Security News
The Dark Side of Open Source
At Node Congress, Socket CEO Feross Aboukhadijeh uncovers the darker aspects of open source, where applications that rely heavily on third-party dependencies can be exploited in supply chain attacks.
himalaya
Advanced tools
Readme
Parse HTML into JSON
Try online 🚀 | Read the specification 📖
npm install himalaya
import fs from 'fs'
import {parse} from 'himalaya'
const html = fs.readFileSync('/webpage.html', {encoding: 'utf8'})
const json = parse(html)
console.log('👉', json)
Download himalaya.js and put it in a <script>
tag. Himalaya will be accessible from window.himalaya
.
const html = '<div>Hello world</div>'
const json = window.himalaya.parse(html)
console.log('👉', json)
Himalaya bundles well with Browersify and Webpack.
<div class='post post-featured'>
<p>Himalaya parsed me...</p>
<!-- ...and I liked it. -->
</div>
[{
type: 'element',
tagName: 'div',
attributes: [{
key: 'class',
value: 'post post-featured'
}],
children: [{
type: 'element',
tagName: 'p',
attributes: [],
children: [{
type: 'text',
content: 'Himalaya parsed me...'
}]
}, {
type: 'comment',
content: ' ...and I liked it. '
}]
}]
Note: In this example, text nodes consisting of whitespace are not shown for readability.
Himalaya transforms HTML into JSON, that's it. Himalaya is synchronous and does not require any complicated callbacks.
Himalaya handles a lot of HTML's fringe cases, like:
<p><b>...</p>
<span>...</b></span>
<meta>
and <img>
<input/>
<!doctype>
and <-- comments -->
<script>
, <style>
, and HTML5 <template>
tagsHimalaya does not cut corners and returns an accurate representation of the HTML supplied. To remove whitespace, post-process the JSON; check out an example script.
Himalaya can include the start and end positions of nodes in the parse output.
To enable this, you can pass parse
the parseDefaults
extended with includePositions: true
:
import { parse, parseDefaults } from 'himalaya'
parse('<img>', { ...parseDefaults, includePositions: true })
/* =>
[
{
"type": "element",
"tagName": "img",
"attributes": [],
"children": [],
"position": {
"start": {
"index": 0,
"line": 0,
"column": 0
},
"end": {
"index": 5,
"line": 0,
"column": 5
}
}
}
]
*/
Himalaya provides a stringify
method. The following example parses the HTML to JSON then parses the JSON back into HTML.
import fs from 'fs'
import {parse, stringify} from 'himalaya'
const html = fs.readFileSync('/webpage.html', {encoding: 'utf8'})
const json = parse(html)
fs.writeFileSync('/webpage.html', stringify(json))
First, my friends weren't helpful. Except Josh, Josh had my back.
While I was testing the parser, I threw a download of my Twitter homepage in and got a giant JSON blob out. My code editor Sublime Text has a mini-map and looking at it sideways the data looked like a never-ending mountain range. Also, "himalaya" has H, M, L in it.
FAQs
HTML to JSON parser
The npm package himalaya receives a total of 24,814 weekly downloads. As such, himalaya popularity was classified as popular.
We found that himalaya demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
At Node Congress, Socket CEO Feross Aboukhadijeh uncovers the darker aspects of open source, where applications that rely heavily on third-party dependencies can be exploited in supply chain attacks.
Research
Security News
The Socket Research team found this npm package includes code for collecting sensitive developer information, including your operating system username, Git username, and Git email.
Security News
OpenJS is warning of social engineering takeovers targeting open source projects after receiving a credible attempt on the foundation.