Security News
JavaScript Leaders Demand Oracle Release the JavaScript Trademark
In an open letter, JavaScript community leaders urge Oracle to give up the JavaScript trademark, arguing that it has been effectively abandoned through nonuse.
npm install gulp-yaml --save-dev
const yaml = require('gulp-yaml');
gulp.src('./src/*.yml')
.pipe(yaml({ schema: 'DEFAULT_SAFE_SCHEMA' }))
.pipe(gulp.dest('./dist/'))
gulp.src('./src/*.yml')
.pipe(yaml({ space: 2 }))
.pipe(gulp.dest('./dist/'))
gulp.src('./src/*.yml')
.pipe(yaml({ safe: true }))
.pipe(gulp.dest('./dist/'))
Type: Boolean
Default: true
Enable or disable support for regexps, functions and undefined.
This flag should always be enabled when working with untrusted data.
When this flag is enabled then safeLoad method is used, otherwise load.
Type: Number
or String
Default: null
Control spacing in the resulting output. It has the same usage as for JSON.stringify
Type: Function
or Array
Default: null
Further transform the resulting output. It has the same usage as for JSON.stringify
Type: String
Default: DEFAULT_SAFE_SCHEMA
or DEFAULT_FULL_SCHEMA
Specifies what schema to use. Valid values are the same that js-yaml supports, except they are received as strings (lowercase or uppercase). See the example in the Usage section of this README. The default schema is chosen using the safe
option.
Type: String
Default: the path of the file processed
String to be used as a file path in error/warning messages.
Type: String
Default: .json
File extension of the generated file.
Type: Boolean
Default: false
Compatibility with JSON.parse behaviour. If true, then duplicate keys in a mapping will override values rather than throwing an error.
Type: Function
Default: null
Function to call on warning messages. Loader will throw on warnings if this function is not provided.
MIT © Cristian Trifan
FAQs
Convert YAML to JSON
The npm package gulp-yaml receives a total of 4,156 weekly downloads. As such, gulp-yaml popularity was classified as popular.
We found that gulp-yaml demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
In an open letter, JavaScript community leaders urge Oracle to give up the JavaScript trademark, arguing that it has been effectively abandoned through nonuse.
Security News
The initial version of the Socket Python SDK is now on PyPI, enabling developers to more easily interact with the Socket REST API in Python projects.
Security News
Floating dependency ranges in npm can introduce instability and security risks into your project by allowing unverified or incompatible versions to be installed automatically, leading to unpredictable behavior and potential conflicts.