions
36
Alerts
File Explorer

Advanced tools

Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@contrast/require-hook

Post hooks for Module.prototype.require

  • 4.1.3
  • npm
  • Socket score

Version published
Weekly downloads
3.4K
decreased by-50.71%
Maintainers
8
Weekly downloads
 
Created
Source

@contrast/require-hook

Pipeline Status

Intercept calls to require in order to modify or replace exports.

Usage

Class: RequireHook

Instantiation
const RequireHook = require('./lib');
const requireHook = new RequireHook();

The RequireHook constructor accepts a pino logger as an argument.

.resolve(descriptor, ...handlers)

Options:

  • descriptor: This can be a string or an object describing the module you want to intercept. If a string is used, or if the version field of the descriptor isn't set, all versions of the described module will be matched. Descriptors can have a name, version, and file property.

  • handlers: The remaning arguments are the handlers which will be invoked when the described module is require'd. Each handler is passed the exported module and metadata including the module's root directory and its name and version as seen in its package.json file. If a handler returns a truthy value, then that value will replace the return value of require.

Note: Registered handlers run once per unique instance of an export matching a descriptor.

.install()

This will monkey-patch Module.prototype.require so that exports can be intercepted. The monkey-patching will only happen once regardless of how many times this is invoked.

.uninstall()

This will reset Module.prototype.require to its value before being monkey-patched by the instance.

Examples

Use case: For express versions greater than or equal to 4, intercept the export of the package's lib/view.js file (relative to the package's base directory) and apply a tag to the exported function.

const RequireHook = require('./lib');
const requireHook = new RequireHook();
requireHook.resolve(
  {
    name: 'express',
    version: '>=4',
    file: 'lib/view.js',
  },
  (xport, metadata) => {
    // Read from the package.json:
    // - metadata.name
    // - metadata.version
    // Absolute path to file:
    // - metadata.packageDir

    // xport === function View() { /*...*/ }
    xport['I was intercepted'] = true;
  },
);

Use case: Intercept all versions of body-parser and replace the exported functions.

const RequireHook = require('./lib');
const requireHook = new RequireHook();
requireHook.resolve({ name: 'body-parser' }, (xport, metadata) => {
  // Read from the package.json:
  // - metadata.name
  // - metadata.version
  // Absolute path to file:
  // - metadata.packageDir

  // xport === function bodyParser() { /*...*/ }
  return function bodyParserReplacement() {
    /*...*/
  };
});

FAQs

Package last updated on 10 Oct 2023

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

Packages

npm

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc