Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@thi.ng/strings
Advanced tools
[!NOTE] This is one of 199 standalone projects, maintained as part of the @thi.ng/umbrella monorepo and anti-framework.
🚀 Please help me to work full-time on these projects by sponsoring me on GitHub. Thank you! ❤️
Various (~100) string formatting, word wrapping & utility functions, some higher-order, some memoized.
Partially based on Clojure version of thi.ng/strf.
defFormat
/ format
interpolate
/ interpolateKeys
escape
/ unescape
join
/ splice
/ split
repeat
stringify
currency
/ chf
/ eur
/ gpb
/ usd
/ yen
radix
int
/ intLocale
float
/ floatFixedWidth
maybeParseFloat
/ maybeParseInt
percent
uuid
vector
B8
/ B16
/ B32
- fixed size binary formattersU8
/ U16
/ U24
/ U32
/ U64
- fixed size hex formattersZ2
/ Z3
/ Z4
- fixed sized zero padded number formatterslower
/ upper
/ capitalize
camel
/ kebab
/ snake
/ upperSnake
slugify
/ slugifyGH
isAnsi
/ isAnsiEnd
/ isAnsiStart
stripAnsi
lengthAnsi
wordWrap
/ wordWrapLine
/ wordWrapLines
SPLIT_PLAIN
/ SPLIT_ANSI
center
padLeft
/ padRight
truncate
/ truncateLeft
/ truncateRight
trim
wrap
spacesToTabs
/ spacesToTabsLine
tabsToSpaces
/ tabsToSpacesLine
charRange
ALPHA
/ ALPHA_NUM
/ DIGITS
/ LOWER
/ UPPER
/ HEX
BOM
/ ESCAPES
/ ESCAPES_REV
WS
/ PUNCTUATION
units
bits
/ bytes
grams
meters
seconds
ruler
/ grid
hstr
- Hollerith stringscomputeCursorPos
STABLE - used in production
Search or submit any issues for this package
yarn add @thi.ng/strings
ESM import:
import * as str from "@thi.ng/strings";
Browser ESM import:
<script type="module" src="https://esm.run/@thi.ng/strings"></script>
For Node.js REPL:
const str = await import("@thi.ng/strings");
Package sizes (brotli'd, pre-treeshake): ESM: 5.52 KB
Note: @thi.ng/api is in most cases a type-only import (not used at runtime)
Eight projects in this repo's /examples directory are using this package:
Screenshot | Description | Live demo | Source |
---|---|---|---|
ASCII art raymarching with thi.ng/shader-ast & thi.ng/text-canvas | Demo | Source | |
Large ASCII font text generator using @thi.ng/rdom | Demo | Source | |
Basic crypto-currency candle chart with multiple moving averages plots | Demo | Source | |
Basic SPA example with atom-based UI router | Demo | Source | |
Mastodon API feed reader with support for different media types, fullscreen media modal, HTML rewriting | Demo | Source | |
Generative audio synth offline renderer and WAV file export | Demo | Source | |
rstream based spreadsheet w/ S-expression formula DSL | Demo | Source | |
XML/HTML/SVG to hiccup/JS conversion | Demo | Source |
import { defFormat, float, percent } from "@thi.ng/strings";
// create a custom string formatter
const fmt = defFormat([
"Price: ",
{ usd: "$", gbp: "£", eur: "€" },
float(2),
" (",
percent(2),
" off)"
]);
// use format
fmt("usd", 1.2345, 0.5);
// Price: $1.23 (50.00% off)
fmt("eur", 1.2345, 0.25)
// Price: €1.23 (25.00% off)
If this project contributes to an academic publication, please cite it as:
@misc{thing-strings,
title = "@thi.ng/strings",
author = "Karsten Schmidt",
note = "https://thi.ng/strings",
year = 2015
}
© 2015 - 2024 Karsten Schmidt // Apache License 2.0
FAQs
Various string formatting & utility functions
The npm package @thi.ng/strings receives a total of 5,801 weekly downloads. As such, @thi.ng/strings popularity was classified as popular.
We found that @thi.ng/strings demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.