Security News
The Dark Side of Open Source
At Node Congress, Socket CEO Feross Aboukhadijeh uncovers the darker aspects of open source, where applications that rely heavily on third-party dependencies can be exploited in supply chain attacks.
array.prototype.flat
Advanced tools
Package description
The array.prototype.flat package provides functionality to flatten arrays up to a specified depth. This is particularly useful for dealing with nested arrays, allowing developers to easily manipulate and access elements within deeply nested structures. The package offers a polyfill for the Array.prototype.flat method, which is part of the ECMAScript 2019 standard but may not be available in all environments.
Flattening arrays
This feature allows you to flatten nested arrays up to a specified depth. In the code sample, the array is flattened up to 2 levels deep, resulting in [1, 2, 3, [4], 5].
[1, [2, [3, [4]], 5]].flat(2)
Lodash's flatten method is similar to array.prototype.flat but only flattens one level deep by default. Lodash also offers `flattenDeep` for deep flattening and `flattenDepth` to specify the depth, providing more flexibility compared to array.prototype.flat.
Underscore's flatten function is another alternative, which by default flattens the array completely. It offers less control over the depth of flattening compared to array.prototype.flat, but it's useful for fully flattening arrays.
Ramda's flatten function offers functionality similar to array.prototype.flat, but like Underscore, it does not allow specifying the depth. It's part of a larger functional programming library, making it a good choice if you're already using Ramda for other purposes.
Readme
An ES2019 spec-compliant Array.prototype.flat
shim/polyfill/replacement that works as far down as ES3.
This package implements the es-shim API interface. It works in an ES3-supported environment and complies with the proposed spec.
Because Array.prototype.flat
depends on a receiver (the this
value), the main export takes the array to operate on as the first argument.
npm install --save array.prototype.flat
var flat = require('array.prototype.flat');
var assert = require('assert');
var arr = [1, [2], [], 3, [[4]]];
assert.deepEqual(flat(arr, 1), [1, 2, 3, [4]]);
var flat = require('array.prototype.flat');
var assert = require('assert');
/* when Array#flat is not present */
delete Array.prototype.flat;
var shimmedFlat = flat.shim();
assert.equal(shimmedFlat, flat.getPolyfill());
assert.deepEqual(arr.flat(), flat(arr));
var flat = require('array.prototype.flat');
var assert = require('assert');
/* when Array#flat is present */
var shimmedIncludes = flat.shim();
var mapper = function (x) { return [x, 1]; };
assert.equal(shimmedIncludes, Array.prototype.flat);
assert.deepEqual(arr.flat(mapper), flat(arr, mapper));
Simply clone the repo, npm install
, and run npm test
FAQs
An ES2019 spec-compliant `Array.prototype.flat` shim/polyfill/replacement that works as far down as ES3.
The npm package array.prototype.flat receives a total of 20,132,794 weekly downloads. As such, array.prototype.flat popularity was classified as popular.
We found that array.prototype.flat demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
At Node Congress, Socket CEO Feross Aboukhadijeh uncovers the darker aspects of open source, where applications that rely heavily on third-party dependencies can be exploited in supply chain attacks.
Research
Security News
The Socket Research team found this npm package includes code for collecting sensitive developer information, including your operating system username, Git username, and Git email.
Security News
OpenJS is warning of social engineering takeovers targeting open source projects after receiving a credible attempt on the foundation.