Research
Security News
Threat Actor Exposes Playbook for Exploiting npm to Build Blockchain-Powered Botnets
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Streaming JSON filtering on the command line. Supports JSON querying and expression based filtering.
Works great for JSON datasets that are too big to JSON.parse() or for situations where you want to start reading data immediately.
Powered by JSONStream which is powered by jsonparse
Pipe JSON data to stdin!
jsonfilter <selector> [--match="filter expression"]
filter
is a string to 'query' your JSON with.
Matches will be printed as Newline Delimited JSON (NDJSON)
some examples:
Emit the value of a particular key by naming it, e.g. "name"
matches the key name
in an object and returns the value:
$ echo '{"name": "Joe Blogs", "age": 28}' | jsonfilter "name"
"Joe Blogs"
rows.*
matches any child elements of rows
, e.g.:
$ echo '{"name": "foo", "type": "bar"}{"name": "foobar", "type": "barfoo"}' | jsonfilter "name"
"foo"
"foobar"
"rows.*"
matches any child elements (items inside the array) of rows
, e.g.:
$ echo '{"rows": [ {"this object": "will be matched"}, {"so will": "this one"} ]}' | jsonfilter "rows.*"
{"this object": "will be matched"}
{"so will": "this one"}
"rows.*.doc"
matches all children of rows
with key doc
, e.g.:
$ echo '{"rows": [ {"doc": {"this object": "will be matched"}, "foo": "bar"} ]}' | jsonfilter "rows.*.doc"
{'this object': 'will be matched'}
"rows..doc"
recursively matches all children of rows
and emits all with key doc
, e.g.:
$ echo '{"rows": [ {"foo": {"bar": {"baz": {"taco": {"doc": "woo"}}}}} ]}' | jsonfilter "rows..doc"
"woo"
by default all matched objects are emitted. You can supply a custom JS expression to filter out matching objects with the --match
option.
$ echo '{"name": "foo", "type": "bar"}{"name": "foobar", "type": "barfoo"}' | jsonfilter "name" --match="this === 'foo'"
# foo
$ echo '{"name": "foo", "type": "bar"}{"name": "foobar", "type": "barfoo"}' | jsonfilter --match="this.name === 'foo'"
{"name": "foo", "type": "bar"}
$ echo '{"name": "foo", "type": "bar"}{"name": "foobar", "type": "barfoo"}' | jsonfilter --match="this.name.indexOf('foo') > -1"
{"name": "foo", "type": "bar"}
{"name": "foobar", "type": "barfoo"}
FAQs
Streaming JSON filtering on the command line
The npm package jsonfilter receives a total of 23,628 weekly downloads. As such, jsonfilter popularity was classified as popular.
We found that jsonfilter demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Security News
NVD’s backlog surpasses 20,000 CVEs as analysis slows and NIST announces new system updates to address ongoing delays.
Security News
Research
A malicious npm package disguised as a WhatsApp client is exploiting authentication flows with a remote kill switch to exfiltrate data and destroy files.