Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
@clinic/heap-profiler
Advanced tools
Programmable interface to Clinic.js Heap Profiler. Learn more about Clinic.js: https://clinicjs.org/
To open an issue, please use the main repository with the heapprofiler
label.
npm i -S @clinic/heap-profiler
const ClinicHeapProfiler = require('@clinic/heap-profiler')
const heapProfiler = new ClinicHeapProfiler()
heapProfiler.collect(['node', './path-to-script.js'], function (err, filepath) {
if (err) throw err
heapProfiler.visualize(filepath, filepath + '.html', function (err) {
if (err) throw err
})
})
const ClinicHeapProfiler = require('@clinic/heap-profiler')
const heapProfiler = new ClinicHeapProfiler()
<Object>
<boolean>
Default: false<boolean>
If set to true, the collected data will be returned even if the process exits with non-zero code.
Default: false<boolean>
If set to true, the generated html will not be minified.
Default: false<String>
Destination for the collected data
Default: .clinic
<String>
File name for the collected data
Default: <process.pid>.clinic-heapprofiler
heapProfiler.collect(args, callback)
Starts a process by using @nearform/heap-profiler.
The process sampling is started as soon as the process starts. The filepath with collected data will be the value in the callback.
stdout
, stderr
, and stdin
will be relayed to the calling process.
The sampling is stopped and data collected right before the process exits.
If you want to collect data earlier, you can send the process a SIGINT
or, if detectPort
is true
, you can call heapProfiler.stopViaIPC()
.
heapProfiler.visualize(dataFilename, outputFilename, callback)
Will consume the datafile specified by dataFilename
, this datafile will be
produced by the sampler using heapProfiler.collect
.
heapProfiler.visualize
will then output a standalone HTML file to outputFilename
.
When completed the callback
will be called with no extra arguments, except a
possible error.
heapProfiler.stopViaIPC()
When the profiler is started with detectPort=true
, the profiler establish a TCP based IPC communication.
This method can therefore be called to collect the data at any time.
If no TCP channel is opened or available, the method will perform no operation so it is safe to call at all times.
See the examples
folder. All example should be run from the repository main folder:
node examples/redis-web-service
Each index.js
will contain any specific setup step required by the example, if any.
FAQs
Programmable interface to Clinic.js Heap Profiler
We found that @clinic/heap-profiler demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.