Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@dreipol/dreiguard
Advanced tools
Compare versions of website across different browsers using browserstack api. This cli app will use the browserstack api to create a screenshot of your site. You'll have to configure multiple environments & browsers. Thos screenshots are the compared to each other.
Note: In order to maintain decent performance only the centered 500px x 500px are compared.
npm i @dreipol/dreiguard -g
dreiguard compare http://dreipol.ch ./config/index.js --json --cli -p dreipol.ch --slack all
compare
Run comparison for url with configuration from provided file
dreiguard compare <URL> <FILE> [--json] [--cli] [--project NAME] [--slack MODE] [--quiet]
--quiet
Suppress console output--json
will create a json file in the folder configured in the configfile called {PROJECT}.json
.--cli
will print a more readable table.--slack [all|diff|whitepage]
will print the failing results to slack. The webhook url is configured in the configfile.
Only send the selected diff warnings.--project <PROJECTNAME>
used for creating screenshots and assign them in browserstack (Used for better search)Example:
dreiguard compare https://dreipol.ch ./dreiguard/config.js
output
┌────────────────────┬────────────────────┬────────────────────┬────────────────────┬──────────┐
│ Device │ Browser │ Comp. Device │ Comp. Browser │ Diff │
├────────────────────┼────────────────────┼────────────────────┼────────────────────┼──────────┤
│ Windows 10 │ Chrome 66.0 │ OS X High Sierra │ Chrome 66.0 │ 0.113069 │
├────────────────────┼────────────────────┼────────────────────┼────────────────────┼──────────┤
│ OS X High Sierra │ Chrome 66.0 │ Windows 10 │ Chrome 66.0 │ 0.113069 │
└────────────────────┴────────────────────┴────────────────────┴────────────────────┴──────────┘
init
Setup initial configuration file
dreiguard init <FILE>
Example:
dreiguard init ./dreiguard/config.js
In order not to have some sensitive information in the reporsitories there are a couple of env variables you have to either replace in your project or add them.
BROWSERSTACK_USER
user used to access browserstackBROWSERSTACK_KEY
key used to access browserstackSLACK_WEBHOOK
webhook to send slack notificationsFor local testing you can create a .env
file in the project root
and than work with dotenv
node module. You can use confg/index.js
for testing.
There dotenv
is already set up
Example .env
BROWSERSTACK_USER=REPLACE
BROWSERSTACK_KEY=REPLACE
SLACK_WEBHOOK=REPLACE
In order not have to compile the typescript code every execution, you can use ts-node
.
ts-node ./src/cli/index.ts compare https://dreipol.ch ./config/index.js --project dreipol.ch --json --cli
FAQs
Compare cross browser screenshots for url
The npm package @dreipol/dreiguard receives a total of 7 weekly downloads. As such, @dreipol/dreiguard popularity was classified as not popular.
We found that @dreipol/dreiguard demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.