Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
route-node
Advanced tools
A package to create a tree (trie) of named routes. It is similar to routington except that nodes are not added by splitting path by segment ("/"). Instead the tree is built with the supplied nodes, meaning each node is a valid route.
This module is being used for developing a router, API is subject to change without notice
$ npm install route-node --save
Building your route tree:
import rootNode from 'route-node';
// Create nodes
const usersNode = new RouteNode('users', '/users', [
new RouteNode('list', '/list'),
new RouteNode('view', '/view/:id')
]);
// You can also use plain objects
const ordersNode = new RouteNode('orders', '/orders', [
{name: 'pending', path: '/pending'},
{name: 'completed', path: '/completed'},
{name: 'view', path: '/view/:id'}
]);
// Creating a top node
const rootNode = new RouteNode('', '', [
ordersNode,
usersNode
]);
// Add nodes programmatically
rootNode.add(new RouteNode('home', '/home'));
You can chain constructor with add
and addNode
functions, making the example above shorter:
const rootNode = new RouteNode()
.addNode('users', '/users'))
.addNode('users.view', '/view/:id')
.addNode('users.list', '/list')
.addNode('orders', '/orders')
.addNode('orders.pending', '/pending')
.addNode('orders.completed', '/completed')
.addNode('orders.view', '/view/:id')
And then build paths, or match your paths against your tree:
rootNode.getPath('users.view'); // => "/users/view/:id"
rootNode.buildPath('users.view', {id: 1}); // => "/users/view/1"
rootNode.matchPath('/users/view/1'); // => {name: "users.view", params: {id: "1"}}
Trailing slash can be optional:
rootNode.matchPath('/users/view/1'); // => {name: "users.view", params: {id: "1"}}
rootNode.matchPath('/users/view/1/'); // => null
rootNode.matchPath('/users/view/1/', { trailingSlash: true });
// => {name: "users.view", params: {id: "1"}}
Query parameters are optional, however a match will fail if the URL contains non-expected query parameters. This can be prevented by setting strictQueryParams
to false.
When adding routes (with contructor or .add
), you can pass a callback which will be executed for each route added successfully to the tree.
FAQs
A package to create a tree of named routes
We found that route-node demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.