Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Astatine - A Small Ajax and HTML Form Library. Library entry point. Globally available by using Astatine
or At
.
npm install astatine
astatine.min.js
Sets up spinner color, thickness, and size. Defaults are listed bellow. Do this before any Astatine or At operations.
Astatine.setup.spinner.size = '3px';
Astatine.setup.spinner.thickness = '15px';
Astatine.setup.spinner.colorTop = 'darkgray';
Astatine.setup.spinner.colorBottom = 'lightgray';
Listens on a form element for submit event to be fired.
radio
will only appear if it is checked.checkbox
will either be true
or false
.type="submit"
will automatically hide. And a spinner will show on submit..spinner
will automatically created and make visible a spinner.The options object accepts all items form the Astatine.ajax
method. Please review that section for more detail.
action: String
Resource action url. Required
query: String | Element
Query selector or element. Required
method: String
Valid methods get, post, put, delete. Required
reset: Boolean
Resets form after submit success. Defaults to true.
complete: Function
Parameters are the XHR. Required
error
An xhr objectsuccess
An xhr objectprepare: Function
Allows the ability to edit/validate the option.data object before complete/post.
data: Object
The form data object.resolve: Function
Async resolve function requires the data as a parameter.reject: Function
Async reject passes its parameter to the complete function as an error.<form class="form" method="post" action="/post/path">
<input type="text" name="name" placeholder="Name" required>
<input type="submit" value="Submit"/>
</form>
Astatine.submit({
query: '.form',
prepare: function (data, resolve, reject) {
data.foo = 'bar'; // manipulate data before send
// return data;
setTimeout(function () {
if (true) resolve(data); // async resolve
else reject({ response: 'rejected' }); // async reject
}, 1000);
},
complete: function (error, success) {
if (error) console.log(error);
else console.log(success);
}
});
Ajax is a lower level utility function that allows for more control but less features than the submit method.
action: String
Resource action url. Required
method: String
Valid methods get, post, put, delete. Required
success: Function
Required
error: Function
Required
data: Object
If method is GET
than data is concatenated to the action/url
as parameters.
requestType: String
Converts the request data before sending.
script
'text/javascript, application/javascript, application/x-javascript'json
'application/json' stringify options.data
xml
'application/xml, text/xml'html
'text/html'text
'text/plain'options.data
responseType: String
Converts the response data after sending.
script
'text/javascript, application/javascript, application/x-javascript'json
'application/json'xml
'application/xml, text/xml'html
'text/html'text
'text/plain'contentType: String
Short hand to set the Content-Type Headers. (For request)
accept: String
Short hand to set the Accept Headers. (For response)
mimeType: String
Overwrites return type.
username: String
password: String
withCredentials: Boolean
headers: Object
A low level headers object it will map directly to the XHR header. The Will overwrite any above options.
Astatine.ajax({
method: 'get',
action: '/examples/index.html',
data: { name: 'stuff' },
success: function (xhr) {
console.log(xhr);
},
error: function (xhr) {
console.log(xhr);
}
});
Object
DOM elementvar objectData = Astatine.formData(element);
Object
Single level deep key value parevar stringData = Astatine.serialize(data);
Licensed Under MPL 2.0 Copyright 2016 Alexander Elias
FAQs
Astatine - A Small Ajax and HTML Form Library
We found that astatine demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.