
Research
/Security News
Toptal’s GitHub Organization Hijacked: 10 Malicious Packages Published
Threat actors hijacked Toptal’s GitHub org, publishing npm packages with malicious payloads that steal tokens and attempt to wipe victim systems.
callback-sequence
Advanced tools
Make a new callback to run input callbacks in sequence
It is meant to make it easy to construct a gulp task from a sequence of callbacks.
var sequence = require('callback-sequence');
var Readable = require('stream').Readable;
var gulp = require('gulp');
gulp.task('publish', sequence(
read, lint, warn, bump
));
function lint() {
}
function warn(cb) {
process.nextTick(cb);
}
function bump() {
return Promise.resolve();
}
function read() {
var s = Readable();
s.push(null);
return s;
}
Each argument passed in could be a gulp task callback, or an array containing such elements.
sequence
will create a callback to run all those specified tasks in appearance order.
cb
has signature cb(done)
, and done
is called after those tasks finish,
with an error object or null
.
Type: Array
An array of gulp task callbacks.
done
, if specified, is called after all tasks finish,
with an error object or null
.
FAQs
Make a new callback to run input callbacks in sequence
The npm package callback-sequence receives a total of 103 weekly downloads. As such, callback-sequence popularity was classified as not popular.
We found that callback-sequence demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
/Security News
Threat actors hijacked Toptal’s GitHub org, publishing npm packages with malicious payloads that steal tokens and attempt to wipe victim systems.
Research
/Security News
Socket researchers investigate 4 malicious npm and PyPI packages with 56,000+ downloads that install surveillance malware.
Security News
The ongoing npm phishing campaign escalates as attackers hijack the popular 'is' package, embedding malware in multiple versions.