![Malicious npm Package Typosquats react-login-page to Deploy Keylogger](https://cdn.sanity.io/images/cgdhsj6q/production/007b21d9cf9e03ae0bb3f577d1bd59b9d715645a-1024x1024.webp?w=400&fit=max&auto=format)
Research
Security News
Malicious npm Package Typosquats react-login-page to Deploy Keylogger
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
pretty-data2
Advanced tools
Readme
nodejs plugin to pretty-print or minify text in XML, JSON, CSS and SQL formats.
Version - 0.40.1
Copyright (c) 2012 Vadim Kiryukhin ( vkiryukhin @ gmail.com )
Home page: http://www.eslinstructor.net/pretty-data/
License: Dual licensed under the MIT and GPL licenses:
http://www.opensource.org/licenses/mit-license.php
http://www.gnu.org/licenses/gpl.html
##Description
pd.xml(data )
- pretty print XML;
pd.json(data)
- pretty print JSON;
pd.css(data )
- pretty print CSS;
pd.sql(data )
- pretty print SQL;
pd.xmlmin(data [, preserveComments])
- minify XML;
pd.jsonmin(data)
- minify JSON text;
pd.cssmin(data [, preserveComments] )
- minify CSS text;
pd.sqlmin(data)
- minify SQL text;
PARAMETERS:
@data
- String; XML, JSON, CSS or SQL text to beautify;
@preserveComments
- Bool (optional, used in npp.minxml and npp.mincss only);
Set this flag to true to prevent removing comments from @data;
@Return
- String;
USAGE:
var pd = require('pretty-data').pd;
var xml_pp = pd.xml(data);
var xml_min = pd.xmlmin(data [,true]);
var json_pp = pd.json(data);
var json_min = pd.jsonmin(data);
var css_pp = pd.css(data);
var css_min = pd.cssmin(data [, true]);
var sql_pp = pd.sql(data);
var sql_min = pd.sqlmin(data);
FAQs
Unknown package
The npm package pretty-data2 receives a total of 336 weekly downloads. As such, pretty-data2 popularity was classified as not popular.
We found that pretty-data2 demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
Security News
The JavaScript community has launched the e18e initiative to improve ecosystem performance by cleaning up dependency trees, speeding up critical parts of the ecosystem, and documenting lighter alternatives to established tools.
Product
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.