js-yaml
loader-utils
js-yaml | loader-utils | |
---|---|---|
4 | 2 | |
6,187 | 765 | |
0.5% | 0.1% | |
0.0 | 3.0 | |
3 months ago | 6 days ago | |
JavaScript | JavaScript | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
js-yaml
-
Building a Custom YAML Loader for Webpack
Parse the source string. We're using js-yaml for this.
-
Using Rust to not have to touch Yaml in k8s land
Character limit is not enforced, and in practice, popular yaml implementations such as yaml/js-yaml don't impose any fixed limit.
-
TheActionDev - v3
The main reason behind this release is native YAML support in front-matter thanks to js-yaml library. This means you have to assign the tags key as yaml arrays otherwise, Action will throw an error or ignore the assigned tags.
-
Export Bear Notes to Markdown Files
js-yaml
loader-utils
-
Building a Custom YAML Loader for Webpack
Obtain the loader options by calling getOptions(loaderContext), which is a function provided by loader-utils. We default the return value of getOptions to an empty object literal in case the webpack config doesn't include the options hash.
-
ReDoS “Vulnerabilities” and Misaligned Incentives
ReDoS and Prototype Pollution vulnerabilities in Webpack (or other developer tool that only ever touches my code and my configs) were scored low severity, I would probably happily ignore them. But they keep popping up with High or Critical severities, with claimed "Network" attack vectors, which nobody can possibly imagine..
Some of them show up as severity 9.8/10 in GitHub vulnerability alerts and then you try to find out more details about them and it turns out it's actually non-exploitable (example here: https://github.com/webpack/loader-utils/issues/212#issuecomm... )
What are some alternatives?
PEG.js - PEG.js: Parser generator for JavaScript
recheck - The trustworthy ReDoS checker
markdown-it - Markdown parser, done right. 100% CommonMark support, extensions, syntax plugins & high speed
lodash - A modern JavaScript utility library delivering modularity, performance, & extras.
marked - A markdown parser and compiler. Built for speed.
py - Python development support library (note: maintenance only)
strip-json-comments - Strip comments from JSON. Lets you use comments in your JSON files!
schema-utils - Options Validation
parse-json - Parse JSON with more helpful errors
webpack - A bundler for javascript and friends. Packs many modules into a few bundled assets. Code Splitting allows for loading parts of the application on demand. Through "loaders", modules can be CommonJs, AMD, ES6 modules, CSS, Images, JSON, Coffeescript, LESS, ... and your custom stuff.
Jison - Bison in JavaScript.
fast-xml-parser - Validate XML, Parse XML and Build XML rapidly without C/C++ based libraries and no callback.