Security News
Cloudflare Adds Security.txt Setup Wizard
Cloudflare has launched a setup wizard allowing users to easily create and manage a security.txt file for vulnerability disclosure on their websites.
Babylon is a JavaScript parser used in Babel.
Check out contributing.md
Heavily based on acorn and acorn-jsx, thanks to the awesome work of @RReverser and @marijnh.
babylon.parse(code, [options])
babylon.parseExpression(code, [options])
parse()
parses the provided code
as an entire ECMAScript program, while
parseExpression()
tries to parse a single Expression with performance in
mind. When in doubt, use .parse()
.
allowImportExportEverywhere: By default, import
and export
declarations can only appear at a program's top level. Setting this
option to true
allows them anywhere where a statement is allowed.
allowReturnOutsideFunction: By default, a return statement at
the top level raises an error. Set this to true
to accept such
code.
allowSuperOutsideMethod: TODO
sourceType: Indicate the mode the code should be parsed in. Can be
either "script"
or "module"
.
sourceFilename: Correlate output AST nodes with their source filename. Useful when generating code and source maps from the ASTs of multiple input files.
startLine: By default, the first line of code parsed is treated as line 1. You can provide a line number to alternatively start with. Useful for integration with other source tools.
plugins: Array containing the plugins that you want to enable.
strictMode: TODO
ranges: Adds a ranges
property to each node: [node.start, node.end]
tokens: Adds all parsed tokens to a tokens
property on the File
node
Babylon generates AST according to Babel AST format. It is based on ESTree spec with the following deviations:
There is now an
estree
plugin which reverts these deviations
directives
field with Directive and DirectiveLiteralAST for JSX code is based on Facebook JSX AST with the addition of one node type:
JSXText
Babylon follows semver in most situations. The only thing to note is that some spec-compliancy bug fixes may be released under patch versions.
For example: We push a fix to early error on something like #107 - multiple default exports per file. That would be considered a bug fix even though it would cause a build to fail.
require("babylon").parse("code", {
// parse in strict mode and allow module declarations
sourceType: "module",
plugins: [
// enable jsx and flow syntax
"jsx",
"flow"
]
});
Name | Code Example |
---|---|
estree (repo) | n/a |
jsx (repo) | <a attr="b">{s}</a> |
flow (repo) | var a: string = ""; |
typescript (repo) | var a: string = ""; |
doExpressions | var a = do { if (true) { 'hi'; } }; |
objectRestSpread (proposal) | var a = { b, ...c }; |
decorators (Stage 1) and decorators2 (Stage 2 proposal) | @a class A {} |
classProperties (proposal) | class A { b = 1; } |
classPrivateProperties (proposal) | class A { #b = 1; } |
classPrivateMethods (proposal) | class A { #c() {} } |
exportExtensions (proposal 1), (proposal 2) | Proposal 1: export v from "mod" Proposal 2: export * as ns from "mod" |
asyncGenerators (proposal) | async function*() {} , for await (let a of b) {} |
functionBind (proposal) | a::b , ::console.log |
functionSent | function.sent |
dynamicImport (proposal) | import('./guy').then(a) |
numericSeparator (proposal) | 1_000_000 |
optionalChaining (proposal) | a?.b |
importMeta (proposal) | import.meta.url |
bigInt (proposal) | 100n |
optionalCatchBinding (proposal) | try {throw 0;} catch{do();} |
throwExpressions (proposal) | () => throw new Error("") |
pipelineOperator (proposal) | `a |
Previous issues: babel/babel#1351, #500.
We currently aren't willing to commit to supporting the API for plugins or the resulting ecosystem (there is already enough work maintaining Babel's own plugin system). It's not clear how to make that API effective, and it would limit out ability to refactor and optimize the codebase.
Our current recommendation for those that want to create their own custom syntax is for users to fork Babylon.
To consume your custom parser, you can add to your .babelrc
via its npm package name or require it if using JavaScript,
{
"parserOpts": {
"parser": "custom-fork-of-babylon-on-npm-here"
}
}
FAQs
A JavaScript parser
The npm package babylon receives a total of 2,904,752 weekly downloads. As such, babylon popularity was classified as popular.
We found that babylon demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 5 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Cloudflare has launched a setup wizard allowing users to easily create and manage a security.txt file for vulnerability disclosure on their websites.
Security News
The Socket Research team breaks down a malicious npm package targeting the legitimate DOMPurify library. It uses obfuscated code to hide that it is exfiltrating browser and crypto wallet data.
Security News
ENISA’s 2024 report highlights the EU’s top cybersecurity threats, including rising DDoS attacks, ransomware, supply chain vulnerabilities, and weaponized AI.