Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
collapse-white-space
Advanced tools
The collapse-white-space npm package is designed to reduce multiple whitespace characters in a string down to a single space, effectively 'collapsing' them. This can be particularly useful for cleaning up strings in web development contexts, such as user input or text content processing, where consistent whitespace handling is desired.
Collapsing multiple whitespace characters
This feature allows you to take a string with multiple spaces, tabs, or other whitespace characters and reduce them to a single space between words or characters. It's particularly useful for text normalization.
"use strict";\nconst collapse = require('collapse-white-space');\nconst text = 'This is a test string.';\nconsole.log(collapse(text)); // 'This is a test string.'
The trim package offers functionality to remove leading and trailing whitespace from a string. While it doesn't collapse internal whitespace, it's often used in conjunction with other methods to clean up strings. It's more focused compared to collapse-white-space, which handles internal whitespace collapsing.
Replace multiple white-space characters with a single space.
npm:
npm install collapse-white-space
var collapse = require('collapse-white-space')
collapse('\tfoo \n\tbar \t\r\nbaz') //=> ' foo bar baz'
collapse(value)
Replace multiple white-space characters in value with a single space.
FAQs
Collapse white space
The npm package collapse-white-space receives a total of 2,614,731 weekly downloads. As such, collapse-white-space popularity was classified as popular.
We found that collapse-white-space demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.