Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
github.com/godfather667/backend
A Flexible Database for storing records with mixed Columns
Package backend implements an Rest API that manages a "company" database.
Example: |NAME John Smith |AGE 50
Since Records are Key/Stores the Record Format is completely flexible.
Each Record can have Unique Tag Pairs - The User can add special Tag to Any Record: For Example:
** Server is on localhost:3000** Responds to endpoint /backend/<CMD> [ <data list> ]
<CMD> <Data List>
<CMD> = Single Upper Case Text Word
<Data List> = <Tag Pair> [ <Tag Pair> ... ]
<Tag Pair> = <TAG> <Word> [ <Word> ... ]
<TAG> = <|><Single Upper Case Text Word><space>
<Word> = <space><Text><space>
/NEW <data list> - Creates a new record (ID # -Automatic)
/UPDATE <|ID Number> <data list> - Updates specified ID
/GET/<ID Record Number> - Returns spedified ID
/DELETE/<ID Record Number> - Deletes specified ID
/LIST/ - Lists all records
/EXIT/ - Close Database and exit
Example: https://localhost:3000/backend/NEW |NAME John Smith |AGE 50
Example: https://localhost:3000/backend/UPDATE |ID Rec# |NAME Mike Browm
NOTES:
- TAGs should be unique ( |NAME <string> |NAME <string> ) Is Wrong!!
- Commands should be in UPPER CASE (For CLarity)
- !TAG must be an exact match (TAG and tag are NOT the same)
- TAGS should be in UPPER CASE (For CLarity)
- There is no escape for the "|" Character is the TAG Prefix identifier
- All <data list Tags and Words are strings! Numbers are specified as <strings>
CMD: LIST
1 |NAME John Jones |AGE 50
2 |NAME Mark Smith |AGE 29
3 |NAME Bob Brown |AGE 35
Error Messages: "Recoverable Errors are Display and Processing Continues"
Unrecoverable Errors are handled by the "log.Fatal" package function.
FAQs
Unknown package
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.