Research
Security News
Kill Switch Hidden in npm Packages Typosquatting Chalk and Chokidar
Socket researchers found several malicious npm packages typosquatting Chalk and Chokidar, targeting Node.js developers with kill switches and data theft.
memoize-cache
Advanced tools
A configurable cache support for functions (https://www.npmjs.com/package/async-deco). It contains 2 different implementations.
The constructor takes an option object with 3 optional attributes:
Example:
var Cache = require('memoize-cache/ram-cache'); // or require('memoize-cache').ramCache;
// no values, uses always the same key for store any value
var cache = new Cache();
// using the id property of the first argument
// this cache will store maximum 100 items
// every item will be considered stale and purged after 20 seconds.
var cache = new Cache({key: function (config){
return config.id;
}}, maxLen: 100, maxAge: 20000);
The constructor takes an cache-manager object, an optional "key" function, and an optional "getMaxAge" function.
The "key" function will be used to extract the cache key (used in the push and query method for storing, retrieving the cached value). The key returned should be a string or it will be converted to JSON and then md5. Default: a function returning a fixed key. The value won't be cached if the function returns null.
"getMaxAge" allows you to use a different TTL for a specific item. It must be a function and it takes the same arguments as the "push" method (an array of inputs and the output). It returns the TTL in seconds (YES, THESE ARE SECONDS INSTEAD OF MILLISECONDS!!!). Infinity means: forever, 0 means: don't cache. If it returns undefined, the default ttl will be used. Example:
var Cache = require('memoize-cache/cache'); // or require('memoize-cache').cache;
var cacheManager = require('cache-manager'); // npm install cache-manager
// using the id property of the first argument
// this cache will store maximum 100 items
// every item will be considered stale and purged after 20 seconds.
var memoryCache = cacheManager.caching({store: 'memory', max: 100, ttl: 20});
var cache = new Cache(memoryCache, function (config){
return config.id;
});
cache.push(args, output);
"args" is an array containing the arguments passed to the function that generated the output.
cache.query(args, function (err, result){
// result.cached is true when you find a cached value
// result.hit is the value cached
// cached.key is the key used to store the value (might be useful for debugging)
});
"args" is an array containing the arguments passed to the function that generated the output.
var key = cache.getCacheKey(...);
It takes as arguments the same arguments of the function. It returns the cache key. It uses the function passed in the factory function. If it returns a string it uses it as key. In case it is not a string it tries to serialize it to JSON and then to an hash (using md5).
This is implemented only on ram-cache.
cache.reset();
This is implemented only on ram-cache.
cache.len();
This is implemented only on ram-cache.
cache.size(true); // size is an human readable size
cache.size(false); // size is expressed in byte
If the first argument is true the output will be pretty printed.
This is a utility function used to generate a function that returns a key.
var keyGetter = require('memoize-cache/key-getter')
var getKey = keyGetter(func);
It takes a function as argument (returning a key). But it takes care of checking if it is a valid key and to hash it.
FAQs
A cache support for memoized functions
The npm package memoize-cache receives a total of 53 weekly downloads. As such, memoize-cache popularity was classified as not popular.
We found that memoize-cache demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers found several malicious npm packages typosquatting Chalk and Chokidar, targeting Node.js developers with kill switches and data theft.
Security News
pnpm 10 blocks lifecycle scripts by default to improve security, addressing supply chain attack risks but sparking debate over compatibility and workflow changes.
Product
Socket now supports uv.lock files to ensure consistent, secure dependency resolution for Python projects and enhance supply chain security.