Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@rimbu/deep
Advanced tools
Offers tools to use handle plain JS objects as immutable objects. The Patch
object allows convenient immutable modification of simple objects. The Match
object allows easy matching on plain objects. The Path
object allows easy querying of nested values. The Immutable
type makes it easy to create plain objects that that have compile-time protection against mutation. The Tuple
type is a utility to have similar functionality as as const
but less strict.
For complete documentation please visit the Immutable Objects overview in the Rimbu Docs.
Or Try Out Rimbu in CodeSandBox.
All types are exported through @rimbu/core
. It is recommended to use that package.
To install this package only:
yarn add @rimbu/deep
or
npm i @rimbu/deep
Create a file called rimbu.ts
and add the following:
export * from 'https://deno.land/x/rimbu/deep/mod.ts';
Or using a pinned version (x.y.z
):
export * from 'https://deno.land/x/rimbu/deep@x.y.z/mod.ts';
Then import what you need from rimbu.ts
:
import { patch } from './rimbu.ts';
Because Rimbu uses complex types, it's recommended to use the --no-check
flag (your editor should already have checked your code) and to specify a tsconfig.json
file with the settings described below.
Running your script then becomes:
deno run --no-check --config tsconfig.json <your-script>.ts
import { patch } from '@rimbu/deep';
console.log(
patch({
a: 'a',
b: { c: 1, d: true },
})({
a: 'q',
b: { c: (v) => v + 1 },
})
);
// => { a: 'q', b: { c: 2, d: true }}
Feel very welcome to contribute to further improve Rimbu. Please read our Contributing guide.
Made with contributors-img.
Licensed under the MIT License, Copyright © 2020-present Arvid Nicolaas.
See LICENSE for more information.
FAQs
Tools to use handle plain JS objects as immutable objects
We found that @rimbu/deep demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.