
Research
NPM targeted by malware campaign mimicking familiar library names
Socket uncovered npm malware campaign mimicking popular Node.js libraries and packages from other ecosystems; packages steal data and execute remote code.
parse-csv-stream
Advanced tools
Parse any csv file via stream or csv stream from any other source in Node.js for various usecases like database insertion, logging, file creation, batch processing data etc.
Parse csv files via stream or parse any csv stream from various sources in Node.js for different usecases like batch processing, database insertion, logging, file creation & data transformations etc. Support for large csv files added.
Example:
const parse_csv = require('parse-csv-stream');
const fs = require('fs');
const readStream = fs.createReadStream('./test.csv', 'utf8');
const writeStream = fs.createWriteStream('./test.json');
//default option.
const options = {
// delimiter: ',',
// wrapper: '"',
// newlineSeperator: '\r\n'
};
const parser = new parse_csv(options);
const events = parser.events;
/*
There are 2 approaches you can take :
[A.] events.
[B.] streams.
There are 3 ways to handle data :
[1.] Process each row seperately via events.
[2.] Process resultset (array of rows).
[3.] Pipe parsed stream.
choose any one.
*/
// [A.] working with events.
events.on('data', (row) => {
console.log(row); //process each row seperately.
})
readStream.on('data', (chunk) => {
let resultset = parser.parse(chunk); //process resultset (array of rows).
});
//[B.] Working with streams.
readStream.pipe(parser).pipe(writeStream); //pipe parsed stream.
[MIT License] © Ayush Pratap
FAQs
Parse any csv file via stream or csv stream from any other source in Node.js for various usecases like database insertion, logging, file creation, batch processing data etc.
The npm package parse-csv-stream receives a total of 58 weekly downloads. As such, parse-csv-stream popularity was classified as not popular.
We found that parse-csv-stream demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Socket uncovered npm malware campaign mimicking popular Node.js libraries and packages from other ecosystems; packages steal data and execute remote code.
Research
Socket's research uncovers three dangerous Go modules that contain obfuscated disk-wiping malware, threatening complete data loss.
Research
Socket uncovers malicious packages on PyPI using Gmail's SMTP protocol for command and control (C2) to exfiltrate data and execute commands.