The missing Javascript smart persistent layer

Wisembly

Last update: Dec 2, 2022

Related tags

Storage basil.js

Overview

Basil.js

The missing Javascript smart persistence layer. Unified localstorage, cookie and session storage JavaScript API.

Philosophy

Basil aims to ease the frontend storage management for developers. It strives to be bulletproof and handle disabled cookies, full localStorage and other unwanted native storage exceptions..

When you try to store something, basil will automatically look through all the available storage mechanisms and find the best suited one to store your value. It also handles storage of complex javascript objects using json.

Basic Usage

basil = new window.Basil(options);

// basic methods
basil.set('foo', 'bar'); // store 'bar' value under 'foo' key
basil.set('abc', 'xyz'); // store 'xyz' value under 'abc' key
basil.get('foo'); // returns 'bar'
basil.keys(); // returns ['abc', 'foo']
basil.keysMap(); // returns { 'abc': ['local'], 'foo': ['local'] }
basil.remove('foo'); // remove 'foo' value

// advanced methods
basil.check('local'); // boolean. Test if localStorage is available
basil.reset(); // reset all stored values under namespace

Advanced Usage

Storages

basil = new window.Basil(options);

// force storage on the go through basil
// set 'bar' value under 'foo' key in localStorage
basil.set('foo', 'bar', { 'storages': ['local'] });

// set 'bar' value under 'foo' key.
// try first to store it into cookies and if not possible into localStorage
basil.set('foo', 'quux', { 'storages': ['cookie', 'local'] });

// set 'xyz' value under 'abc' key in memory
basil.set('abc', 'xyz', { 'storages': ['memory'] });

// set value without JSON encoding
basil.set('foo', '{ "bar": "baz" }', { raw: true }); // will save { "bar": "baz" } as string

// retrieve keys
basil.keys(); // returns ['foo', 'abc']
basil.keys({ 'storages': ['memory'] }); // returns ['abc']

// retrieve keys map
basil.keysMap(); // returns { 'foo': ['local', 'cookie'], 'abc': ['memory'] }
basil.keysMap({ 'storages': ['memory'] }); // returns { 'abc': ['memory'] }

Native storages

// Access native storages
// With basil API, but without namespace nor JSON parsing for values

// cookies has specific options
Basil.cookie.get(key);
Basil.cookie.set(key, value, {
  'expireDays': days,
  'domain': 'mydomain.com',
  'secure': true,
  'sameSite': 'strict'
});

// localStorage
Basil.localStorage.get(key);
Basil.localStorage.set(key, value);

// sessionStorage
Basil.sessionStorage.get(key);
Basil.sessionStorage.set(key, value);

Namespaces

basil = new window.Basil(options);

// store data under default namespace
basil.set('hello', 'world');

// store data under a given namespace
basil.set('hello', 42, { 'namespace': 'alt' });
basil.set('abc', 'def', { 'namespace': 'alt', 'storages': ['memory'] });

// retrieve data
basil.get('hello'); // return 'world'
basil.get('hello', { 'namespace': 'alt' }); // return 42

// retrieves keys
basil.keys(); // returns ['hello']
basil.keys({ 'namespace': 'alt' }); // returns ['hello', 'abc']

// retrieves  keys map
basil.keysMap(); // returns { 'hello': ['local'] }
basil.keysMap({ 'namespace': 'alt' }); // returns { 'hello': ['local'], 'abc': ['memory'] }

// remove data under a given namespace
basil.remove('hello', { 'namespace': 'alt' });
basil.get('hello'); // return 'world'
basil.get('hello', { 'namespace': 'alt' }); // return null

// reset data under a given namespace
basil.reset({ 'namespace': 'alt', 'storages': ['local', 'memory']});

Configuration

Here is the whole options object that you could give to Basil:

options = {
  // Namespace. Namespace your Basil stored data
  // default: 'b45i1'
  namespace: 'foo',

  // storages. Specify all Basil supported storages and priority order
  // default: `['local', 'cookie', 'session', 'memory']`
  storages: ['cookie', 'local']

  // expireDays. Default number of days before cookies expiration
  // default: 365
  expireDays: 31

  // keyDelimiter. The value used delimt the namespace from the key name
  // default: '.'
  keyDelimiter: '.'

