
Research
/Security News
Popular Tinycolor npm Package Compromised in Supply Chain Attack Affecting 40+ Packages
Malicious update to @ctrl/tinycolor on npm is part of a supply-chain attack hitting 40+ packages across maintainers
@akkadu/error
Advanced tools
This module exports two methods:
which simply add a string of your choosing infront of the error message. This is due to us having most of our users being mobile users and often we don't have access to remote debugging to see what is breaking. To quickly see which method or part of the code is throwing the error has proven to be beneficial when looking at for instance the logs on the eruda mobile debug console.
FAQs
This module exports two methods: - extendError - extendMessage
We found that @akkadu/error demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 6 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
/Security News
Malicious update to @ctrl/tinycolor on npm is part of a supply-chain attack hitting 40+ packages across maintainers
Security News
pnpm's new minimumReleaseAge setting delays package updates to prevent supply chain attacks, with other tools like Taze and NCU following suit.
Security News
The Rust Security Response WG is warning of phishing emails from rustfoundation.dev targeting crates.io users.