Security News
How Threat Actors are Abusing GitHub’s File Upload Feature to Host Malware
GitHub is susceptible to a CDN flaw that allows attackers to host malware on any public repository.
is-stream
Advanced tools
Package description
The is-stream npm package is a simple utility used to check if an object is a Node.js stream. It can differentiate between readable, writable, duplex (both readable and writable), and transform (a type of duplex stream) streams. This package is useful when you need to validate that a given object conforms to the stream interface expected by Node.js APIs.
Check if an object is a stream
This feature allows you to check if a given object is a Node.js stream.
const isStream = require('is-stream');
isStream(process.stdin); // true
isStream({}); // false
Check if a stream is readable
This feature allows you to check if a stream is a readable stream.
const isStream = require('is-stream');
isStream.readable(process.stdin); // true
isStream.readable(process.stdout); // false
Check if a stream is writable
This feature allows you to check if a stream is a writable stream.
const isStream = require('is-stream');
isStream.writable(process.stdout); // true
isStream.writable(process.stdin); // false
Check if a stream is a duplex stream
This feature allows you to check if a stream is a duplex stream, which is both readable and writable.
const isStream = require('is-stream');
const { Duplex } = require('stream');
const duplexStream = new Duplex();
isStream.duplex(duplexStream); // true
isStream.duplex(process.stdin); // false
Check if a stream is a transform stream
This feature allows you to check if a stream is a transform stream, which is a type of duplex stream with additional functionality.
const isStream = require('is-stream');
const { Transform } = require('stream');
const transformStream = new Transform();
isStream.transform(transformStream); // true
isStream.transform(process.stdin); // false
isstream is another package that provides a similar functionality to is-stream. It checks if an object is a stream. The main difference is in the implementation and the specific checks performed. is-stream is more up-to-date and has more downloads, suggesting it is more popular and potentially more reliable.
stream-assert is a package that provides a set of assertion functions for streams, which can be used in testing. While it includes functionality to assert the type of streams, it goes beyond just checking if an object is a stream by offering a suite of assertions for stream content and behavior.
Readme
Check if something is a Node.js stream
npm install is-stream
import fs from 'node:fs';
import {isStream} from 'is-stream';
isStream(fs.createReadStream('unicorn.png'));
//=> true
isStream({});
//=> false
Returns a boolean
for whether it's a Stream
.
Returns a boolean
for whether it's a stream.Writable
, an http.OutgoingMessage
, an http.ServerResponse
or an http.ClientRequest
.
Returns a boolean
for whether it's a stream.Readable
or an http.IncomingMessage
.
Returns a boolean
for whether it's a stream.Duplex
.
Returns a boolean
for whether it's a stream.Transform
.
Type: boolean
Default: true
When this option is true
, the method returns false
if the stream has already been closed.
FAQs
Check if something is a Node.js stream
The npm package is-stream receives a total of 60,183,457 weekly downloads. As such, is-stream popularity was classified as popular.
We found that is-stream demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
GitHub is susceptible to a CDN flaw that allows attackers to host malware on any public repository.
Security News
At Node Congress, Socket CEO Feross Aboukhadijeh uncovers the darker aspects of open source, where applications that rely heavily on third-party dependencies can be exploited in supply chain attacks.
Research
Security News
The Socket Research team found this npm package includes code for collecting sensitive developer information, including your operating system username, Git username, and Git email.