Security News
The Risks of Misguided Research in Supply Chain Security
Snyk's use of malicious npm packages for research raises ethical concerns, highlighting risks in public deployment, data exfiltration, and unauthorized testing.
form-fix-array
Advanced tools
Fixes key names for HTTP form data, to ensure that arrays are handled correctly.
This makes sure that form data is handled correctly when sent to a server.
While arrays are a natively supported feature of HTTP form data (whether URL-encoded or multipart/form-data), implementation differences exist. Especially PHP is notorious for refusing to recognize a field as an array unless it specifically has array brackets in the field name. This means that field=val1&field=val2
will simply be interpreted as val2
, whereas field[]=val1&field[]=val2
will be interpreted as an array containing val1
and val2
.
This module ensures that all fields containing an array of values have a []
suffix, adding it where necessary (and doing nothing where it is already there). That way, every receiving server should be able to handle the request.
It does not currently support objects ('associative arrays'), only plain arrays.
WTFPL or CC0, whichever you prefer. A donation and/or attribution are appreciated, but not required.
My income consists entirely of donations for my projects. If this module is useful to you, consider making a donation!
You can donate using Bitcoin, PayPal, Gratipay, Flattr, cash-in-mail, SEPA transfers, and pretty much anything else.
Pull requests welcome. Please make sure your modifications are in line with the overall code style, and ensure that you're editing the .coffee
files, not the .js
files.
Build tool of choice is gulp
; simply run gulp
while developing, and it will watch for changes.
Be aware that by making a pull request, you agree to release your modifications under the licenses stated above.
var formFixArray = require("form-fix-array");
var sampleFormData = {
"fieldOne": "value 1",
"fieldTwo": ["value 2a", "value 2b"],
"fieldThree[]": ["value 3a", "value 3b"]
}
var fixedFormData = formFixArray(sampleFormData);
/* Result:
{
"fieldOne": "value 1",
"fieldTwo[]": ["value 2a", "value 2b"],
"fieldThree[]": ["value 3a", "value 3b"]
}
*/
FAQs
Fixes key names for HTTP form data, to ensure that arrays are handled correctly.
The npm package form-fix-array receives a total of 9,898 weekly downloads. As such, form-fix-array popularity was classified as popular.
We found that form-fix-array demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Snyk's use of malicious npm packages for research raises ethical concerns, highlighting risks in public deployment, data exfiltration, and unauthorized testing.
Research
Security News
Socket researchers found several malicious npm packages typosquatting Chalk and Chokidar, targeting Node.js developers with kill switches and data theft.
Security News
pnpm 10 blocks lifecycle scripts by default to improve security, addressing supply chain attack risks but sparking debate over compatibility and workflow changes.