Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@electric-sql/next
Advanced tools
Postgres sync for modern apps.
Electric provides an HTTP interface to Postgres to enable massive number of clients to query and get real-time updates to data in "shapes" i.e. subsets of the database. Electric turns Postgres into a real-time database.
The TypeScript client helps ease reading shapes over the API in the browser and in server JavaScript applications.
The TypeScript client supports both fine-grained and coarse-grained reactivity patterns. You can subscribe to see every row that changes or just to when the shape as a whole changes.
npm i @electricsql/next
The client exports a ShapeStream
class for getting updates to shapes on a row-by-row basis as well as a Shape
class for getting updates to the entire shape.
ShapeStream
import { ShapeStream } from "electric-sql"
// passes subscribers rows as they're inserted, updated, or deleted
const fooShapeStream = new ShapeStream({
shape: { table: `foo` },
baseUrl: `${BASE_URL}`,
})
fooShapeStream.subscribe(messages => {
// messages is 1 or more row updates
})
Shape
import { ShapeStream, Shape } from "electric-sql"
const shapeStream = new ShapeStream({ shape: { table: `foo` }, baseUrl: 'http://localhost:3000' })
const shape = new Shape(shapeStream)
// Returns promise that resolves with the latest shape data once it's fully loaded
await shape.value
// passes subscribers shape data when the shape updates
shape.subscribe(shapeData => {
// shapeData is a Map of the latest value of each row in a shape.
}
FAQs
Postgres everywhere - your data, in sync, wherever you need it.
The npm package @electric-sql/next receives a total of 0 weekly downloads. As such, @electric-sql/next popularity was classified as not popular.
We found that @electric-sql/next demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.