Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
github.com/nanmu42/etherscan-api
English | 中文
Golang client for the Etherscan.io API(and its families like BscScan), with nearly full implementation(accounts, transactions, tokens, contracts, blocks, stats), full network support(Mainnet, Ropsten, Kovan, Rinkby, Goerli, Tobalaba), and only depending on standard library. :wink:
go get github.com/nanmu42/etherscan-api
Create an API instance and off you go. :rocket:
import (
"github.com/nanmu42/etherscan-api"
"fmt"
)
func main() {
// create a API client for specified ethereum net
// there are many pre-defined network in package
client := etherscan.New(etherscan.Mainnet, "[your API key]")
// or, if you are working with etherscan-family API like BscScan
//
// client := etherscan.NewCustomized(etherscan.Customization{
// Timeout: 15 * time.Second,
// Key: "You key here",
// BaseURL: "https://api.bscscan.com/api?",
// Verbose: false,
// })
// (optional) add hooks, e.g. for rate limit
client.BeforeRequest = func(module, action string, param map[string]interface{}) error {
// ...
}
client.AfterRequest = func(module, action string, param map[string]interface{}, outcome interface{}, requestErr error) {
// ...
}
// check account balance
balance, err := client.AccountBalance("0x281055afc982d96fab65b3a49cac8b878184cb16")
if err != nil {
panic(err)
}
// balance in wei, in *big.Int type
fmt.Println(balance.Int())
// check token balance
tokenBalance, err := client.TokenBalance("contractAddress", "holderAddress")
// check ERC20 transactions from/to a specified address
transfers, err := client.ERC20Transfers("contractAddress", "address", startBlock, endBlock, page, offset)
}
You may find full method list at GoDoc.
You may apply for an API key on etherscan.
The Etherscan Ethereum Developer APIs are provided as a community service and without warranty, so please just use what you need and no more. They support both GET/POST requests and a rate limit of 5 requests/sec (exceed and you will be blocked).
I am not from Etherscan and I just find their service really useful, so I implement this. :smile:
Use of this work is governed by an MIT License.
You may find a license copy in project root.
FAQs
Unknown package
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.