Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
argosy-pattern
Advanced tools
Test messages against Argosy patterns.
Part of the Argosy family.
var assert = require('assert'),
argosyPattern = require('argosy-pattern'),
match = require('argosy-pattern/match')
var pattern = argosyPattern({ hello: 'world', 'message.count': match.number })
var result = pattern.matches({
hello: 'world',
message: {
count: 42
}
})
assert(result)
var argosyPattern = require('argosy-pattern')
Create an Argosy pattern, given an object containing rules. Each key in the object represents a key
that is to be validated in compared message objects. These keys will be tested to have the same literal
value, matching regular expression, or to be of a given type using the matching system described below.
Nested keys may be matched using the dot notation. For example, {'message.count':1}
equates to
{message: {count: 1}}
.
Returns true of the given object matches the pattern, or false otherwise.
Returns an object, representing the pattern, suitable for serialization. This is used internally within Argosy.
var match = require('argosy-pattern/match')
Argosy patterns support more than literal values. The values of the pattern keys may be any of the following in addition to literal values:
match.number
- matches any numbermatch.string
- matches any stringmatch.bool
- matches true
or false
match.array
- matches any arraymatch.object
- matches any truthy objectmatch.defined
- matches anything other than undefined
match.undefined
- matches undefined
or missing keynpm test [--dot | --spec] [--grep=pattern]
Specifying --dot
or --spec
will change the output from the default TAP style.
Specifying --grep
will only run the test files that match the given pattern.
npm run coverage [--html]
This will output a textual coverage report. Including --html
will also open
an HTML coverage report in the default browser.
FAQs
Test messages against Argosy patterns
The npm package argosy-pattern receives a total of 11 weekly downloads. As such, argosy-pattern popularity was classified as not popular.
We found that argosy-pattern demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.