Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@aragon/apps-payroll
Advanced tools
_**Code in Github:**_ [aragon-apps/apps/payroll](https://github.com/aragon/aragon-apps/tree/master/future-apps/payroll)
Code in Github: aragon-apps/apps/payroll
The purpose of the Payroll app is to implement a Payroll system in multiple currencies.
Initializing a Payroll app requires the following parameters:
payroll.setAllowedToken(address _allowedToken, true)
Add token to the list of accepted ones for salary payment. It needs MANAGE_ALLOWED_TOKENS_ROLE
.
payroll.setExchangeRate(address token, uint256 denominationExchangeRate)
Set the exchange rate for an allowed token against the Payroll denomination token. It needs ORACLE_ROLE
.
Three options can be used:
payroll.addEmployee(address accountAddress, uint256 initialYearlyDenominationSalary, string role, uint256 startDate)
Add employee to the organization. Start date is used as the initial payment day. If it's not provided, the date of the transaction will be used. It needs ADD_EMPLOYEE_ROLE
.
payroll.setEmployeeSalary(uint128 employeeId, uint256 yearlyDenominationSalary)
It needs ADD_EMPLOYEE_ROLE
.
payroll.removeEmployee(uint128 employeeId)
Remove employee from organization. The owed up to current date salary will be transferred to the employee. It needs REMOVE_EMPLOYEE_ROLE
.
payroll.determineAllocation(address[] tokens, uint8[] distribution)
Employees can set the proportion of every allowed token that want to be used for their salary payment. Distribution values are expressed as a ratio to 100.
payroll.payday()
Employees can request payroll whenever they want and the proportional amount of their anual salary since the last request (or since the start date if it's the first one) will be transferred.
payroll.changeAddressByEmployee(address newAddress)
Employees can change their own address.
payday
will fail. There's no automatic token conversion yet.FAQs
_**Code in Github:**_ [aragon-apps/apps/payroll](https://github.com/aragon/aragon-apps/tree/master/future-apps/payroll)
The npm package @aragon/apps-payroll receives a total of 9 weekly downloads. As such, @aragon/apps-payroll popularity was classified as not popular.
We found that @aragon/apps-payroll demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 9 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.