Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
snabbdom-selector
Advanced tools
snabbdom-selector
is a utility tool, written in TypeScript,
to find snabbdom VNode objects matching a given CSS Selector.
npm install snabbdom-selector
import { select } from 'snabbdom-selector'
import * as h from 'snabbdom/h'
const vNode = h('div', {}, [
h('div.test', {}, [
h('p', {key: 1}, 'Foo')
])
])
const matches = select('.test p', vNode)
console.log(matches)
// => [{sel: 'p', text: 'Foo', elm: HTMLElement, key: 1, children: undefined, data: {...}}]
select(cssSelector: string, vNode: snabbdom.VNode): Array<snabbdom.VNode>
select(cssSelector: string): (vNode: snabbdom.VNode) => Array<snabbdom.VNode>
Note that there are 2 function signatures, this is because select
is curried!
This is the main function provided by this library, it allows using a css selector to find vNode's that are made from that css selector. The vNode used will be traversed, and any matches at any arbitrary depth will be returned inside of the resulting array. An empty array will be returned if no matches are found.
import { select } from 'snabbdom-selector'
const vNode = h('div', {}, [
h('div.test', {}, [
h('p', {key: 1}, 'Foo')
])
])
const match = select('.test p'); // if given 1 parameter it returns a new function!
const matches = match(vNode);
console.log(matches)
// => [{sel: 'p', text: 'Foo', elm: HTMLElement, key: 1, children: undefined, data: {...}}]
selectorParser(selector: string): Object
This function given a CSS selector like that passed to snabbdom's h
function, returns an object
containing parsed tagName, id, and className.
import { selectorParser } from 'snabbdom-selector'
const { tagName, id, className } = selectorParser('div#foo.bar.baz');
console.log(tagName) // div
console.log(id) // foo
console.log(className) // 'bar baz'
classNameFromVNode(vNode: snabbdom.VNode): string
This function given a snabbdom VNode object will return its className including that contained
within snabbdom's provided props
and class
modules.
import { classNameFromVNode } from 'snabbdom-selector'
const vNode = h('div.foo', { class: { bar: true } }, [])
console.log(classNameFromVNode(vNode)) // 'foo bar'
This library uses compatible versioning, a versioning system that is backwards compatible with semantic-versioning.
FAQs
Snabbdom CSS-Selector
The npm package snabbdom-selector receives a total of 978 weekly downloads. As such, snabbdom-selector popularity was classified as not popular.
We found that snabbdom-selector demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.