};

Compatibility

Firefox 3.5+
Internet Explorer 7 (requires json2.js)
Internet Explorer 8+
Chrome 4+
Safari 4+

Plugins

List plugin

This plugin mimics Redis Lists methods and behaviors. Here are the (yet) supported methods.

basil = new window.Basil(options);
basil.lindex(key, index);
basil.linsert(key, where, pivot, value);
basil.llen(key);
basil.lpop(key);
basil.lpush(key, value);
basil.lrange(key, start, stop);
basil.lrem(key, count, value);
basil.lset(key, index, value);
basil.ltrim(key, start, stop);
basil.rpop(key);
basil.rpush(key, value);

Set plugin

This plugin mimics Redis Sets methods and behaviors. Except sscan all the methods are implemented.

basil = new window.Basil(options);
basil.sadd(key, member [members ...]);
basil.scard(key);
basil.sdiff(key [keys ...]);
basil.sdiffstore(destination, key [keys ...]);
basil.sinter(key [keys ...]);
basil.sinterstore(destination, key [keys ...]);
basil.sismember(key, member);
basil.smember(key);
basil.smove(source, destination, member);
basil.spop(key);
basil.srandmember(key, [count]);
basil.srem(key, member [members ...]);
basil.sunion(key [keys ...]);
basil.sunionstore(destination, key [keys ...]);

Build

To generate the production files, make sure you have already installed the dependencies using npm install and then just use:

npm run-script build

Tests

To launch the test suite, make sure you have already installed the dependencies using npm install. Tests are launching in all your installed browsers. They're also launched on Travis CI, in PhantomJS.

npm test
npm run-script test-plugins

License

MIT. See LICENSE.md

Comments

Safari private browsing, QUOTA_EXCEEDED_ERR: DOM Exception 22

Getting exceptions in our tracker with the message QUOTA_EXCEEDED_ERR: DOM Exception 22: An attempt was made to add something to storage that exceeded the quota. So far it has come from Safari versions 5.x in private browsing mode. Looking at the Basil code I don't see how this could happen. Maybe it's coming from a browser plugin?
bug ongoing

opened by ElsaTKO 18
Encode and decode cookie value on set and get

"The cookie value string can use encodeURIComponent() to ensure that the string does not contain any commas, semicolons, or whitespace (which are disallowed in cookie values)." - https://developer.mozilla.org/en-US/docs/Web/API/Document/cookie

We were seeing cut offs on values that contained commas.

opened by re5et 11
Return array of keys in storage

I was looking to use this on another project and I needed to get the list of keys in storage. This seemed like a core piece of functionality rather than writing a plugin for it.

opened by blainsmith 8
Delimiter is not configurable

Our project has been using 0.4.1 for quite a while. We attempted to update to 0.4.4 (latest) and ran into the breaking : to . key delimiter change (#35) .

Instead of hardcoding a delimiter I propose that we expose keyDelimiter as a Basil.option.

opened by codeburke 5
escaping keys caused namespaced cookie names to change

This isn't a problem for us because our site isn't live yet, but I just wanted you all to be aware that #30 changed the name of namespaced cookies because the : gets escaped to %3A.

You might consider changing the namespace separator to . as that won't get escaped. It'd still be a breaking change though. The other option would be to escape the namespace and the key separately, which would leave the : in there, which may or may be valid in all browsers--it's hard to tell from the rfc what is actually valid in a cookie name.

opened by aaronjensen 5
Please release 0.4.2 to npm

Thanks for merging https://github.com/Wisembly/basil.js/pull/30, it looks like a release to npm didn't happen though, could you please do that when you get a chance @guillaumepotier or @matghaleb Thanks!

opened by aaronjensen 4

force storage document

document states this:

// force storage on the go through basil
// set 'bar' value under 'foo' key in localStorage
basil.set('foo', 'bar', { 'storage': 'local' });

I am not sure if basil ever use storage in options, it seem to only look at storages, and I am not sure why it's desirable to set value on all available storage.

