Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@colucom/osseus
Advanced tools
Osseus modular web server
$ npm install @colucom/osseus
after installing update package.json
to include "osseus": "~x.y.z"
instead of "osseus": "^x.y.z"
In order to use any one of those modules you should install it on your app
First, create index.js
:
const Osseus = require('osseus')
const main = async () => {
const osseus = await Osseus.init()
}
main()
$ node index.js --OSSEUS_SERVER_PORT 8888 --OSSEUS_SERVER_DEPENDENCIES ["'logger'"] --DEBUG true --OSSEUS_LOGGER_LOG_LEVEL debug
For more configuration options see osseus-config
Osseus modules by default are loaded when they appear in the configuration.
You can specify explicitly whether to load a module or not using the OSSEUS_<MODULE-NAME>_LOAD
configuration param which can be true
or false
(boolean)
You can write your own private osseus modules which you do not wish to publish to the public npm.
In order to use them you will need to specify explicitly that they are private using the OSSEUS_<MODULE-NAME>_PRIVATE
configuration param which can be true
or false
(boolean)
You can write your own osseus modules and publish to the public npm under your own scope/organization.
In order to use them you will need to specify explicitly the scope of the module using the OSSEUS_<MODULE-NAME>_SCOPE
configuration param.
By default modules are loaded from the @colucom
organization.
For debugging purposes, osseus uses trace-and-clarify-if-possible.
This module causes memory leaks so it can only be used in debug
mode. To activate this module set USE_TRACE
to true
.
Osseus modules by default are initialized parallely.
In order for modules to initialize after specific modules we have the "dependencies" configuration setting.
Generally speaking, if you wish for one osseus module to initialize before another you'll have to add the following configuration param: OSSEUS_<MODULE-NAME>_DEPENDENCIES: ['<other-module-name>']
For example, if we wish to have an osseus-server but make sure we have osseus-logger before that we will add to our configuration: OSSEUS_SERVER_DEPENDENCIES: ['logger']
Please see contributing guidelines.
Code released under the MIT License.
FAQs
Osseus modular web server
We found that @colucom/osseus demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 6 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.