Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
yield-stream
Advanced tools
yield-stream
A small library for switching between streams, generators, and arrays.
/**
* `compose(f, g, h, ...)` returns a generator function `G(data)` that yields
* all `(f · g · h · ...)(data)`.
*
* @note Used to compose multiple transforms into a `pipeline`.
*/
export const compose = <T>(
...generators: GeneratorFn<T>[]
): GeneratorFn<T> => {
return generators.reduce(
(prev, next) => async function* (data) {
for await (const chunk of prev(data)) {
yield* next(chunk);
}
},
);
};
/**
* Accepts a stream and transforms and returns a stream of the transformed
* chunks. Transforms can yield multiple chunks per input chunk.
*/
export const pipeline = <T>(
stream: ReadableStream<T>,
...transforms: GeneratorFn<T>[]
): ReadableStream<T> => {
const composed = compose(...transforms);
return generateStream(
async function* () {
for await (const chunk of yieldStream(stream)) {
yield* composed(chunk);
}
}
);
};
/**
* Accepts a stream and yields all of its chunks.
*/
export const yieldStream = async function* <T>(
stream: ReadableStream<T>,
controller?: AbortController
) {
const reader = stream.getReader();
while (true) {
if (controller?.signal.aborted) {
break;
}
const { done, value } = await reader.read();
if (done) {
break;
}
yield value;
}
};
/**
* Accepts a generator function and streams its outputs.
*/
export const generateStream = <T, TReturn, D>(
G: StreamGenerator<D, T, TReturn>,
data?: D
): ReadableStream<T> => {
return new ReadableStream<T>({
async start(controller) {
for await (const chunk of G(data)) {
controller.enqueue(chunk);
}
controller.close();
},
});
};
/**
* Accepts an array and returns a stream of its items.
*/
export const streamArray = <T>(array: T[]): ReadableStream<T> => {
return generateStream(function* () {
for (const item of array) {
yield item;
}
});
};
/**
* Accepts a stream and yields a growing buffer of all chunks received.
*/
export const buffer = async function* <T>(stream: ReadableStream<T>) {
const buffer: T[] = [];
for await (const chunk of yieldStream(stream)) {
buffer.push(chunk);
yield buffer;
}
};
FAQs
[**Github**](https://github.com/gptlabs/yield-stream) | [**NPM**](https://npmjs.com/package/yield-stream) | [**Docs**](https://yield-stream.vercel.app)
The npm package yield-stream receives a total of 455 weekly downloads. As such, yield-stream popularity was classified as not popular.
We found that yield-stream demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.