![Malicious npm Package Typosquats react-login-page to Deploy Keylogger](https://cdn.sanity.io/images/cgdhsj6q/production/007b21d9cf9e03ae0bb3f577d1bd59b9d715645a-1024x1024.webp?w=400&fit=max&auto=format)
Research
Security News
Malicious npm Package Typosquats react-login-page to Deploy Keylogger
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
jest-watcher
Advanced tools
Package description
The jest-watcher package is a part of the Jest ecosystem and is used to implement custom watch plugins for Jest. It provides an API to create plugins that can hook into Jest's watch mode, allowing developers to add custom watch behaviors to their test suites.
Custom Watch Plugins
This feature allows developers to create custom watch plugins that can react to file changes, determine if a test suite should run, and more. The code sample shows a basic structure of a custom watch plugin.
class MyCustomPlugin {
apply(jestHooks) {
jestHooks.onFileChange(({ projects }) => {
console.log('Files changed:', projects[0].changedFiles);
});
jestHooks.shouldRunTestSuite(() => true);
}
}
module.exports = MyCustomPlugin;
Interactive Watch Plugins
This feature allows the creation of interactive watch plugins that can provide custom interactive CLI interfaces during Jest's watch mode. The code sample demonstrates how to implement an interactive behavior that filters tests based on a pattern.
class MyInteractivePlugin {
run(globalConfig, updateConfigAndRun) {
// Implement interactive behavior here
updateConfigAndRun({
testNamePattern: 'pattern to filter tests'
});
return Promise.resolve();
}
}
module.exports = MyInteractivePlugin;
Mocha-watch is a watch mode for Mocha testing framework. It provides similar functionality to jest-watcher by re-running tests when file changes are detected. However, it is tailored for Mocha and does not offer the same plugin API for extending watch behavior.
Karma is a test runner that works with multiple testing frameworks like Jasmine, Mocha, and QUnit. It can watch files and re-run tests on changes, similar to jest-watcher. Karma is more of a full-fledged test runner with a focus on running tests in different browsers, whereas jest-watcher is specifically for creating watch plugins in Jest.
AVA is a test runner with built-in watch mode functionality. It automatically re-runs tests when it detects changes. AVA's watch mode is not plugin-based like jest-watcher, but it offers a simple and fast out-of-the-box solution for watching tests without the need for additional configuration.
Changelog
23.1.0
[jest-each]
Add pretty-format serialising to each titles (#6357)[jest-cli]
shouldRunTestSuite watch hook now receives an object with config
, testPath
and duration
(#6350)[jest-each]
Support one dimensional array of data (#6351)[jest-watch]
create new package jest-watch
to ease custom watch plugin development (#6318)[jest-circus]
Make hooks in empty describe blocks error (#6320)errorOnDeprecated
which makes calling deprecated APIs throw hepful error messages (#6339)[jest-each]
Fix pluralising missing arguments error (#6369)[jest-each]
Stop test title concatenating extra args (#6346)[expect]
toHaveBeenNthCalledWith/nthCalledWith gives wrong call messages if not matched (#6340)[jest-each]
Make sure invalid arguments to each
points back to the user's code (#6347)[expect]
toMatchObject throws TypeError when a source property is null (#6313)[jest-cli]
Normalize slashes in paths in CLI output on Windows (#6310)[jest-cli]
Fix run beforeAll in excluded suites tests" mode. (#6234)[jest-haste-map
] Compute SHA-1s for non-tracked files when using Node crawler (#6264)[docs]
Improve documentation of mockClear
, mockReset
, and mockRestore
(#6227)[jest-each]
Refactor each to use shared implementation with core (#6345)[jest-each]
Update jest-each docs for serialising values into titles (#6337)[jest-circus]
Add dependency on jest-each (#6309)[filenames]
Rename "integration-tests" to "e2e" (#6315)[docs]
Mention the use of commit hash with --changedSince
flag (#6330)FAQs
Unknown package
The npm package jest-watcher receives a total of 20,019,613 weekly downloads. As such, jest-watcher popularity was classified as popular.
We found that jest-watcher demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 5 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
Security News
The JavaScript community has launched the e18e initiative to improve ecosystem performance by cleaning up dependency trees, speeding up critical parts of the ecosystem, and documenting lighter alternatives to established tools.
Product
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.