Security News
Supply Chain Attack Detected in @solana/web3.js Library
A supply chain attack has been detected in versions 1.95.6 and 1.95.7 of the popular @solana/web3.js library.
The high-level streams library for Node.js and the browser. View the Highland website for more in-depth documentation.
Re-thinking the JavaScript utility belt, Highland manages synchronous and asynchronous code easily, using nothing more than standard JavaScript and Node-like Streams. You may be familiar with Promises, EventEmitters and callbacks, but moving between them is far from seamless. Thankfully, there exists a deeper abstraction which can free our code. By updating the tools we use on Arrays, and applying them to values distributed in time instead of space, we can discard plumbing and focus on the important things. With Highland, you can switch between synchronous and asynchronous data sources at will, without having to re-write your code. Time to dive in!
Made by @caolan, with help and patience from friends - Leave a tip or fork this :)
Usage as a Node.js module
var _ = require('highland');
Converting to/from Highland Streams
_([1,2,3,4]).toArray(function (xs) {
// xs is [1,2,3,4]
});
Mapping over a Stream
var doubled = _([1,2,3,4]).map(function (x) {
return x * 2;
});
Reading files in parallel (4 at once)
var data = _(filenames).map(readFile).parallel(4);
Handling errors
data.errors(function (err, rethrow) {
// handle or rethrow error
});
Piping to a Node Stream
data.pipe(output);
Piping in data from Node Streams
var output = fs.createWriteStream('output');
var docs = db.createReadStream();
// wrap a node stream and pipe to file
_(docs).filter(isBlogpost).pipe(output);
// or, pipe in a node stream directly:
var through = _.pipeline(_.filter(isBlogpost));
docs.pipe(through).pipe(output);
Handling events
var clicks = _('click', btn).map(1);
var counter = clicks.scan(0, _.add);
counter.each(function (n) {
$('#count').text(n);
});
Learn more at highlandjs.org
FAQs
The high-level streams library
The npm package highland receives a total of 76,355 weekly downloads. As such, highland popularity was classified as popular.
We found that highland demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
A supply chain attack has been detected in versions 1.95.6 and 1.95.7 of the popular @solana/web3.js library.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.