
Research
Two Malicious Rust Crates Impersonate Popular Logger to Steal Wallet Keys
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
@capraconsulting/sentry-utils-js
Advanced tools
Install the dependency:
npm install --save-exact @capraconsulting/sentry-utils-js
Find your DSN in Sentry under "Settings" -> "Client Keys", to be used in the next snippet.
Initialize Sentry in your application. This should be done as early as possible, preferably before other imports, so that it can catch errors during the rest of initialization.
initSentry({
// Options specified by Sentry, see type Sentry.BrowserOptions.
options: {
release: 'ec1c1c',
environment: '...',
dsn: '...',
},
buildTime: '2019-04-11T00:06+02:00', // Optional
});
The following is a full example of how this can be done:
import {
initSentry,
reportSentryNotEnabled,
} from "@capraconsulting/sentry-utils-js";
import { getConfig } from "./common/config";
const config = getConfig();
if (config.sentryDsn) {
initSentry({
options: {
release: __BUILD_INFO__.commitHash,
environment: config.sentryEnv,
dsn: config.sentryDsn,
},
buildTime: __BUILD_INFO__.appBuildTime,
});
} else {
reportSentryNotEnabled();
}
Capture log events when needed:
import { captureError } from "@capraconsulting/sentry-utils-js";
if (...) {
captureError("Something bad happened")
}
See types for additional capture methods and parameters that can be used.
buildTime
as tag if provided during initializationEvaluate and throttle before sending message to Sentry in case of excessive amount of failures. This will allow for a spike of 4-5 requests, decaying using mean lifetime of 1 minute.
This project uses semantic release to automate releases and follows Git commit guidelines from the Angular project.
FAQs
Utils for monitoring webapps with Sentry
We found that @capraconsulting/sentry-utils-js demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 14 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
Research
A malicious package uses a QR code as steganography in an innovative technique.
Research
/Security News
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.