Research
Malicious fezbox npm Package Steals Browser Passwords from Cookies via Innovative QR Code Steganographic Technique
A malicious package uses a QR code as steganography in an innovative technique.
By Olivia Brown - Sep 22, 2025
@embrace-io/react-navigation
Advanced tools
React Native Embrace - React Navigation
Core Module Required
This module requires React Native Embrace SDK.
Add React Navigation screen tracker
Adding Context to Sessions
Embrace can collect basic session data and crashes as you've already seen in the Crash Reporting and Session Reporting sections. Embrace can also collect the screens that your app opened and include it as context within your sessions. Here's how you add the screen tracker to the session.
Currently we are only supporting the React Navigation SDK, if you are using another library please contact us at support@embrace.io or on Slack if you would like to request support.
Adding the component
Embrace has a separate module for tracking Screens, to use it you will need to add the React Navigation Tracker
Install the component
yarn add @embrace-io/react-navigation
npm install @embrace-io/react-navigation
Adding the component to your code
Add an useRef for the NavigationContainer and pass it to Embrace's hook
import {useRef} from 'react'
import {useEmbraceNavigationTracker} from '@embrace-io/react-navigation';
function App() {
// Create the reference
const navigationRef = useRef();
// Pass the reference to Embrace's Hook
useEmbraceNavigationTracker(navigationRef);
return (
// Assign the NavigationContainer reference value to the useRef created
<NavigationContainer ref={navigationRef}>
<Screens... />
</NavigationContainer>
);
}
Disable Auto Tracking for Native Screens
Embrace automatically collects the native screens, if you do not want to see them in the session you can disable it.
Android:
Go to your embrace-config.json inside android/app/src/main and add the sdk_config, your file should be like this
{
"app_id": "APP_ID",
"api_token": "API_TOKEN",
...
// Add this lines
"sdk_config": {
"view_config": {
"enable_automatic_activity_capture": false
}
}
}
iOS:
Go to your Embrace-info.plist inside ios/YOURAPPNAME and add ENABLE_AUTOMATIC_VIEW_CAPTURE as false, your file should be like this
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>API_KEY</key>
<string>{API_KEY}</string>
<key>CRASH_REPORT_ENABLED</key>
<true/>
<!-- Add this key and the value as false-->
<key>ENABLE_AUTOMATIC_VIEW_CAPTURE</key>
<false/>
</dict>
</plist>
FAQs
Package last updated on 16 Apr 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
/Security News
Identifying and Preventing Fraudulent Engineering Candidates: An Investigation into 80 Confirmed Cases
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.
By Lauren Valencia, Kirill Boychenko - Sep 17, 2025
Application Security
/Research
/Security News
Updated and Ongoing Supply Chain Attack Targets CrowdStrike npm Packages
Socket detected multiple compromised CrowdStrike npm packages, continuing the "Shai-Hulud" supply chain attack that has now impacted nearly 500 packages.
By Kush Pandya, Peter van der Zee, Olivia Brown, Socket Research Team - Sep 16, 2025