            set: function (name, value, options) {
                if (!(name = _toStoredKey(this.options.namespace, name)))
                    return;
                value = _toStoredValue(value);
                options = Basil.utils.extend({
                    expireDays: this.options.expireDays
                }, options);

                var storages = _toStoragesArray(options.storages) || [this.defaultStorage];
                for (var i = 0; i < storages.length; i++) {
                    if (!this.check(storages[i]))
                        continue;
                    _storages[storages[i]].set(name, value, options);
                }
            },

opened by bitinn 4

Using with react

Apparently this library conflicts with some internal react process due to its globally defined context.

If connecting this library and using an undefined variable in some of the React components I get error like this: Warning: Exception thrown by hook while handling onSetChildren: Invariant Violation: Expected onMountComponent() to fire for the child before its parent includes it in onSetChildren(). Invariant Violation: Expected onMountComponent() to fire for the child before its parent includes it in onSetChildren(). The normal error is something like foo is not defined with file and location on the right side. But instead I get an very strange error from react's warning.js file that leads me to nowhere.

opened by 0xMarkian 3
Added cookieSettings for clearer option setting when storage is 'cookie'
Added cookieSettings pass through to cookie storage (should also be backwards compatible as its just extending the current API)

Updated README to reflect how to set cookieSettings

Renamed LICENCE.md to LICENSE.md as that is the proper filename as referenced in the License section of the README

NOTE: I did not add any tests as its not possible to test anything on a cookie other than the actual cookie value which is already covered by the current tests.
enhancement ongoing
opened by reintroducing 3
SameSite property on cookies not supported

It looks like basil does not support use of the SameSite property. Is basil still being maintained and do you plan on adding support for SameSite? I'm happy to submit a PR for this if you'd like.

opened by mikejwis 2
Add options.keyDelimiter support

Expose the ability to programmatically set the delimiter, but keep it backwards compatible with the existing API using . as the delimiter.

Also, I added in mocha as a dependency since when I pulled down and npm install && npm test I got a missing "mocha" dependency error.

opened by codeburke 2
Bump qs from 6.2.3 to 6.2.4
Bumps qs from 6.2.3 to 6.2.4.

Changelog

Sourced from qs's changelog.

6.2.4

[Fix] parse: ignore __proto__ keys (#428)

[Fix] utils.merge: avoid a crash with a null target and an array source

[Fix] utils.merge: avoid a crash with a null target and a truthy non-array source

[Fix] utils: merge: fix crash when source is a truthy primitive & no options are provided

[Fix] when parseArrays is false, properly handle keys ending in []

[Robustness] stringify: avoid relying on a global undefined (#427)

[Refactor] use cached Array.isArray

[Docs] Clarify the need for "arrayLimit" option

[meta] fix README.md (#399)

[meta] Clean up license text so it’s properly detected as BSD-3-Clause

[meta] add FUNDING.yml

[actions] backport actions from main

[Tests] use safer-buffer instead of Buffer constructor

[Tests] remove nonexistent tape option

[Dev Deps] backport from main

Commits

90d9f2b v6.2.4

ba24e74 [Fix] parse: ignore __proto__ keys (#428)

f047c9d [Dev Deps] backport from main

5f8e28b [actions] backport actions from main

2c38654 [Robustness] stringify: avoid relying on a global undefined (#427)

37e176d [meta] fix README.md (#399)

081a3ab [Tests] use safer-buffer instead of Buffer constructor

943e411 [meta] Clean up license text so it’s properly detected as BSD-3-Clause

0d82916 [Fix] utils.merge: avoid a crash with a null target and an array source

c103b90 [Fix] utils.merge`: avoid a crash with a null target and a truthy non-array...

Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 0
Bump decode-uri-component from 0.2.0 to 0.2.2
Bumps decode-uri-component from 0.2.0 to 0.2.2.

