
Research
Two Malicious Rust Crates Impersonate Popular Logger to Steal Wallet Keys
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
@azuro-org/sdk-social-aa-connector
Advanced tools
This package adds a Particle Auth Kit with special setup to work with `@azuro-org/sdk`.
This package adds a Particle Auth Kit with special setup to work with @azuro-org/sdk
.
npm install @azuro-org/sdk @azuro-org/sdk-social-aa-connector
it is assumed that you have already set up a project with base azuro sdk.
createConfig
from @privy-io/wagmi
:import { http, createConfig, cookieStorage, createStorage } from 'wagmi'
import { injected, walletConnect } from 'wagmi/connectors'
import type {PrivyClientConfig} from '@privy-io/react-auth'
import { createConfig } from '@privy-io/wagmi'
const wagmiConfig = createConfig({
chains: appChains,
transports: {
[polygonAmoy.id]: http(constants.rpcByChains[polygonAmoy.id]),
},
connectors: [
injectedConnector,
walletConnectConnector,
],
ssr: true,
syncConnectedChain: true,
multiInjectedProviderDiscovery: true,
storage: createStorage({
storage: cookieStorage,
}),
})
Register at https://dashboard.privy.io/account:
App ID
.Replace WagmiProvider
from wagmi
by PrivyProvider
from @azuro-org/sdk-social-aa-connector
:
import type {PrivyClientConfig} from '@privy-io/react-auth'
import { PrivyProvider } from '@azuro-org/sdk-social-aa-connector'
import { wagmiConfig } from './config'
const Providers = ({ children, initialState }) => {
return (
<QueryClientProvider client={queryClient}>
<PrivyProvider
appId="your-App-ID-from-privy-dashboard"
// (optional) you can customize privyConfig, see PrivyClientConfig interface
// privyConfig={privyConfig}
wagmiConfig={wagmiConfig}
initialWagmiState={initialState}
>
{children}
</PrivyProvider>
</QueryClientProvider>
)
}
wagmi
to privy
:import { usePrivy } from '@privy-io/react-auth'
import { useAccount } from '@azuro-org/sdk-social-aa-connector'
const ConnectButton = () => {
const { address } = useAccount()
const { connectOrCreateWallet, ready } = usePrivy()
if (!address) {
return (
<button type="button" onClick={() => connectOrCreateWallet()}>Connect Wallet</button>
)
}
return <>Your connected state view</>
}
useAccount
hook imports from wagmi
to @azuro-org/sdk-social-aa-connector
:It returns the same data, but extends with isAAWallet
flag and, in case of login via email/social networks, replaces address
with smart account address for current user.
import { useAccount } from '@azuro-org/sdk-social-aa-connector'
const Component = () => {
/*
* If user logged in via email/social netkwork:
* isAAWallet = true
* address = Safe AA address controlled by user
* Else, default web3 connection:
* isAAWallet = false
* address = connected wallet address
* */
const { address, isAAWallet } = useAccount()
}
import { useSmartWallets } from '@privy-io/react-auth/smart-wallets'
const Funding = () => {
const { client } = useSmartWallets()
/*
await client.switchChain({ id: appChainId })
const signature = await client.signMessage({
account: client.account,
message: 'Hello world',
})
const signature = await client.signTypedData({
account: client.account,
// https://viem.sh/docs/actions/wallet/signTypedData#signtypeddata
...insertYourTypedDataParams,
})
const txHash = await client.sendTransaction({
account: client.account,
chain: appChain,
to: 'insert-recipient-address',
value: 0.1,
});
*/
}
FAQs
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
Research
A malicious package uses a QR code as steganography in an innovative technique.
Research
/Security News
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.