Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
github.com/nft-rainbow/discordbot
DiscordNFTBot
This is a NFTRainbow-based discord bot, which helps users in the discord to mint NFTs easily. On the other hand, this bot can be used on the community activities to increase community activity.
For the admin of the bot, he can choose to use the default erc721 contract, or to deploy his own erc721 or erc1155 contract. To achieve this target, the admin can use the provided CMD to upload file to
obtain the file_url
, which is used by the admin to deploy the contract through the provided CMD.
For the users in the discord channel where the bot is deployed, they can mint their own NFTs through the contract provided by the admin.
cd botCMD
Generate the config.yaml
cp config-sample.yaml config.yaml
Input the app_id
and app_secret
, which can be obtained from the NFTRainbow console
Generate the binary file
make build
Upload file to server to obtain the file_url
botCMD upload [file_path]
# file_path is the uploaded file path
Deploy the contract
botCMD deploy [name] [symbol] [type] [appAddress]
Parameters Name | Meaning | Required or Optional |
---|---|---|
name | The name of the NFT | required |
symbol | The symbol of the NFT | required |
type | The type of contracts including erc721 and erc1155 | required |
appAddress | The address of the app account,which can be obtained from the NFTRainbow console | required |
Generate the config.yaml
cp config-sample.yaml config.yaml
Config the yaml
app_id
and app_secret
botToken
which can be obtained from the discord. This can refer to https://www.writebots.com/discord-bot-token/file_url
, name
, description
and so on.contractAddress
is required to call customMint. Please input the parameter.Run the project
go run main.go
After the users in the discord channel can input the /claim easy-mint [user_address]
to the chat frame, the bot will return the NFT information in several seconds.
Parameters Name | Meaning | Required or Optional |
---|---|---|
user_address | The blockchain address of the user | required |
After the users in the discord channel can input the /claim custom-mint [user_address]
to the chat frame, the bot will return the NFT information in several seconds.
Parameters Name | Meaning | Required or Optional |
---|---|---|
user_address | The blockchain address of the user | required |
FAQs
Unknown package
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.