Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
So, I guess this would be the readme file for my bzip2 implementation.
It's actually pretty simple to use, you can pass your Uint8Array
to the bzip2.array
method to get a bit reader function. This bit reader function is what all the other methods, header
, decompress
, and simple
use.
header(bitstream)
quite obviously reads in the bzip2 file header. It returns a single number between 1 and 9 describing the block size, which is one of the arguments of decompress
decompress(bitstream, size[, len])
does the main decompression of a single block. It'll return -1 if it detects that it's the final block, otherwise it returns a string with the decompressed data. If you want to cap the output to a certain number of bytes, set the len
argument.
simple(bitstream)
is what you probably want to use, because it combines header
and loops over decompress
so that the entire file is decompressed and returned as a string.
array(typed_array)
is the function that generates that mythical bitstream function from a standard Uint8Array
which you can make from an array buffer with new Uint8Array(arraybuffer)
.
FAQs
A npm package of a bunzip implementation in pure javascript
The npm package bzip2 receives a total of 1,447 weekly downloads. As such, bzip2 popularity was classified as popular.
We found that bzip2 demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.