Release notes

Sourced from decode-uri-component's releases.

v0.2.2

Prevent overwriting previously decoded tokens 980e0bf

https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.1...v0.2.2

v0.2.1

Switch to GitHub workflows 76abc93

Fix issue where decode throws - fixes #6 746ca5d

Update license (#1) 486d7e2

Tidelift tasks a650457

Meta tweaks 66e1c28

https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.1

Commits

a0eea46 0.2.2

980e0bf Prevent overwriting previously decoded tokens

3c8a373 0.2.1

76abc93 Switch to GitHub workflows

746ca5d Fix issue where decode throws - fixes #6

486d7e2 Update license (#1)

a650457 Tidelift tasks

66e1c28 Meta tweaks

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 0
Bump engine.io from 3.1.4 to 6.2.1
Bumps engine.io from 3.1.4 to 6.2.1.

Release notes

Sourced from engine.io's releases.

6.2.1

:warning: This release contains an important security fix :warning:

A malicious client could send a specially crafted HTTP request, triggering an uncaught exception and killing the Node.js process:

Error: read ECONNRESET at TCP.onStreamRead (internal/stream_base_commons.js:209:20) Emitted 'error' event on Socket instance at: at emitErrorNT (internal/streams/destroy.js:106:8) at emitErrorCloseNT (internal/streams/destroy.js:74:3) at processTicksAndRejections (internal/process/task_queues.js:80:21) { errno: -104, code: 'ECONNRESET', syscall: 'read' }

Please upgrade as soon as possible.

Bug Fixes

catch errors when destroying invalid upgrades (#658) (425e833)

6.2.0

Features

add the "maxPayload" field in the handshake details (088dcb4)

So that clients in HTTP long-polling can decide how many packets they have to send to stay under the maxHttpBufferSize value.

This is a backward compatible change which should not mandate a new major revision of the protocol (we stay in v4), as we only add a field in the JSON-encoded handshake data:

0{"sid":"lv_VI97HAXpY6yYWAAAC","upgrades":["websocket"],"pingInterval":25000,"pingTimeout":5000,"maxPayload":1000000}

Links

Diff: https://github.com/socketio/engine.io/compare/6.1.3...6.2.0

Client release: 6.2.0

ws version: ~8.2.3

6.1.3

Bug Fixes

typings: allow CorsOptionsDelegate as cors options (#641) (a463d26)

uws: properly handle chunked content (#642) (3367440)

... (truncated)

Changelog

Sourced from engine.io's changelog.

6.2.1 (2022-11-20)

:warning: This release contains an important security fix :warning:

A malicious client could send a specially crafted HTTP request, triggering an uncaught exception and killing the Node.js process:

Error: read ECONNRESET at TCP.onStreamRead (internal/stream_base_commons.js:209:20) Emitted 'error' event on Socket instance at: at emitErrorNT (internal/streams/destroy.js:106:8) at emitErrorCloseNT (internal/streams/destroy.js:74:3) at processTicksAndRejections (internal/process/task_queues.js:80:21) { errno: -104, code: 'ECONNRESET', syscall: 'read' }

Please upgrade as soon as possible.

Bug Fixes

catch errors when destroying invalid upgrades (#658) (425e833)

3.6.0 (2022-06-06)

Bug Fixes

add extension in the package.json main entry (#608) (3ad0567)

do not reset the ping timer after upgrade (1f5d469), closes socketio/socket.io-client-swift#1309

Features

decrease the default value of maxHttpBufferSize (58e274c)

This change reduces the default value from 100 mb to a more sane 1 mb.

This helps protect the server against denial of service attacks by malicious clients sending huge amounts of data.

See also: https://github.com/advisories/GHSA-j4f2-536g-r55m

increase the default value of pingTimeout (f55a79a)

... (truncated)

Commits

24b847b chore(release): 6.2.1

425e833 fix: catch errors when destroying invalid upgrades (#658)

99adb00 chore(deps): bump xmlhttprequest-ssl and engine.io-client in /examples/latenc...

d196f6a chore(deps): bump minimatch from 3.0.4 to 3.1.2 (#660)

7c1270f chore(deps): bump nanoid from 3.1.25 to 3.3.1 (#659)

535a01d ci: add Node.js 18 in the test matrix

1b71a6f docs: remove "Vanilla JS" highlight from README (#656)

917d1d2 refactor: replace deprecated String.prototype.substr() (#646)

020801a chore: add changelog for version 3.6.0

ed1d6f9 test: make test script work on Windows (#643)

Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 0
Bump socket.io-parser from 3.1.2 to 4.2.1
Bumps socket.io-parser from 3.1.2 to 4.2.1.

