Security News
GitHub Removes Malicious Pull Requests Targeting Open Source Repositories
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
prom-utils
Advanced tools
Promise utilities designed for looping.
Limit the concurrency of promises. This can be used to control how many requests are made to a server, for example.
// Limit concurrency to at most 3
const limiter = rateLimit(3)
for (const url of urls) {
await limiter.add(fetch(url))
}
// Wait for unresolved promises to resolve
await limiter.finish()
Batch calls via a local queue. This can be used to batch values before writing to a database, for example.
Automatically executes fn
when batchSize
is reached or timeout
is
reached, if set. The timer will be started when the first item is
enqueued and reset when flush is called explicitly or implicitly.
Call queue.flush()
to flush explicitly.
Batch size defaults to 500. The last result of calling fn
can be
obtained by referencing lastResult
on the returned object.
Types
export type QueueResult = {
flush(): Promise<void>
enqueue(item: any): Promise<void>
lastResult?: any
}
export interface QueueOptions {
batchSize?: number
batchBytes?: number
timeout?: number
}
export type Queue = (
fn: (arr: any[]) => any,
options?: QueueOptions
) => QueueResult
Example
const writeToDatabase = async (records) => {...}
const batchSize = 250
const queue = batchQueue(writeToDatabase, {batchSize})
for (const record of records) {
await queue.enqueue(record)
}
await queue.flush()
Pause a loop by awaiting proceed
. When pause
is called proceed
will
return a promise that is resolved when resume
is called. Otherwise,
proceed
will return immediately. If timeout
is passed, resume
will
be called after timeout
if it is not manually called first.
const shouldProcess = pausable()
onSomeCondition(shouldProcess.pause)
onSomeOtherCondition(shouldProcess.resume)
for (const record of records) {
await shouldProcess.proceed()
await processRecord(record)
}
Defer resolving a promise until done
is called.
const delay = (milliseconds: number) => {
const deferred = defer()
setTimeout(deferred.done, milliseconds, '🦄')
return deferred.promise
}
Call heartbeatFn every interval until promise resolves or rejects. Returns the value of the resolved promise.
const heartbeatFn = () => {
// Emit heartbeat
}
const result = await pacemaker(heartbeatFn, someProm)
0.6.1
rateLimit
- Catch promise exceptions which will be re-thrown in .add
or .finish
.FAQs
Promise utilities: rate limiting, queueing/batching, defer, etc.
The npm package prom-utils receives a total of 118 weekly downloads. As such, prom-utils popularity was classified as not popular.
We found that prom-utils demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
Security News
Node.js will be enforcing stricter semver-major PR policies a month before major releases to enhance stability and ensure reliable release candidates.