Research
Security News
Malicious PyPI Package ‘pycord-self’ Targets Discord Developers with Token Theft and Backdoor Exploit
Socket researchers uncover the risks of a malicious Python package targeting Discord developers.
promise-all-reject-late
Advanced tools
Like Promise.all, but save rejections until all promises are resolved
Like Promise.all, but save rejections until all promises are resolved.
This is handy when you want to do a bunch of things in parallel, and rollback on failure, without clobbering or conflicting with those parallel actions that may be in flight. For example, creating a bunch of files, and deleting any if they don't all succeed.
Example:
const lateReject = require('promise-all-reject-late')
const { promisify } = require('util')
const fs = require('fs')
const writeFile = promisify(fs.writeFile)
const createFilesOrRollback = (files) => {
return lateReject(files.map(file => writeFile(file, 'some data')))
.catch(er => {
// try to clean up, then fail with the initial error
// we know that all write attempts are finished at this point
return lateReject(files.map(file => rimraf(file)))
.catch(er => {
console.error('failed to clean up, youre on your own i guess', er)
})
.then(() => {
// fail with the original error
throw er
})
})
}
lateReject([array, of, promises])
- Resolve all the promises,
returning a promise that rejects with the first error, or resolves with
the array of results, but only after all promises are settled.FAQs
Like Promise.all, but save rejections until all promises are resolved
The npm package promise-all-reject-late receives a total of 1,918,395 weekly downloads. As such, promise-all-reject-late popularity was classified as popular.
We found that promise-all-reject-late demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover the risks of a malicious Python package targeting Discord developers.
Security News
The UK is proposing a bold ban on ransomware payments by public entities to disrupt cybercrime, protect critical services, and lead global cybersecurity efforts.
Security News
Snyk's use of malicious npm packages for research raises ethical concerns, highlighting risks in public deployment, data exfiltration, and unauthorized testing.