Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
async-coord
Advanced tools
Asynchronous coordination for JavaScript and TypeScript.
This contains a polyfill for the native ES6 promise, along with a number of additional coordination primitives to assist in asynchronous application development in JavaScript and TypeScript.
A normal function call in JavaScript is completed synchronously in one of two ways: normal completion that exits the function with a possible return value, or an abrupt completion which results in an exception.
An asynchronous function can return a Promise, which represents the eventual completion of the asynchronous operation in one of two ways: fulfillment of the Promise with a possible return value (an asynchronous 'normal completion'), or rejection of the Promise with a reason (an asynchronous 'abrupt completion').
For example, if you wanted to fetch a remote resource from the browser, you might use the following code to perform a synchronous fetch:
function fetch(url) {
var xhr = new XMLHttpRequest();
xhr.open("GET", url, /*async:*/ false);
xhr.send(null);
return xhr.responseText;
}
try {
var res = fetch("...");
/*do something with res*/
var value = next(res);
/*do something with value*/
}
catch(err) {
/*handle err*/
}
The above example has the unfortunate side effect of blocking the browser's UI thread until the resource is loaded. To be more efficient, we might rewrite this to be asynchronous using Continuation Passing Style:
function fetchCPS(url, callback, errback) {
var xhr = new XMLHttpRequest();
xhr.open("GET", url, /*async:*/ true);
xhr.onload = event => callback(xhr.responseText);
xhr.onerror = event => errback(xhr.statusText);
xhr.send(null);
}
fetchCPS("...",
res => {
/*do something with res*/
nextCPS(res,
value => {
/*do something with value*/
},
err => {
/*handle err*/
})},
err => {
/*handle err*/
})
If you need to perform a large number of nested asynchronous calls, Continuation Passing Style can start to look complicated very quickly.
With Promises you would instead write:
function fetchAsync(url) {
return new Promise((resolve, reject) => {
var xhr = new XMLHttpRequest();
xhr.open("GET", url, /*async:*/ true);
xhr.onload = event => resolve(xhr.responseText);
xhr.onerror = event => reject(xhr.statusText);
xhr.send(null);
});
}
var resP = fetchAsync("...");
resP.then(res => {
/*do something with res*/
return nextAsync(res);
})
.then(value => {
/*do something with value*/
})
.catch(err => {
/*handle err*/
})
More information can be found in the wiki.
FAQs
Asynchronous coordination primitives for JavaScript and TypeScript
We found that async-coord demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.