Release notes

Sourced from socket.io-parser's releases.

4.2.1

Bug Fixes

check the format of the index of each attachment (b5d0cb7)

Links

Diff: https://github.com/socketio/socket.io-parser/compare/4.2.0...4.2.1

4.2.0

Features

allow the usage of custom replacer and reviver (#112) (b08bc1a)

Links

Diff: https://github.com/socketio/socket.io-parser/compare/4.1.2...4.2.0

4.1.2

Bug Fixes

allow objects with a null prototype in binary packets (#114) (7f6b262)

Links

Diff: https://github.com/socketio/socket.io-parser/compare/4.1.1...4.1.2

4.1.1

Links

Diff: https://github.com/socketio/socket.io-parser/compare/4.1.0...4.1.1

4.1.0

Features

provide an ESM build with and without debug (388c616)

Links

Diff: https://github.com/socketio/socket.io-parser/compare/4.0.4...4.1.0

4.0.5

Bug Fixes

check the format of the index of each attachment (b559f05)

Links

Diff: https://github.com/socketio/socket.io-parser/compare/4.0.4...4.0.5

... (truncated)

Changelog

Sourced from socket.io-parser's changelog.

4.2.1 (2022-06-27)

Bug Fixes

check the format of the index of each attachment (b5d0cb7)

4.2.0 (2022-04-17)

Features

allow the usage of custom replacer and reviver (#112) (b08bc1a)

4.1.2 (2022-02-17)

Bug Fixes

allow objects with a null prototype in binary packets (#114) (7f6b262)

4.1.1 (2021-10-14)

4.1.0 (2021-10-11)

Features

provide an ESM build with and without debug (388c616)

4.0.4 (2021-01-15)

Bug Fixes

allow integers as event names (1c220dd)

4.0.3 (2021-01-05)

4.0.2 (2020-11-25)

... (truncated)

Commits

5a2ccff chore(release): 4.2.1

b5d0cb7 fix: check the format of the index of each attachment

c7514b5 chore(release): 4.2.0

931f152 chore: add Node.js 16 in the test matrix

6c9cb27 chore: bump @socket.io/component-emitter to version 3.1.0

b08bc1a feat: allow the usage of custom replacer and reviver (#112)

aed252c chore(release): 4.1.2

89209fa chore: bump cached-path-relative from 1.0.2 to 1.1.0 (#113)

0a3b556 chore: bump path-parse from 1.0.6 to 1.0.7 (#108)

7f6b262 fix: allow objects with a null prototype in binary packets (#114)

Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 0
Bump copy-props from 2.0.4 to 2.0.5
Bumps copy-props from 2.0.4 to 2.0.5.

Release notes

Sourced from copy-props's releases.

2.0.5

Fix

Avoids prototype pollution (#7)

Doc

Update license years.

Transfer ownership to Gulp Team (#6)

Build

Update dependencies: each-props (>=1.3.2), is-plain-object (>=5.0.0).

Test

Expand test versions to v11〜v14.

Changelog

Sourced from copy-props's changelog.

Changelog

3.0.1 (2021-10-31)

Bug Fixes

ci: Rename prettierignore typo & avoid formatting web (192badf)

Update dependencies (ba8a51c)

3.0.0 (2021-09-25)

⚠ BREAKING CHANGES

Normalize repository, dropping node <10.13 support (#8)

Miscellaneous Chores

Normalize repository, dropping node <10.13 support (#8) (85b1165)

Commits

40b7974 2.0.5

2c738f5 Fix: Avoids prototype pollution (#7)

4cac863 Merge: Transfer ownership to Gulp Team (#6)

54a791d Doc: Transfer ownership to Gulp Team

196fc9e Merge: Update dependencies and expand ci test versions (#5)

e89907f Test: Update npm to v4 when nodejs is v5 because of npm install error.

e970322 Test: Run coveralls when nodejs >= 6 because of its supports

063e534 Test: Add nodejs v11-v14 into ci test versions

72270af Doc: Update license years

f60b928 Build: Update versions of dependencies

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 0
Bump shell-quote from 1.6.1 to 1.7.3
Bumps shell-quote from 1.6.1 to 1.7.3.

