Security News
Feross on TBPN: How North Korea Hijacked Axios
Socket CEO Feross Aboukhadijeh breaks down how North Korea hijacked Axios and what it means for the future of software supply chain security.
By Sarah Gooding - Apr 08, 2026
New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
github.com/rssaurus/rssaurus-cli
Advanced tools
github.com/rssaurus/rssaurus-cli
- Version
- v0.1.5
- Version published
- Created
rssaurus-cli
A command-line client for RSSaurus.
Install
Homebrew (recommended)
brew tap RSSaurus/tap
brew install rssaurus
# later
brew upgrade rssaurus
Quick install (macOS / Linux)
curl -fsSL https://raw.githubusercontent.com/RSSaurus/rssaurus-cli/main/install.sh | bash
Installs rssaurus into /usr/local/bin (uses sudo if needed).
Manual install
Download a binary from GitHub Releases: https://github.com/RSSaurus/rssaurus-cli/releases
Quick start
- Create an API token: https://rssaurus.com/api_tokens/new
- Login:
rssaurus auth login
- Verify:
rssaurus auth whoami
Configuration
For v1 we keep a single host/token.
- Default host:
https://rssaurus.com - Override host via
RSSAURUS_HOSTor--host - Provide token via
RSSAURUS_TOKENor store it locally viarssaurus auth login
Config file location:
$XDG_CONFIG_HOME/rssaurus/config.json(if set)- otherwise
~/.config/rssaurus/config.json
Commands
rssaurus auth loginrssaurus auth whoamirssaurus feeds(default output does not include DB IDs)rssaurus items(unread by default; supports--feed-id,--status,--limit,--cursor,--urls)rssaurus open <url>rssaurus read <item-id>/rssaurus unread <item-id>rssaurus mark-read --all(or--ids 1,2,3,--url <url>,--urls <u1,u2>, optional--feed-id)rssaurus save <url>/rssaurus unsave <saved-item-id>
Notes:
- Use
--jsonoutput when you need IDs for scripting. - When using the
--urlsflag,itemsprints only URLs (one per line) for easy piping.
Install locally (dev)
# Installs a `rssaurus` binary into ~/go/bin
go install ./cmd/rssaurus
# Ensure ~/go/bin is in PATH
export PATH="$PATH:$HOME/go/bin"
rssaurus --help
Development
go test ./...
FAQs
Unknown package
Package last updated on 01 Feb 2026
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Attackers Are Impersonating a Linux Foundation Leader in Slack to Target Open Source Developers
OpenSSF has issued a high-severity advisory warning open source developers of an active Slack-based campaign using impersonation to deliver malware.
By Sarah Gooding - Apr 08, 2026
Research
/Security News
North Korea’s Contagious Interview Campaign Spreads Across 5 Ecosystems, Delivering Staged RAT Payloads
Malicious packages published to npm, PyPI, Go Modules, crates.io, and Packagist impersonate developer tooling to fetch staged malware, steal credentials and wallets, and enable remote access.
By Kirill Boychenko - Apr 07, 2026