@nodesecure/sec-literal

This package is a security utilities library created to analyze ESTree Literal and JavaScript string primitive.

Features

- Detect Hexadecimal, Base64, Hexa and Unicode sequences.
- Detect patterns (prefix, suffix) on groups of identifiers.
- Detect suspicious string and return advanced metrics on it (char diversity etc).

Getting Started

This package is available in the Node Package Repository and can be easily installed with npm or yarn.

``bash
$ npm i @nodesecure/sec-literal


or


$ yarn add @nodesecure/sec-literal
`

API

Hex

$3

Detect if the given string is an Hexadecimal value

$3

Detect if the given string is a safe Hexadecimal value. The goal of this method is to eliminate false-positive.

`js
Hex.isSafe("1234"); // true
Hex.isSafe("abcdef"); // true
``

Literal

$3

$3

$3

$3

Utils

$3

$3

Detect if a given string is a svg path or not.

$3

Get the number of unique chars in a given string

$3

Analyze a given string an give it a suspicion score (higher than 1 or 2 mean that the string is highly suspect).

Patterns

$3

$3

$3

License

MIT