Security News
How Threat Actors are Abusing GitHub’s File Upload Feature to Host Malware
GitHub is susceptible to a CDN flaw that allows attackers to host malware on any public repository.
By Sarah Gooding - Apr 23, 2024
unist-util-stringify-position
Advanced tools
- Version published
- Weekly downloads
- 12M
- decreased by-0.19%
- Maintainers
- 2
- Install size
- 19.6 kB
- Created
- Weekly downloads
Package description
What is unist-util-stringify-position?
The `unist-util-stringify-position` package is a utility for converting Unist node positions to a string format. Unist nodes are part of the Unified ecosystem, which is used for processing content with abstract syntax trees (ASTs). This package helps in serializing the position of nodes (such as where they start and end in the source document) into a human-readable string format, which can be useful for debugging, logging, or displaying position information in user interfaces.
What are unist-util-stringify-position's main functionalities?
Stringify a single position
This feature allows you to convert a single position object, which includes start and end properties with line and column information, into a string. It's useful for representing the location of a node in a source file.
"const stringify = require('unist-util-stringify-position');\nconst position = {start: {line: 1, column: 1}, end: {line: 1, column: 4}};\nconsole.log(stringify(position)); // Outputs '1:1-1:4'"Stringify a node with position
This feature demonstrates how to stringify the position of an entire Unist node. It's particularly useful when working with ASTs and you need to log or display where a node is located within the original document.
"const stringify = require('unist-util-stringify-position');\nconst node = {type: 'text', value: 'example', position: {start: {line: 2, column: 3}, end: {line: 2, column: 10}}};\nconsole.log(stringify(node)); // Outputs '2:3-2:10'"Other packages similar to unist-util-stringify-position
unist-util-visit
While `unist-util-visit` does not directly stringify positions, it is a utility for traversing Unist trees and can be used in conjunction with `unist-util-stringify-position` to visit nodes and stringify their positions. It differs in its primary purpose, focusing on tree traversal rather than position serialization.
unist-util-locate
This hypothetical package (note: `unist-util-locate` does not actually exist) would presumably offer functionality to locate nodes within a Unist tree, potentially providing similar position information. However, without direct stringification capabilities, it would serve a complementary rather than overlapping role with `unist-util-stringify-position`.
Readme
unist-util-stringify-position
unist utility to pretty print the positional info of a node.
Contents
- What is this?
- When should I use this?
- Install
- Use
- API
- Types
- Compatibility
- Security
- Related
- Contribute
- License
What is this?
This package is a utility that takes any unist (whether mdast, hast, etc) node, position, or point, and serializes its positional info.
When should I use this?
This utility is useful to display where something occurred in the original document, in one standard way, for humans. For example, when throwing errors or warning messages about something.
Install
This package is ESM only. In Node.js (version 16+), install with npm:
npm install unist-util-stringify-position
In Deno with esm.sh:
import {stringifyPosition} from 'https://esm.sh/unist-util-stringify-position@4'
In browsers with esm.sh:
<script type="module">
import {stringifyPosition} from 'https://esm.sh/unist-util-stringify-position@4?bundle'
</script>
Use
import {stringifyPosition} from 'unist-util-stringify-position'
stringifyPosition({line: 2, column: 3}) // => '2:3' (point)
stringifyPosition({start: {line: 2}, end: {line: 3}}) // => '2:1-3:1' (position)
stringifyPosition({
type: 'text',
value: '!',
position: {
start: {line: 5, column: 11},
end: {line: 5, column: 12}
}
}) // => '5:11-5:12' (node)
API
This package exports the identifier stringifyPosition.
There is no default export.
stringifyPosition(node|position|point)
Serialize the positional info of a point, position (start and end points), or node.
Parameters
node(Node) — node whosepositionfields to serializeposition(Position) — position whosestartandendpoints to serializepoint(Point) — point whoselineandcolumnfields to serialize
Returns
Pretty printed positional info of a node (string).
In the format of a range ls:cs-le:ce (when given node or position) or a
point l:c (when given point), where l stands for line, c for column, s
for start, and e for end.
An empty string ('') is returned if the given value is neither node,
position, nor point.
Types
This package is fully typed with TypeScript. It exports no additional types.
Compatibility
Projects maintained by the unified collective are compatible with maintained versions of Node.js.
When we cut a new major release, we drop support for unmaintained versions of
Node.
This means we try to keep the current release line,
unist-util-stringify-position@^4, compatible with Node.js 16.
Security
This project is safe.
Related
unist-util-generated— check if a node is generatedunist-util-position— get positional info of nodesunist-util-remove-position— remove positional info from treesunist-util-source— get the source of a value (node or position) in a file
Contribute
See contributing.md in syntax-tree/.github for ways to get
started.
See support.md for ways to get help.
This project has a code of conduct. By interacting with this repository, organization, or community you agree to abide by its terms.
License
FAQs
unist utility to serialize a node, position, or point as a human readable location
The npm package unist-util-stringify-position receives a total of 10,051,023 weekly downloads. As such, unist-util-stringify-position popularity was classified as popular.
We found that unist-util-stringify-position demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Last updated on 07 Jul 2023
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
The Dark Side of Open Source
At Node Congress, Socket CEO Feross Aboukhadijeh uncovers the darker aspects of open source, where applications that rely heavily on third-party dependencies can be exploited in supply chain attacks.
By Sarah Gooding - Apr 19, 2024
Research
Security News
npm Package for ReExt React Components Library Exfiltrates Git Credentials
The Socket Research team found this npm package includes code for collecting sensitive developer information, including your operating system username, Git username, and Git email.
By Sarah Gooding, Socket Research Team - Apr 18, 2024