Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@discordia/framework
Advanced tools
Note: Some of the links in this README file work better on the documentation site
Discordia instantiates and starts Discord bots using the @discordia/framework module.
# install the module using npm
npm install @discordia/framework
# install the module using yarn
yarn add @discordia/framework
const DiscordiaFramework = require('@discordia/framework');
// actions is an array of DiscordiaAction objects
const actions = require('./actions');
const options = {
name: 'myBot',
caseSensitiveName: false,
missingCommandMessage: 'The command you tried to send was not available',
help: 'You should probably configure a useful help message or leave the default',
};
const myBot = new DiscordiaFramework('DISCORD_BOT_TOKEN', actions, options);
// Set up the event listeners and log the bot in using the provided token
myBot.start();
Every Discordia framework is made of three pieces: a token, an array of actions, and a set of optional options.
String
Your private Discord bot token. The token for your bot should be located at https://discordapp.com/developers/applications/{client-id}/bot (replace {client-id} with the Client ID of your Discord application) in a hidden field that you can reveal by clicking "Click to Reveal Token". This guide is a useful one for making a new Discord bot if you have not done so before. Follow that guide through step #4 to make your bot and get a link to invite it to a server.
⚠️This token is a sensitive piece of information - do not commit it with your source code and regenerate it if it ever becomes compromised⚠️
Array[DiscordiaAction]
An array of DiscordiaAction objects. See our guide on how to use the @discordia/action module to create your own actions and/or install them from third party modules.
Object
The options object is prepopulated with overrideable defaults. More in-depth explanations of the available options are below.
Option | Default |
---|---|
name | undefined |
caseSensitiveName | false |
missingCommandMessage | "The command you typed is not available 🙁" |
help | @discordia/default-help |
name
String - Default = undefined
Your discord bot will see all messages sent in a server you invite it to. By default, it will only respond when you @ the bot. If name
is set then the bot will instead respond to any message that begins with a string matching name
. By default this is not case sensitive but you can set caseSensitiveName
to true
if you want the name
to be case sensitive.
caseSensitiveName
Boolean - Default = false
Controls whether or not the bot name should be treated as if it is case sensitive. This field is ignored if name
is not set.
missingCommandMessage
String|Function - Default = "The command you typed is not available 🙁"
See DiscordiaFramework.handleMissingCommand for more details.
The message to send if a server member tries to ask the bot to do an action it does not know how to handle. You can either customize the string
or provide a function
to give a more involved response.
help
String|Function - Default = @discordia/default-help
See DiscordiaFramework.handleHelp for more details.
The message to send if a server member tries to ask the bot for help. By default it will use @discordia/default-help to read your actions and send a response based on their accessors and descriptions. You can provide a static string
as a response or provide a custom function
to give a more involved response.
🚧 Coming Soon! 🚧
0.1.1 (2020-05-06)
Note: Version bump only for package discordia
FAQs
The main discordia framework
The npm package @discordia/framework receives a total of 44 weekly downloads. As such, @discordia/framework popularity was classified as not popular.
We found that @discordia/framework demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.