Research
Recent Trends in Malicious Packages Targeting Discord
The Socket research team breaks down a sampling of malicious packages that download and execute files, among other suspicious behaviors, targeting the popular Discord platform.
simply-deferred
Advanced tools
Readme
#Simply Deferred ###Simplified jQuery Deferred API for Node and the browser
##Installation npm install simply-deferred
If you're on a browser, simply include https://raw.github.com/sudhirj/simply-deferred/master/deferred.min.js
##Usage
var Deferred = require('simply-deferred').Deferred;
var rendering = new Deferred();
rendering.done(function(){
console.log('Finished rendering');
});
//...
rendering.resolve();
##API Simply Deferred is partially compatible with jQuery's API, so the docs and usage are the same, except that they're restricted to the following methods:
Deferred()
deferred.state()
deferred.done()
deferred.fail()
deferred.always()
deferred.promise()
deferred.resolve()
deferred.resolveWith()
deferred.rejectWith()
deferred.reject()
deferred.pipe()
deferred.then()
when()
###Usage with Zepto
Simply Deffered also acts as a plugin to Zepto. The absence of a Deferred library was one of the biggest reasons I've been holding back, so I thought it made sense to write one. Once you have both Zepto and Simply Deferred on your page, just do Deferred.installInto(Zepto)
to set it up. The installation makes the following changes to bring it closer to jQuery:
Deferred
constructor to $.Deferred
.when
method to $.when
.$.ajax
to return a promise
, which has only the following methods: state()
, done()
, fail()
and always()
. The arguments passed to the done
and fail
callbacks are the same ones passed to the success
and error
options.FAQs
A deferred library for Node.js and the browser with a simplified jQuery compatible API
We found that simply-deferred demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
The Socket research team breaks down a sampling of malicious packages that download and execute files, among other suspicious behaviors, targeting the popular Discord platform.
Security News
Socket CEO Feross Aboukhadijeh joins a16z partners to discuss how modern, sophisticated supply chain attacks require AI-driven defenses and explore the challenges and solutions in leveraging AI for threat detection early in the development life cycle.
Security News
NIST's new AI Risk Management Framework aims to enhance the security and reliability of generative AI systems and address the unique challenges of malicious AI exploits.