Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Need to pick out an object based on a subset of its properties? Say you've got:
{ x:1, } -> A
{ x:1, y:1 } -> B
{ x:1, y:2 } -> C
Then patrun can give you the following results:
{ x:1 } -> A
{ x:2 } -> no match
{ x:1, y:1 } -> B
{ x:1, y:2 } -> C
{ x:2, y:2 } -> no match
{ y:1 } -> no match
It's basically query-by-example for property sets.
This module is used by the Seneca framework to pattern match actions.
If you're using this library, feel free to contact me on twitter if you have any questions! :) @rjrodger
This module works on both Node.js and browsers.
Current Version: 0.3.0
Tested on: Node.js 0.10.31, Chrome 38, Firefox 33, Safari 7, Opera 25
Here's how you register some patterns, and then search for matches:
var patrun = require('patrun')
var pm = patrun()
.add({a:1},'A')
.add({b:2},'B')
// prints A
console.log( pm.find({a:1}) )
// prints null
console.log( pm.find({a:2}) )
// prints A, b:1 is ignored, it was never registered
console.log( pm.find({a:1,b:1}) )
// prints B, c:3 is ignored, it was never registered
console.log( pm.find({b:2,c:3}) )
You're matching a subset, so your input can contain any number of other properties.
For Node.js:
npm install jsonic
For Bower:
bower install patrun
This module lets you build a simple decision tree so you can avoid writing if statements. It tries to make the minimum number of comparisons necessary to pick out the most specific match.
This is very useful for handling situations where you have lots of "cases", some of which have "sub-cases", and even "sub-sub-sub-cases".
For example, here are some sales tax rules:
Do this:
// queries return a function, in case there is some
// really custom logic (and there is, see US, NY below)
// in the normal case, just pass the rate back out with
// an identity function
// also record the rate for custom printing later
function I(val) { var rate = function(){return val}; rate.val=val; return rate }
var salestax = patrun()
salestax
.add({}, I(0.0) )
.add({ country:'IE' }, I(0.25) )
.add({ country:'UK' }, I(0.20) )
.add({ country:'DE' }, I(0.19) )
.add({ country:'IE', type:'reduced' }, I(0.135) )
.add({ country:'IE', type:'food' }, I(0.048) )
.add({ country:'UK', type:'food' }, I(0.0) )
.add({ country:'DE', type:'reduced' }, I(0.07) )
.add({ country:'US' }, I(0.0) ) // no federeal rate (yet!)
.add({ country:'US', state:'AL' }, I(0.04) )
.add({ country:'US', state:'AL', city:'Montgomery' }, I(0.10) )
.add({ country:'US', state:'NY' }, I(0.07) )
.add({ country:'US', state:'NY', type:'reduced' }, function under110(net){
return net < 110 ? 0.0 : salestax.find( {country:'US', state:'NY'} )
})
console.log('Default rate: ' +
salestax.find({})(99) )
console.log('Standard rate in Ireland on E99: ' +
salestax.find({country:'IE'})(99) )
console.log('Food rate in Ireland on E99: ' +
salestax.find({country:'IE',type:'food'})(99) )
console.log('Reduced rate in Germany on E99: ' +
salestax.find({country:'IE',type:'reduced'})(99) )
console.log('Standard rate in Alabama on $99: ' +
salestax.find({country:'US',state:'AL'})(99) )
console.log('Standard rate in Montgomery, Alabama on $99: ' +
salestax.find({country:'US',state:'AL',city:'Montgomery'})(99) )
console.log('Reduced rate in New York for clothes on $99: ' +
salestax.find({country:'US',state:'NY',type:'reduced'})(99) )
// prints:
// Default rate: 0
// Standard rate in Ireland on E99: 0.25
// Food rate in Ireland on E99: 0.048
// Reduced rate in Germany on E99: 0.135
// Standard rate in Alabama on $99: 0.04
// Standard rate in Montgomery, Alabama on $99: 0.1
// Reduced rate in New York for clothes on $99: 0
You can take a look a the decision tree at any time:
// print out patterns, using a custom format function
console.log(salestax.toString( function(f){return f.name+':'+f.val} ))
// prints:
-> :0
city=Montgomery, country=US, state=AL -> :0.1
country=IE -> :0.25
country=IE, type=reduced -> :0.135
country=IE, type=food -> :0.048
country=UK -> :0.2
country=UK, type=food -> :0
country=DE -> :0.19
country=DE, type=reduced -> :0.07
country=US -> :0
country=US, state=AL -> :0.04
country=US, state=NY -> :0.07
country=US, state=NY, type=reduced -> under110:undefined
And that's it.
You can customize the way that data is stored. For example, you might want to add a constant property to each pattern.
To do this, you provide a custom function when you create the patrun object:
var alwaysAddFoo = patrun( function(pat){
pat.foo = true
})
alwaysAddFoo.add( {a:1}, "bar" )
alwaysAddFoo.find( {a:1} ) // nothing!
alwaysAddFoo.find( {a:1,foo:true} ) // == "bar"
Your custom function can also return a modifer function for found data, and optionally a modifier for removing data.
Here's an example that modifies found data:
var upperify = patrun( function(pat){
return function(args,data) {
return (''+data).toUpperCase()
}
})
upperify.add( {a:1}, "bar" )
upperify.find( {a:1} ) // BAR
Finally, here's an example that allows you to add multiple matches for a given pattern:
var many = patrun( function(pat,data){
var items = this.find(pat,true) || []
items.push(data)
return {
find: function(args,data){
return 0 < items.length ? items : null
},
remove: function(args,data){
items.pop()
return 0 == items.length;
}
}
})
many.add( {a:1}, 'A' )
many.add( {a:1}, 'B' )
many.add( {b:1}, 'C' )
many.find( {a:1} ) // [ 'A', 'B' ]
many.find( {b:1} ) // [ 'C' ]
many.remove( {a:1} )
many.find( {a:1} ) // [ 'A' ]
many.remove( {b:1} )
many.find( {b:1} ) // null
Check out the custom-gex test case for some really funky pattern matching using * globs.
Generates a new pattern matcher instance. Optionally provide a customisation function.
Register a pattern, and the object that will be returned if an input matches.
Return the unique match for this subject, or null if not found. The properties of the subject are matched against the patterns previously added, and the most specifc pattern wins. Unknown properties in the subject are ignored. You can optionally provide a second boolean parameter, exact. If true, then all properties of the subject must match.
Return the list of registered patterns that contain this partial pattern. You can use wildcards for property values. Omitted values are not equivalent to a wildcard of "*", you must specify each property explicitly. You can optionally provide a second boolean parameter, exact. If true, then only those patterns matching the pattern-partial exactly are returned.
pm = patrun()
.add({a:1,b:1},'B1')
.add({a:1,b:2},'B2')
// finds nothing: []
console.log( pm.list({a:1}) )
// finds:
// [ { match: { a: '1', b: '1' }, data: 'B1' },
// { match: { a: '1', b: '2' }, data: 'B2' } ]
console.log( pm.list({a:1,b:'*'}) )
If you provide no pattern argument at all, list will list all patterns that have been added.
// finds everything
console.log( pm.list() )
Remove this pattern, and it's object, from the matcher.
Generate a string representation of the decision tree for debugging. Optionally provide a formatting function for objects.
Generate JSON representation of the tree.
From the Irish patrún: pattern. Pronounced pah-troon.
sudo npm install phantomjs@1.9.1-0 uglify-js -g
FAQs
A fast pattern matcher on JavaScript object properties.
The npm package patrun receives a total of 8,664 weekly downloads. As such, patrun popularity was classified as popular.
We found that patrun demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.