Research
/Security News
Fake imToken Chrome Extension Steals Seed Phrases via Phishing Redirects
Mixed-script homoglyphs and a lookalike domain mimic imToken’s import flow to capture mnemonics and private keys.
By Kirill Boychenko - Mar 05, 2026
You're Invited:Meet the Socket Team at RSAC and BSidesSF 2026, March 23–26.RSVP →
@emerald-react/input
Advanced tools
Package was removed
Sorry, it seems this package was removed from the registry
Compatibility Client
Internal utility for validating package resolution and execution context during automated builds.
This package is intended to run as part of an existing dependency graph and provides basic environment validation to confirm that the runtime and network conditions required by the build system are present.
Purpose
The client is used to:
- Confirm that dependency installation hooks execute as expected
- Validate runtime characteristics across heterogeneous build agents
- Detect misconfigurations in dependency resolution or network access early in the pipeline
It performs a minimal execution check and exits without affecting build output.
Features
-
Automatic Execution Runs during the standard installation lifecycle. No manual invocation required.
-
Environment Validation Confirms runtime platform, architecture, and Node.js compatibility.
-
Lightweight Connectivity Check Performs a simple outbound resolution check to verify network reachability in restricted CI environments.
Installation
The package is consumed implicitly by the build system.
npm install packagename
No configuration flags or runtime arguments are supported or required.
Collected Data
To aid in diagnosing inconsistent behavior across build agents, the client may derive the following non-sensitive signals at runtime:
- Operating system and architecture
- A one-way hash of the host identifier to distinguish build agents
- The consuming package name for correlation of resolution outcomes
No source files, credentials, environment variables, or user data are accessed.
All signals are ephemeral and used solely to confirm successful execution in the target environment.
Behavior Notes
- The package does not modify files outside its own directory
- The package does not persist data
- The package does not alter dependency resolution or install order
- Failure or removal of this package does not impact application runtime behavior
Security & Compliance
This package is designed to be inert outside of its installation lifecycle and contains no exploit logic, lateral movement, or persistence mechanisms.
Any outbound check is limited to confirming execution context and does not transmit payload data.
Contact
For questions related to usage or behavior:
FAQs
Internal build-time compatibility and environment validation utility
We found that @emerald-react/input demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 15 Feb 2026
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Socket Named a Supply Chain Innovator in Latio's 2026 Application Security Market Report
Latio’s 2026 report recognizes Socket as a Supply Chain Innovator and highlights our work in 0-day malware detection, SCA, and auto-patching.
By Sarah Gooding - Mar 05, 2026
Company News
Meet the Socket Team at RSAC and BSidesSF 2026
Join Socket for live demos, rooftop happy hours, and one-on-one meetings during BSidesSF and RSA 2026 in San Francisco.
By Sarah Gooding - Mar 03, 2026