Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
clownface-shacl-path
Advanced tools
Provides functions to work with SHACL Property Paths
yarn add clownface-shacl-path
findNodes
Find nodes in RDF/JS graphs by following SHACL Property Paths using clownface graph traversal library.
The exported function takes two parameters:
import { findNodes } from 'clownface-shacl-path'
import fetch from '@rdfjs/fetch'
import $rdf from 'rdf-ext'
import clownface from 'clownface'
import { sh } from '@tpluscode/rdf-ns-builders'
// prepare a clownface Graph Pointer
const response = await fetch('http://zazuko.github.io/tbbt-ld/dist/tbbt.nt', { factory: $rdf })
const amy = clownface({ dataset: await response.dataset() })
.namedNode('http://localhost:8080/data/person/amy-farrah-fowler')
// prepare a SHACL Property Path structure as clownface
const path = clownface({ dataset: $rdf.dataset() }).blankNode()
/*
sh:path [
sh:alternativePath ( # find both
[ sh:inversePath schema:spouse ] # Sheldon, who is Amy's spouse
[ sh:inversePath schema:knows ] # Leonard, who knows Amy
)
]
*/
path.addList(sh.alternativePath, [
path.blankNode().addOut(sh.inversePath, schema.spouse),
path.blankNode().addOut(sh.inversePath, schema.knows)
])
// find nodes connected by the path
findNodes(amy, path)
toSparql
Converts a SHACL Property Path to SPARQL Property Path string template object. Use the property path with @tpluscode/sparql-builder
import type {GraphPointer} from 'clownface'
import { toSparql } from 'clownface-shacl-path'
import { SELECT } from '@tpluscode/sparql-builder'
/*
[ sh:path
[
sh:alternativePath (
( schema:knows schema:name )
( foaf:knows foaf:name )
)
]
]
*/
let path: GraphPointer
/*
SELECT ?friendName
WHERE {
?person a <http://schema.org/Person> .
?person (schema:knows|schema:name)|(foaf:knows|foaf:name) ?friendName
}
*/
SELECT`?friendName`
.WHERE`
?person a <http://schema.org/Person> .
?person ${toSparql(path)} ?friendName .
`.build()
toSparql.sequence
In cases when the intermediate nodes of a Sequence Path are important, that path can be split, so that authors can create and capture variables for all the nodes.
For that purpose, call toSparql.sequence()
import type {GraphPointer} from 'clownface'
import { toSparql } from 'clownface-shacl-path'
import { SELECT } from '@tpluscode/sparql-builder'
import $rdf from 'rdf-ext'
/*
[ sh:path ( schema:employee schema:spouse schema:name ) ]
*/
let path: GraphPointer
const sequence = toSparql.sequence(path)
/*
SELECT *
WHERE {
?path0 schema:employee ?path1 .
?path1 schema:spouse ?path2 .
?path2 schema:name ?path3 .
}
*/
const query = sequence.reduce((query, segment, index) => {
const subject = $rdf.variable(`path${index}`)
const object = $rdf.variable(`path${index + 1}`)
return query.WHERE`${subject} ${segment} ${object}`
}, SELECT.ALL)
The SHACL specification requires that lists in Sequence Paths are blank nodes. However, some implementations
may use Named Nodes instead. To allow that, you can manually create the SHACL Property Path object from a graph pointer
and pass it to findNodes
or toSparql
:
import type { GraphPointer } from 'clownface'
import { findNodes, fromNode } from 'clownface-shacl-path'
let pathNode: GraphPointer
let startNode: GraphPointer
const path = fromNode(pathNode, { allowNamedNodeSequencePaths: true })
const nodes = findNodes(startNode, path)
If it is necessary to implement a custom logic for processing of Property Paths, create a class extending from
PathVisitor
.
import * as Path from 'clownface-shacl-path'
import type { GraphPointer } from 'clownface'
class MyVisitor extends Path.PathVisitor<TOut, TArg> {
visitAlternativePath(path: Path.AlternativePath, arg?: TArg): TOut {
}
visitInversePath(path: Path.InversePath, arg?: TArg): TOut {
}
visitOneOrMorePath(path: Path.OneOrMorePath, arg?: TArg): TOut {
}
visitPredicatePath(path: Path.PredicatePath, arg?: TArg): TOut {
}
visitSequencePath(path: Path.SequencePath, arg?: TArg): TOut {
}
visitZeroOrMorePath(path: Path.ZeroOrMorePath, arg?: TArg): TOut {
}
visitZeroOrOnePath(path: Path.ZeroOrOnePath, arg?: TArg): TOut {
}
}
The type arguments are optional. TOut
defaults to void
and TArg
defaults to unknown
.
See the classes ToSparqlPropertyPath
and FindNodesVisitor
for inspiration
To start visiting path nodes:
let pathNode: GraphPointer
const visitor = new MyVisitor()
.visit(Path.fromPointer(pathNode)/*, optional initial arg */)
2.1.1
rdf-js
FAQs
Find nodes in graph by following SHACL Paths
The npm package clownface-shacl-path receives a total of 292 weekly downloads. As such, clownface-shacl-path popularity was classified as not popular.
We found that clownface-shacl-path demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.