![Malicious npm Package Typosquats react-login-page to Deploy Keylogger](https://cdn.sanity.io/images/cgdhsj6q/production/007b21d9cf9e03ae0bb3f577d1bd59b9d715645a-1024x1024.webp?w=400&fit=max&auto=format)
Research
Security News
Malicious npm Package Typosquats react-login-page to Deploy Keylogger
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
@choerodon/manager
Advanced tools
Readme
Choerodon Manager Service是猪齿鱼微服务框架的服务管理中心,主要功能包括配置管理、swagger管理、API统计和菜单统计。
application.yml
spring:
datasource:
url: jdbc:mysql://localhost/manager_service?useUnicode=true&characterEncoding=utf-8&useSSL=false&useInformationSchema=true&remarks=true
username: choerodon
password: 123456
redis:
host: localhost
port: 6379
# 使用和api-gateway同一个redis数据库,因为api调用统计存储在api-gateway,查询在manager-service
database: 4
mybatis:
mapperLocations: classpath*:/mapper/*.xml
configuration:
mapUnderscoreToCamelCase: true
eureka:
instance:
preferIpAddress: true
leaseRenewalIntervalInSeconds: 1
leaseExpirationDurationInSeconds: 3
client:
serviceUrl:
defaultZone: ${EUREKA_DEFAULT_ZONE:http://localhost:8000/eureka/}
choerodon:
eureka:
event:
max-cache-size: 300
retry-time: 5
retry-interval: 3
skip-services: config**, **register-server, **gateway**, zipkin**, hystrix**, oauth**
swagger:
client: client
oauth-url: http://localhost:8080/oauth/oauth/authorize
gateway:
domain: 127.0.0.1:8080
names: api-gateway, gateway-helper
register:
executetTime: 100
profiles:
active: sit
bootstrap.yml
server:
port: 8963
spring:
application:
name: manager-service
mvc:
static-path-pattern: /**
resources:
static-locations: classpath:/static,classpath:/public,classpath:/resources,classpath:/META-INF/resources,file:/dist
management:
endpoint:
health:
show-details: ALWAYS
server:
port: 8964
endpoints:
web:
exposure:
include: '*'
feign:
hystrix:
enabled: false
EurekaServer
,本地环境需要 eureka-server
,线上环境需要使用 go-register-server
运行 eureka-server
,代码库地址。
拉取当前项目到本地,执行如下命令:
git clone https://code.choerodon.com.cn/choerodon-framework/manager-service.git
创建数据库,本地创建 manager_service
数据库和默认用户,示例如下:
CREATE USER 'choerodon'@'%' IDENTIFIED BY "123456";
CREATE DATABASE manager_service DEFAULT CHARACTER SET utf8;
GRANT ALL PRIVILEGES ON manager_service.* TO choerodon@'%';
FLUSH PRIVILEGES;
初始化 asgard_service
数据库,运行项目根目录下的 init-local-database.sh
,该脚本默认初始化数据库的地址为 localhost
,若有变更需要修改脚本文件
sh init-local-database.sh
本地启动 redis-server
启动项目,项目根目录下执行如下命令:
mvn spring-boot:run
欢迎参与我们的项目,了解更多有关如何参与贡献的信息。
FAQs
Unknown package
We found that @choerodon/manager demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 8 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
Security News
The JavaScript community has launched the e18e initiative to improve ecosystem performance by cleaning up dependency trees, speeding up critical parts of the ecosystem, and documenting lighter alternatives to established tools.
Product
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.