
Research
NPM targeted by malware campaign mimicking familiar library names
Socket uncovered npm malware campaign mimicking popular Node.js libraries and packages from other ecosystems; packages steal data and execute remote code.
net.java.truevfs:truevfs-ext-pacemaker
Advanced tools
Constraints the number of concurrently mounted archive file systems in order to save some heap space. Provides a JMX interface for monitoring and management. Add the JAR artifact of this module to the run time class path to make its services available for service location in the client API modules.
Supply Chain Security
Vulnerability
Quality
Maintenance
License
TrueVFS is a virtual file system (VFS) for Java 8 which enables client applications to access archive files as if they were virtual directories, including nested archive files in multithreaded environments. As a library, TrueVFS provides simple, uniform, transparent, thread-safe, read/write access to archive files as if they were virtual directories in a file system path. As a framework, TrueVFS provides the API to write file system drivers which plug-in to its federated file system space.
For more information, please refer to the documentation at http://truevfs.net/.
FAQs
Constraints the number of concurrently mounted archive file systems in order to save some heap space. Provides a JMX interface for monitoring and management. Add the JAR artifact of this module to the run time class path to make its services available for service location in the client API modules.
We found that net.java.truevfs:truevfs-ext-pacemaker demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Socket uncovered npm malware campaign mimicking popular Node.js libraries and packages from other ecosystems; packages steal data and execute remote code.
Research
Socket's research uncovers three dangerous Go modules that contain obfuscated disk-wiping malware, threatening complete data loss.
Research
Socket uncovers malicious packages on PyPI using Gmail's SMTP protocol for command and control (C2) to exfiltrate data and execute commands.