Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
object-merger
Advanced tools
Merge Javascript Objects properly instead of overwriting them. Essentially a deep Object.assign
. It's very simple, written in ES6+ and handles a basic deep copy of objects.
This was written due to lack of power with Object.assign
and the heavier weight of some alternative packages trying to support everything.
const merge = require('object-merger');
const obj4 = merge(obj1, obj2, obj3); // returns a new object, doesn't modify existing.
Optionally you could add a static to the Object
Object.merge = require('object-merger');
const obj4 = Object.merge(obj1, obj2, obj3); // returns a new object, doesn't modify existing.
Check out the test folder for more!
$ npm install object-merger
As many objects as you'd like to merge from left to right.
From the package
$ npm test
FAQs
Deep merge objects, better version of native Object.assign.
The npm package object-merger receives a total of 14 weekly downloads. As such, object-merger popularity was classified as not popular.
We found that object-merger demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.