Research
2025 Report: Destructive Malware in Open Source Packages
Destructive malware is rising across open source registries, using delays and kill switches to wipe code, break builds, and disrupt CI/CD.
By Kush Pandya - Dec 24, 2025
@splitsoftware/splitio-commons
Advanced tools
Split Javascript SDK common components
Overview
This library is designed to work with Split, the platform for controlled rollouts, which serves features to your users via a Split feature flag to manage your complete customer experience.
Compatibility
This library is compatible with JavaScript ES5 and above.
Contributing
Please see Contributors Guide to find all you need to submit a Pull Request (PR).
License
Licensed under the Apache License, Version 2.0. See: Apache License.
About Split
Split is the leading Feature Delivery Platform for engineering teams that want to confidently deploy features as fast as they can develop them. Split’s fine-grained management, real-time monitoring, and data-driven experimentation ensure that new features will improve the customer experience without breaking or degrading performance. Companies like Twilio, Salesforce, GoDaddy and WePay trust Split to power their feature delivery.
To learn more about Split, contact hello@split.io, or get started with feature flags for free at https://www.split.io/signup.
Split has built and maintains SDKs for:
- .NET Github Docs
- Android Github Docs
- GO Github Docs
- iOS Github Docs
- Java Github Docs
- Javascript Github Docs
- Javascript for Browser Github Docs
- Node Github Docs
- PHP Github Docs
- Python Github Docs
- React Github Docs
- React Native Github Docs
- Redux Github Docs
- Ruby Github Docs
For a comprehensive list of open source projects visit our Github page.
Learn more about Split:
Visit split.io/product for an overview of Split, or visit our documentation at help.split.io for more detailed information.
Keywords
FAQs
Split JavaScript SDK common components
The npm package @splitsoftware/splitio-commons receives a total of 148,764 weekly downloads. As such, @splitsoftware/splitio-commons popularity was classified as popular.
We found that @splitsoftware/splitio-commons demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 6 open source maintainers collaborating on the project.
Package last updated on 14 Feb 2022
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Engineering with AI Podcast: The Promise of AI-First Development
Socket CTO Ahmad Nassri shares practical AI coding techniques, tools, and team workflows, plus what still feels noisy and why shipping remains human-led.
By Sarah Gooding - Dec 24, 2025
Research
/Security News
Spearphishing Campaign Abuses npm Registry to Target U.S. and Allied Manufacturing and Healthcare Organizations
A five-month operation turned 27 npm packages into durable hosting for browser-run lures that mimic document-sharing portals and Microsoft sign-in, targeting 25 organizations across manufacturing, industrial automation, plastics, and healthcare for credential theft.
By Nicholas Anderson, Kirill Boychenko - Dec 23, 2025