@httpie/json
v1.1.0
Published
Secure drop-in replacement for the global `JSON` object
Downloads
8
Maintainers
Readme
Introduction
The @httpie/json
package is a drop-in replacement for the global JSON
object. It protects JSON parsing against protoype pollution attacks.
Installation
npm i @httpie/json
Usage
Using @httpie/json
is pretty straightforward. Use it the same way as you would use the JSON
object:
const JSON = require('@httpie/json')
const user = JSON.parse('{"name":"Supercharge"}')
// { name: 'Supercharge' }
const user = JSON.parse('{"name":"Supercharge", "__proto__": { "x": 1 }, "constructor": {"prototype": {"bar": "baz"} } }')
// { name: 'Supercharge' }
const json = JSON.stringify({ name: 'Supercharge' })
// '{"name":"Supercharge"}'
Contributing
Do you miss a function? We very much appreciate your contribution! Please send in a pull request 😊
- Create a fork
- Create your feature branch:
git checkout -b my-feature
- Commit your changes:
git commit -am 'Add some feature'
- Push to the branch:
git push origin my-new-feature
- Submit a pull request 🚀
License
MIT © Supercharge
httpiejs.com · GitHub @httpie · Twitter @httpiejs