Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@devil7softwares/pos
Advanced tools
pos-js is a Javascript port of Mark Watson's FastTag Part of Speech Tagger which was itself based on Eric Brill's trained rule set and English lexicon. It also includes a basic lexer that can be used to extract words and other tokens from text strings. Originally this was written by Percy Wegmann and is available on Google code.
This fork adds TypeScript support to a fork made by Darius Kazemi which added Node.JS and npm support.
npm install @devil7softwares/pos
(or)
yarn add @devil7softwares/pos
import { Lexer, Tagger, TagType } from '@devil7softwares/pos';
const lexer = new Lexer();
const tagger = new Tagger();
const words = lexer.lex('This is some sample text. This text can contain multiple sentences.');
const taggedWords = tagger.tag(words);
for (const [word, tag] of taggedWords) {
console.log(word + ' /' + tag);
}
jspos is licensed under the GNU LGPLv3
Thanks to Mark Watson for writing FastTag, which served as the basis for jspos.
Tag | Description | Example |
---|---|---|
CC | Coord Conjuncn | and,but,or |
CD | Cardinal number | one,two |
DT | Determiner | the,some |
EX | Existential there | there |
FW | Foreign Word | mon dieu |
IN | Preposition | of,in,by |
JJ | Adjective | big |
JJR | Adj., comparative | bigger |
JJS | Adj., superlative | biggest |
LS | List item marker | 1,One |
MD | Modal | can,should |
NN | Noun, sing. or mass | dog |
NNP | Proper noun, sing. | Edinburgh |
NNPS | Proper noun, plural | Smiths |
NNS | Noun, plural | dogs |
POS | Possessive ending | 's |
PDT | Predeterminer | all, both |
PRP$ | Possessive pronoun | my,one's |
PRP | Personal pronoun | I,you,she |
RB | Adverb | quickly |
RBR | Adverb, comparative | faster |
RBS | Adverb, superlative | fastest |
RP | Particle | up,off |
SYM | Symbol | +,%,& |
TO | 'to' | to |
UH | Interjection | oh, oops |
VB | verb, base form | eat |
VBD | verb, past tense | ate |
VBG | verb, gerund | eating |
VBN | verb, past part | eaten |
VBP | Verb, present | eat |
VBZ | Verb, present | eats |
WDT | Wh-determiner | which,that |
WP | Wh pronoun | who,what |
WP$ | Possessive-Wh | whose |
WRB | Wh-adverb | how,where |
, | Comma | , |
. | Sent-final punct | . ! ? |
: | Mid-sent punct. | : ; Ñ |
$ | Dollar sign | $ |
# | Pound sign | # |
" | quote | " |
( | Left paren | ( |
) | Right paren | ) |
See TagTypes.ts
FAQs
FastTag part of speech tagger implementation
The npm package @devil7softwares/pos receives a total of 588 weekly downloads. As such, @devil7softwares/pos popularity was classified as not popular.
We found that @devil7softwares/pos demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.