Security News
Weekly Downloads Now Available in npm Package Search Results
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.
:link: Transparent references in JSON
json-rel
converges the following standards and libraries in order to help normalize JSON reference/relationship descriptors:
The goal is to increase developer transparency and to provide a unified, semantic interface for working with related JSON data.
Aside from being all around simple, json-rel
spares library developers from having to:
npm install json-rel
This example shows how to use the main feature of json-rel
, which is being able to provide any relationship or reference string to $
, an "operator" which will automatically identify the correct specification to use based on the relation itself:
import $ from 'json-rel'
const data = {
foo: {
bar: true
}
}
let query = $('foo.bar').use(data).get() // true
let path = $('$.foo.bar').use(data).get() // true
let pointer = $('/foo/bar').use(data).get() // true
If you want to be slightly more concise:
let query = $('foo[bar]', data).get() // true
let path = $('$.foo.bar', data).get() // true
let pointer = $('/foo/bar', data).get() // true
You may also, of course, access and use each specification individually:
import query from 'json-rel'
import path from 'json-rel'
import pointer from 'json-rel'
let query1 = query('foo[bar]', data).get() // true
let path2 = path('$.foo.bar', data).get() // true
let pointer2 = pointer('/foo/bar', data).get() // true
You can also infer the specification directly from the relation itself via which
:
import which from 'json-rel'
which('foo[bar]') // -> json-query
which('$.foo.bar') // -> json-path
which('/foo/bar') // -> json-pointer
FAQs
Transparent references in JSON
The npm package json-rel receives a total of 2 weekly downloads. As such, json-rel popularity was classified as not popular.
We found that json-rel demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.
Security News
A Stanford study reveals 9.5% of engineers contribute almost nothing, costing tech $90B annually, with remote work fueling the rise of "ghost engineers."
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.