The json-bigint package, at version 0.0.0, marks the initial release of a library designed to enhance standard JSON parsing capabilities with support for handling large integer values (bigints). This is crucial for developers working with applications where JSON data contains integers exceeding the typical JavaScript number limits, preventing potential data loss or inaccurate representation. This early version depends on bignumber.js version ~1.1.1, signifying the library's reliance on a mature and well-regarded arbitrary-precision arithmetic library for handling the bigint functionality. Licensed under the MIT license, json-bigint embraces an open-source approach, encouraging community contribution and widespread adoption. The package's repository is hosted on GitHub, providing a readily accessible platform for bug reporting, feature requests, and collaborative development. Authored by Andrey Sidorov, the package targets developers facing limitations with standard JSON parsers when processing large numeric values. While version 0.0.0 lays the foundation for bigint support in JSON parsing, information on the previous *stable* version is unavailable, thus a direct comparison is impossible, and any assumptions about improvements or modifications since then cannot be made. Consequently, developers should view this initial release as a starting point and carefully examine the documentation and community feedback for subsequent versions when deciding whether or not version 0. focuses on their project needs, especially in the context of handling extremely large numbers retrieved via JSON APIs.
All the vulnerabilities related to the version 0.0.0 of the package
Uncontrolled Resource Consumption in json-bigint
Prototype pollution in json-bigint npm package < 1.0.0 may lead to a denial-of-service (DoS) attack.
