Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
[![NPM version][npm-image]][npm-url] [![npm download][download-image]][download-url]
An interpreter with language syntax like MATLAB®/Octave written in Typescript.
This package emulates a parser and evaluator for a subset of MATLAB®/Octave language written completely in Typescript.
It can run in browser environment and implements an arbitrary precision arithmetics using decimal.js package.
It uses the Jison parser generator to generate a parser that create an AST (Abstract Syntax Tree) of input.
Other components besides the parser are the evaluator and the MathML unparser, which computes the inputs and generates mathematical representations of the inputs and results, respectively.
This software is intended for educational purposes, to provide teachers and students with a computer aided calculation tool that is capable of running in a browser environment. So it can be easily adapted to be used on different devices and environments.
A functional demo use of this package in a Web application can be found here.
MathJSLab works on any ES6 compatible JavaScript engine, including Node.js, Chrome, Firefox, Safari, and Edge.
Install the mathjslab
package:
npm install mathjslab
The basic API is an instantiation of Evaluator
with optional configuration.
Initialize evaluator with:
let evaluator = Evaluator.initialize(EvaluatorConfiguration);
Examples:
let tree = evaluator.Parse('x=sqrt(1+2*3)');
let result = evaluator.Evaluate(tree);
let mathml = evaluator.UnparseML(tree);
You can use the latest version of this module directly from unpkg using:
<script type="module" src="https://www.unpkg.com/mathjslab"></script>
To contribute to this project see our contributing guidelines.
Join the community chat:
Run the mathjslab
tests:
npm run test
Build mathjslab
:
npm run build
Currently only the mathematical expressions of the language are implemented.
The control and loop structures are not yet implemented.
Some differences from the original MATLAB®/Octave language are
MIT License
Copyright © 2016-2023 Sergio Lindau
Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
FAQs
MathJSLab - An interpreter with language syntax like MATLAB®/Octave, ISBN 978-65-00-82338-7.
The npm package mathjslab receives a total of 553 weekly downloads. As such, mathjslab popularity was classified as not popular.
We found that mathjslab demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.