Security News
The Code You Didn't Write Is Still Yours to Defend
AI agents are pulling packages into environments no scanner is watching, creating exposure before security teams can see it.
By Brad Arkin - Jun 23, 2026
🚀 Socket Launch Week Day 5:Introducing Repository Access Permissions and Custom Roles.Learn more →
util 所有函数 单元测试覆盖率 100%
行覆盖率、函数覆盖率、分支覆盖率、语句覆盖率居均达到 100%
前端公用 util (内置 awaitWrap clearTimeId compose curry getTypeFn lowerCase toFixedNumber parseUrlQuery 前端常用的 util 方法)
awaitWrap 包装 promise 的高阶函数,返回值永远是一个数组 [err, data]
let [err, data] = await awaitWrap(Promise.resolve('1'));
if (err) {
console.log(err);
}
console.log(data);
clearTimeId 用于在页面使用 setTimeout setInterval API 是忘记清理 id 存在,暴露方法统一清理 id
const { clearSetIntervalFn, setTimeoutIdToList, clearTimeoutFn, timersArr, setTimersListToNull } = clearTimeId();
let id = window.setTimeout(() => {}, 0);
setTimeoutIdToList(id);
clearSetIntervalFn();
clearTimeoutFn();
setTimersListToNull();
compose 用于在页面聚合多个方法
let a = (x: string) => `a${x}`;
let b = (x: string) => `b${x}`;
let c = (x: string) => `c${x}`;
let composeFn = compose(a, b, c);
const result = composeFn('1'); // abc1
curry 用于 科里化 传参
let fn = (a: string, b: string, c: string) => `${a}${b}${c}`;
let curryFn = curry(fn, 'a');
const result = curryFn('b', 'c'); // abc
getTypeFn 用于获取传入的变量的类型, getTypeFn 运行返回一个函数
const isBoolean = getTypeFn('Boolean');
const result = isBoolean(false); // true
const result1 = isObject({}); // true
const result2 = isArray('1'); // false
lowerCase 拿到小写的 str
const val = 'ABC';
const result = getLowerCase(val); // 'abc'
toFixedNumber 四舍五入
const result = toFixedNumber(0.1 + 0.6789, 5); // 0.7789
const result1 = toFixedNumber(1.335); // 1.34
const result2 = toFixedNumber(1.334); // 1.33
parseUrlQuery 解析字符串变成对象
const result = parseUrlQuery('a=1&b=2&c=3&a=4&a=5'); // {a: ['1', '4', '5'], b: '2', c: '3'}
const result1 = parseUrlQuery('?a=1&b=2&c=3'); // {a: '1', b: '2', c: '3'}
const result2 = parseUrlQuery(''); // {}
FAQs
custom utils
The npm package cus-utils receives a total of 55 weekly downloads. As such, cus-utils popularity was classified as not popular.
We found that cus-utils demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 27 Sep 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
GitHub Actions Checkout Now Blocks Risky pull_request_target Checkouts
GitHub Actions checkout now blocks risky pull_request_target checkouts by default to help prevent pwn request supply chain attacks.
By Sarah Gooding - Jun 20, 2026
Product
Introducing Repository Access Permissions and Custom Roles
Socket now supports Custom Roles and Repository Access Permissions so organizations can control who can access specific repositories and actions.
By Joe Werle - Jun 19, 2026