Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@ensdomains/buffer
Advanced tools
[![Build Status](https://travis-ci.com/ensdomains/buffer.svg?branch=master)](https://travis-ci.com/ensdomains/buffer) [![License](https://img.shields.io/badge/License-BSD--2--Clause-blue.svg)](LICENSE)
A library for working with mutable byte buffers in Solidity.
Byte buffers are mutable and expandable, and provide a variety of primitives for writing to them. At any time you can fetch a bytes object containing the current contents of the buffer. The bytes object should not be stored between operations, as it may change due to resizing of the buffer.
These instructions will get you a copy of the project up and running on your local machine for development and testing purposes.
Buffer uses npm to manage dependencies, therefore the installation process is kept simple:
npm install
Buffer uses truffle for its ethereum development environment. All tests can be run using truffle:
truffle test
To run linting, use solium:
solium --dir ./contracts
npm install buffer --save
See also the list of contributors who participated in this project.
This project is licensed under the BSD 2-clause "Simplified" License - see the LICENSE file for details
FAQs
[![Build Status](https://travis-ci.com/ensdomains/buffer.svg?branch=master)](https://travis-ci.com/ensdomains/buffer) [![License](https://img.shields.io/badge/License-BSD--2--Clause-blue.svg)](LICENSE)
The npm package @ensdomains/buffer receives a total of 2,621 weekly downloads. As such, @ensdomains/buffer popularity was classified as popular.
We found that @ensdomains/buffer demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 8 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.