Research
Malicious fezbox npm Package Steals Browser Passwords from Cookies via Innovative QR Code Steganographic Technique
A malicious package uses a QR code as steganography in an innovative technique.
By Olivia Brown - Sep 22, 2025
@dyteinternals/utils
Advanced tools
Utility for Preset & Flag Management
Overview
This repository provides a utility package that facilitates interaction with Flagsmith while also offering various helper functions to manage and convert presets. It is designed to be integrated into a larger project such as web-core.
Features
- Preset Conversion Methods: Includes helper methods to convert preset configurations between different formats.
- Default Preset Values: Contains default preset that can be directly used by other projects.
- Flagsmith Integration: Provides an easy-to-use function to interact with Flagsmith for feature flag management.
Installation and Usage
npm install @dyteinternals/utils
or if using yarn:
yarn add @dyteinternals/utils
Usage Example
Flagsmith
- Import flagsmith
import { globalFlagsmith as flagsmith } from '@dyteinternals/utils';
- Identify the user to flagsmith
await flagsmith.identify(
'A_RANDOM_USER_ID',
JSON.parse(JSON.stringify({traitKey1: traitValue1, traitKey2: traitValue:2})),
false, // force evaluate, appends a fake string to userId to make it unique and treat it as new user
5000, // timeout
flagsEndpoint, // default edge.api.flagsmith.com
console, // logs would be passed to console, pass any logger of your choice
);
Using Preset Conversion Methods
import {
getDefaultPresetV2,
LivestreamViewerMediaQualityType,
MediaProductionPermissionType,
PresetTypeV2,
RecorderType,
ViewType,
WaitingRoomTypes,
MediaScreenShareQualityType,
MediaVideoQualityType,
PluginAccessControls,
BorderRadius,
BorderWidth,
Theme,
convertHybridPresetToV1,
convertHybridPresetToV2
} from '@dyteinternals/utils';
console.log(getDefaultPresetV2());
License
This project is licensed under the Apache v2.0.
FAQs
A npm package that exports utility function used across services
We found that @dyteinternals/utils demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 07 May 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
/Security News
Identifying and Preventing Fraudulent Engineering Candidates: An Investigation into 80 Confirmed Cases
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.
By Lauren Valencia, Kirill Boychenko - Sep 17, 2025
Application Security
/Research
/Security News
Updated and Ongoing Supply Chain Attack Targets CrowdStrike npm Packages
Socket detected multiple compromised CrowdStrike npm packages, continuing the "Shai-Hulud" supply chain attack that has now impacted nearly 500 packages.
By Kush Pandya, Peter van der Zee, Olivia Brown, Socket Research Team - Sep 16, 2025