Release notes

Sourced from shell-quote's releases.

v1.7.2

Fix a regression introduced in 1.6.3. This reverts the Windows path quoting fix. (144e1c2)

v1.7.1

Fix $ being removed when not part of an environment variable name. (@Adman in #32)

v1.7.0

Add support for parsing >> and >& redirection operators. (@forivall in #16)

Add support for parsing <( process substitution operator. (@cuonglm in #15)

v1.6.3

Fix Windows path quoting problems. (@dy in #34)

v1.6.2

Remove dependencies in favour of native methods. (@zertosh in #21)

Changelog

Sourced from shell-quote's changelog.

1.7.3

Fix a security issue where the regex for windows drive letters allowed some shell meta-characters to escape the quoting rules. (CVE-2021-42740)

1.7.2

Fix a regression introduced in 1.6.3. This reverts the Windows path quoting fix. (144e1c2)

1.7.1

Fix $ being removed when not part of an environment variable name. (@Adman in #32)

1.7.0

Add support for parsing >> and >& redirection operators. (@forivall in #16)

Add support for parsing <( process substitution operator. (@cuonglm in #15)

1.6.3

Fix Windows path quoting problems. (@dy in #34)

1.6.2

Remove dependencies in favour of native methods. (@zertosh in #21)

Commits

6a8a899 1.7.3

5799416 fix for security issue with windows drive letter regex

c7de931 Add security.md

414853f Update readme.markdown (#43)

0fc4a97 use Github Actions (#42)

89a1993 1.7.2

df7e4c7 add test for #37

144e1c2 revert windows path unescaping, fixes #37

c24f3aa ci: nvs does not have iojs

c2950fb 1.7.1

Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 0

Releases(0.4.11)

0.4.11(Jan 20, 2021)

Source code(tar.gz)
Source code(zip)
0.4.6(Jan 15, 2018)
Fix secure cookie

Source code(tar.gz)
Source code(zip)
0.4.5(Jun 13, 2017)
Add options.keyDelimiter support (#47)

Source code(tar.gz)
Source code(zip)
0.4.0(Jan 30, 2015)

Source code(tar.gz)
Source code(zip)
0.3.4(Oct 16, 2014)

Source code(tar.gz)
Source code(zip)
0.3.3(Oct 15, 2014)

Source code(tar.gz)
Source code(zip)
0.3.2(Jul 31, 2014)

Source code(tar.gz)
Source code(zip)
0.3.1(Jul 31, 2014)

Source code(tar.gz)
Source code(zip)

Owner

Wisembly

GitHub https://wisembly.github.io/basil.js

JavaScript Client-Side Cookie Manipulation Library

Cookies.js Cookies.js is a small client-side javascript library that makes managing cookies easy. Features Browser Compatibility Getting the Library U

1.8k Oct 7, 2022

A lightweight vanilla ES6 cookies and local storage JavaScript library

?? CrumbsJS ?? A lightweight, intuitive, vanilla ES6 fueled JS cookie and local storage library. Quick Start Adding a single cookie or a local storage

233 Dec 13, 2022

A javascript based module to access and perform operations on Linode object storage via code.

Linode Object Storage JS Module A javascript based module to access and perform operations on Linode object storage via code. Code Guardian Installing

3 Jan 11, 2022

⚡️The Fullstack React Framework — built on Next.js

The Fullstack React Framework "Zero-API" Data Layer — Built on Next.js — Inspired by Ruby on Rails Read the Documentation “Zero-API” data layer lets y

12.5k Jan 4, 2023

ZxCDDoS for education with LAYER 7, LAYER 4, AMP METHODS

?? ZxCDDoS: Release v1.0 - Free DDoS Panel ?? Terminal only accepts ANSI color. Username: admin Password: admin Language Logs Fixed L7 methods (crash,

151 Jan 3, 2023

Immutable persistent data collections for Javascript which increase efficiency and simplicity.

