![Namecheap Takes Down Polyfill.io Service Following Supply Chain Attack](https://cdn.sanity.io/images/cgdhsj6q/production/6af25114feaaac7179b18127c83327568ff592d1-1024x1024.webp?w=800&fit=max&auto=format)
Security News
Namecheap Takes Down Polyfill.io Service Following Supply Chain Attack
Polyfill.io has been serving malware for months via its CDN, after the project's open source maintainer sold the service to a company based in China.
vow
Advanced tools
Readme
Vow is a Promises/A+ implementation. It also supports ES6 Promises specification.
Full API reference can be found at http://dfilatov.github.io/vow/.
You can install using Node Package Manager (npm):
npm install vow
<script type="text/javascript" src="vow.min.js"></script>
It also supports RequireJS module format and YM module format.
Vow has been tested in IE6+, Mozilla Firefox 3+, Chrome 5+, Safari 5+, Opera 10+.
There are two possible ways to create a promise.
function doSomethingAsync() {
var deferred = vow.defer();
// now you can resolve, reject, notify corresponging promise within `deferred`
// e.g. `defer.resolve('ok');`
return deferred.promise(); // and return corresponding promise to subscribe to reactions
}
doSomethingAsync().then(
function() {}, // onFulfilled reaction
function() {}, // onRejected reaction
function() {} // onNotified reaction
);
The difference between deferred
and promise
is that deferred
contains methods to resolve, reject and notify corresponding promise, but the promise
by itself allows only to subscribe on these actions.
function doSomethingAsync() {
return new vow.Promise(function(resolve, reject, notify) {
// now you can resolve, reject, notify the promise
});
}
doSomethingAsync().then(
function() {}, // onFulfilled reaction
function() {}, // onRejected reaction
function() {} // onNotified reaction
);
NOTE. Documentation for old versions of the library can be found at https://github.com/dfilatov/vow/blob/0.3.x/README.md.
FAQs
DOM Promise and Promises/A+ implementation for Node.js and browsers
The npm package vow receives a total of 77,695 weekly downloads. As such, vow popularity was classified as popular.
We found that vow demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Polyfill.io has been serving malware for months via its CDN, after the project's open source maintainer sold the service to a company based in China.
Security News
OpenSSF is warning open source maintainers to stay vigilant against reputation farming on GitHub, where users artificially inflate their status by manipulating interactions on closed issues and PRs.
Security News
A JavaScript library maintainer is under fire after merging a controversial PR to support legacy versions of Node.js.