Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Provides a command line utility to generate code in various languages given a plantuml class diagram.
Usage: plantcode [options] <inputFile>
Generates classfile(s) for the provided PlantUML file specified by <input_file>
and writes to standard output.
Options:
-l, --language <language> name of the programming language
which the produced class files
will be written in
-o, --out <output_path> the path to output the file(s) to
--show-languages displays all the current supported
programming languages for use
for with the language option
-h, --help print help and exit
The currently supported languages are
The most recent version of PlantUML does not have a defined grammar to use with parsing the PlantUML code. Below is a guess as to what the grammer for the language should be, relative to the PEG.js parser. This creates a parser which is then used in the creation of all output files. This grammar should validate to any valid PlantUML file.
plantumlfile
= items:((noise newline { return null }) / (noise "@startuml" noise newline filelines:umllines noise "@enduml" noise { var UMLBlock = require("./UMLBlock"); return new UMLBlock(filelines) }))* { for (var i = 0; i < items.length; i++) { if (items[i] === null) { items.splice(i, 1); i--; } } return items }
umllines
= lines:(umlline*) { for (var i = 0; i < lines.length; i++) { if (lines[i]===null) { lines.splice(i, 1); i--; } } return lines; }
umlline
= propertyset newline { return null }
/ titleset newline { return null }
/ noise newline { return null }
/ commentline { return null }
/ noteline { return null }
/ hideline newline { return null }
/ skinparams newline { return null }
/ declaration:packagedeclaration newline { return declaration }
/ declaration:namespacedeclaration newline { return declaration }
/ declaration:classdeclaration newline { return declaration }
/ declaration:interfacedeclaration newline { return declaration }
/ declaration:abstractclassdeclaration newline { return declaration }
/ declaration:memberdeclaration newline { return declaration }
/ declaration:connectordeclaration newline { return declaration }
hideline
= noise "hide empty members" noise
skinparams
= noise "skinparam" noise [^\r\n]+
connectordeclaration
= noise leftObject:objectname noise connectordescription? noise connector:connectortype noise connectordescription? noise rightObject:objectname noise ([:] [^\r\n]+)? { var Connection = require("./Connection"); return new Connection(leftObject, connector, rightObject) }
connectordescription
= noise ["]([\\]["]/[^"])*["] noise
titleset
= noise "title " noise [^\r\n]+ noise
commentline
= noise "'" [^\r\n]+ noise
/ noise ".." [^\r\n\.]+ ".." noise
/ noise "--" [^\r\n\-]+ "--" noise
/ noise "__" [^\r\n\_]+ "__" noise
noteline
= noise "note " noise [^\r\n]+ noise
connectortype
= item:extends { return item }
/ concatenates { var Composition = require("./Composition"); return new Composition() }
/ aggregates { var Aggregation = require("./Aggregation"); return new Aggregation() }
/ connectorsize { return null }
extends
= "<|" connectorsize { var Extension = require("./Extension"); return new Extension(true) }
/ connectorsize "|>" { var Extension = require("./Extension"); return new Extension(false) }
connectorsize
= ".."
/ "-up-"
/ "-down-"
/ "-left-"
/ "-right-"
/ "---"
/ "--"
/ [.]