Immutable collections for JavaScript Immutable data cannot be changed once created, leading to much simpler application development, no defensive copy

32.4k Dec 31, 2022

ClojureScript's persistent data structures and supporting API from the comfort of vanilla JavaScript

mori A simple bridge to ClojureScript's persistent data structures and supporting APIs for vanilla JavaScript. Pull requests welcome. Breaking changes

3.4k Dec 31, 2022

Immutable persistent data collections for Javascript which increase efficiency and simplicity.

Immutable collections for JavaScript Immutable data cannot be changed once created, leading to much simpler application development, no defensive copy

32.4k Jan 7, 2023

Missing Person Finder re-design

Missing Person Finder With ReactJs #Technology Used React Routing with React-routing-dom Redux with Redux Persist API calling with axios Ant design UI

0 Jul 12, 2022

🐢🦕 The missing child of Node.js and Deno.

Venode The missing child of Node.js and Deno. Venode is a node runner that supports deno features like vendoring and http imports! Features Javascript

178 Aug 18, 2022

The missing CLI for beautiful, interactive API docs powered by with Stoplight Elements

Elements CLI The missing CLI for beautiful, interactive API docs powered by with Stoplight Elements Installation Install using npm as global package:

6 Nov 22, 2022

Domvas implements the missing piece that connects the DOM and Canvas.

Domvas Overview Domvas implements the missing piece that connects the DOM and Canvas. It gives to the ability to take arbitrary DOM content and paint

389 Dec 29, 2022

Contracts with missing implementation details and unit tests to help guide junior solidity developers.

template-challenge-staking Contracts with missing implementation details and unit tests to help guide junior solidity developers. Getting started Open

4 Oct 7, 2022

Simple, lightweight, persistent two-way databinding

way.js Simple, lightweight, persistent, framework-agnostic two-way databinding Javascript library. With no to little JS code to write. And no dependen

2.9k Dec 30, 2022

Persistent key/value data storage for your Browser and/or PWA, promisified, including file support and service worker support, all with IndexedDB. Perfectly suitable for your next (PWA) app.

BrowstorJS ?? ?? ?? Persistent key/value data storage for your Browser and/or PWA, promisified, including file support and service worker support, all

8 Aug 5, 2022

A high-resolution local database that uses precise algorithms to easily record data in local files within a project with persistent JSON and YAML support designed to be easy to set up and use

About A high-resolution local database that uses precise algorithms to easily record data in local files within a project with persistent JSON and YML

5 Dec 28, 2022

The missing Javascript smart persistent layer

Related tags

Overview

Basil.js

Philosophy

Basic Usage

Advanced Usage

Storages

Native storages

Namespaces

Configuration

Compatibility

Plugins

List plugin

Set plugin

Build

Tests

License

Comments

6.2.4

v0.2.2

v0.2.1

6.2.1

Bug Fixes

6.2.0

Features

Links

6.1.3

Bug Fixes

6.2.1 (2022-11-20)

Bug Fixes

3.6.0 (2022-06-06)

Bug Fixes

Features

4.2.1

Bug Fixes

Links

4.2.0

Features

Links

4.1.2

Bug Fixes

Links

4.1.1

Links

4.1.0

Features

Links

4.0.5

Bug Fixes

Links

4.2.1 (2022-06-27)

Bug Fixes

4.2.0 (2022-04-17)

Features

4.1.2 (2022-02-17)

Bug Fixes

4.1.1 (2021-10-14)

4.1.0 (2021-10-11)

Features

4.0.4 (2021-01-15)

Bug Fixes

4.0.3 (2021-01-05)

4.0.2 (2020-11-25)

2.0.5

Fix

Doc

Build

Test

Changelog

3.0.1 (2021-10-31)

Bug Fixes

3.0.0 (2021-09-25)

⚠ BREAKING CHANGES

Miscellaneous Chores

v1.7.2

v1.7.1

v1.7.0

v1.6.3

v1.6.2