Security News
MCP Community Begins Work on Official MCP Metaregistry
The MCP community is launching an official registry to standardize AI tool discovery and let agents dynamically find and install MCP servers.
By Sarah Gooding - May 09, 2025
🚀 Big News: Socket Acquires Coana to Bring Reachability Analysis to Every Appsec Team.Learn more →
cleaners
Cleans & validates untrusted data, with TypeScript & Flow support
Do you ever read JSON data from the outside world? If you, you should probably clean & validate that data before you start using it. That can be a lot of work, so cleaners is here to help with:
- Validation - Ensuring that the input data matches the expected format.
- Cleaning - Inserting fallback values, parsing strings into Date objects, and so forth.
- Typing - Automatically generating TypeScript & Flow types.
If features:
- Zero external dependencies
- 100% test coverage
- 1K minified + gzip
- Documentation
Installing
If you are using Deno, just import cleaners directly:
import { asString } from 'https://deno.land/x/cleaners/mod.ts'
If you are using Node, first install the package using npm i cleaners or yarn add cleaners, and then import it using either syntax:
// The oldschool way:
const { asString } = require('cleaners')
// Or using Node's new native module support:
import { asString } from 'cleaners'
Overview
See the documentation website for details, but here is a quick overview:
This library contains a collection of composable Cleaner functions. A cleaner function validates some incoming data, and either returns it with the proper type or throws an exception. Here are some simple examples:
import { asDate, asString } from 'cleaners'
asString('hey') // Returns 'hey'
asString(1) // TypeError: Expected a string
asDate('2020-02-20') // Returns a JavaScript Date object
To handle objects, arrays, and other nested data types, this library includes some helpers for combining Cleaner functions together:
import { asArray, asNumber, asObject, asOptional } from 'cleaners'
const asMessage = asObject({
message: asString,
title: asOptional(asString), // Optional string
recipients: asArray(asString), // Array of strings
replyCount: asOptional(asNumber, 0) // Number with default value
})
// Let's clean some network data:
try {
const response = await fetch('https://message-api')
const message = asMessage(await response.json())
} catch (error) {}
Thanks to our TypeScript & Flow support, the custom asMessage function above has a detailed return type. The means you will get the same error-checking & auto-completion as if you had entered the following type declaration by hand:
interface Message {
text: string
title: string | undefined
recipients: string[]
replyCount: number
}
0.3.17 (2024-09-09)
- changed: When we receive an unexpected value, include the actual received value in the error message.
Keywords
FAQs
Cleans & validates untrusted data, with TypeScript & Flow support
We found that cleaners demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Package last updated on 09 Sep 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Security News
Malicious npm Packages Use Telegram to Exfiltrate BullX Credentials
Socket uncovers an npm Trojan stealing crypto wallets and BullX credentials via obfuscated code and Telegram exfiltration.
By Kush Pandya - May 08, 2025
Research
Security News
Backdooring the IDE: Malicious npm Packages Hijack Cursor Editor on macOS
Malicious npm packages posing as developer tools target macOS Cursor IDE users, stealing credentials and modifying files to gain persistent backdoor access.
By Kirill Boychenko - May 07, 2025