/ [-]
concatenates
= "*" connectorsize
/ connectorsize [*]
aggregates
= "o" connectorsize
/ connectorsize [o]
startblock
= noise [{] noise
endblock
= noise [}]
propertyset
= "setpropname.*"
packagedeclaration
= "package " objectname startblock newline umllines endblock
/ "package " objectname newline umllines "end package"
abstractclassdeclaration
= noise "abstract " noise "class "? noise classname:objectname noise startblock lines:umllines endblock { var AbstractClass = require("./AbstractClass"); return new AbstractClass(classname, lines) }
/ noise "abstract " noise "class "? noise classname:objectname noise { var AbstractClass = require("./AbstractClass"); return new AbstractClass(classname) }
/ noise "abstract " noise "class "? noise classname:objectname noise newline noise lines:umllines "end class" { var AbstractClass = require("./AbstractClass"); return new AbstractClass(classname, lines) }
noise
= [ \t]*
newline
= [\r\n]
/ [\n]
classdeclaration
= noise "class " noise classname:objectname noise startblock lines:umllines endblock { var Class = require("./Class"); return new Class(classname, lines) }
/ noise "class " noise classname:objectname noise "<<" noise [^>]+ noise ">>" noise { var Class = require("./Class"); return new Class(classname) }
/ noise "class " noise classname:objectname noise { var Class = require("./Class"); return new Class(classname) }
/ noise "class " noise classname:objectname noise newline noise lines:umllines "end class" { var Class = require("./Class"); return new Class(classname, lines) }
interfacedeclaration
= noise "interface " noise interfacename:objectname noise startblock lines:umllines endblock { var Interface = require("./Interface"); return new Interface(interfacename, lines) }
/ noise "interface " noise interfacename:objectname noise "<<" noise [^>]+ noise ">>" noise { var Interface = require("./Interface"); return new Interface(interfacename) }
/ noise "interface " noise interfacename:objectname noise { var Interface = require("./Interface"); return new Interface(interfacename) }
/ noise "interface " noise interfacename:objectname noise newline noise lines:umllines "end interface" { var Interface = require("./Interface"); return new Interface(interfacename, lines) }
color
= [#][0-9a-fA-F]+
namespacedeclaration
= noise "namespace " noise namespacename:objectname noise color? noise startblock lines:umllines endblock { var Namespace = require("./Namespace"); return new Namespace(namespacename, lines) }
/ noise "namespace " noise namespacename:objectname noise newline umllines "end namespace" { var Namespace = require("./Namespace"); return new Namespace(namespacename) }
staticmemberdeclaration
= "static " memberdeclaration
memberdeclaration
= declaration:methoddeclaration { return declaration }
/ declaration:fielddeclaration { return declaration }
fielddeclaration
= noise accessortype:accessortype noise returntype:returntype noise membername:membername noise { var Field = require("./Field"); return new Field(accessortype, returntype, membername) }
/ noise accessortype:accessortype noise membername:membername noise [:] noise returntype:returntype noise { var Field = require("./Field"); return new Field(accessortype, returntype, membername) }
/ noise accessortype:accessortype noise membername:membername noise { var Field = require("./Field"); return new Field(accessortype, "void", membername) }
/ noise returntype:returntype noise membername:membername noise { var Field = require("./Field"); return new Field("+", returntype, membername) }
/ noise membername:membername noise [:] noise returntype:returntype noise { var Field = require("./Field"); return new Field("+", returntype, membername) }
methoddeclaration
= noise field:fielddeclaration [(] parameters:methodparameters [)] noise [:] noise returntype:returntype noise { var Method = require("./Method"); return new Method(field.getAccessType(), returntype, field.getName(), parameters); }
/ noise field:fielddeclaration [(] parameters:methodparameters [)] noise { var Method = require("./Method"); return new Method(field.getAccessType(), field.getReturnType(), field.getName(), parameters); }
methodparameters
= items:methodparameter* { return items; }
methodparameter
= noise item:returntype membername:([ ] membername)? [,]? { var Parameter = require("./Parameter"); return new Parameter(item, membername ? membername[1] : null); }
returntype
= items:[^ ,\n\r\t(){}]+ { return items.join("") }
objectname
= objectname:([A-Za-z_][A-Za-z0-9.]*) { return [objectname[0], objectname[1].join("")].join("") }
membername
= items:([A-Za-z_][A-Za-z0-9_]*) { return [items[0], items[1].join("")].join("") }
accessortype
= publicaccessor
/ privateaccessor
/ protectedaccessor
publicaccessor
= [+]
privateaccessor
= [-]
protectedaccessor
= [#]
Initially this project will only run with node.js and output coffeescript classes. The general idea is that, given any PlantUML file, we will be able to generate class files in any output language. Eventually moving on from node.js and supporting other tools to use for conversion.
The current example is very basic and features a common example of a car.
@startuml
hide empty members
abstract Car {
+ void setModel(String model)
+ void setMake(String make)
+ void setYear(Number)
+ String getModel()
+ String getMake()
+ Number getYear()
}
class Toyota
class Honda
class Ford
Toyota --|> Car
Honda --|> Car
Ford --|> Car
@enduml
class Car
setModel: (model) ->
setMake: (make) ->
setYear: (paramX) ->
getModel: ->
getMake: ->
getYear: ->
class Toyota extends Car
class Honda extends Car
class Ford extends Car
npm install
plantcode -l coffescript tests/car.pegjs > tests/car.coffee
npm test
If you update the PEGJS grammar file src/plantuml.pegjs
you must run this command to update the corresponding
src/plantuml.js
file.
npm run build
FAQs
PlantUML to class file generator.
The npm package plantcode receives a total of 7 weekly downloads. As such, plantcode popularity was classified as not popular.
We found that plantcode demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.