Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@featurepeek/peek
Advanced tools
@featurepeek/peek
is an npm package that lets you deploy your static frontends to FeaturePeek. It's a node.js wrapper around our homebrew-distributed Go package, making it easy to use in the JavaScript ecosystem.
FeaturePeek creates supercharged deployment previews of your frontend that you can share (with friends, coworkers, Twitter followers — anyone!) to quickly get feedback on your implementation in progress. A drawer overlay is added on top of your site that makes it easy for your reviewers to take screenshots with annotations, capture screen recordings, leave comments, create tickets on popular bug-tracking platforms, and more. You get this functionality just by deploying to FeaturePeek — no dependencies or code changes needed.
To get started, install from npm:
yarn add @featurepeek/peek --dev
or
npm install @featurepeek/peek --save-dev
Looking to install globally? We recommend installing with homebrew rather than npm install -g
.
yarn peek login
– this will create a FeaturePeek account for you if you don't have one already, and authenticate you in your CLI.yarn peek init
– this generates a configuration file that the CLI uses.The typical usage flow looks like this:
yarn peek
. Your deployment preview will be ready after a few moments.That's all there is to it! After your assets are packaged and uploaded, a shareable URL will be returned.
You can send this URL to anyone to get their feedback on your implementation. They won't need a FeaturePeek account to view your deployment, but they will need to create one to leave comments or file issues in the FeaturePeek drawer overlay. If you'd like your URLs to be private, subscribe to FeaturePeek Teams.
We periodically release new versions of this tool. To upgrade to the latest version available, run yarn upgrade @featurepeek/peek
.
Run into trouble? Have a feature request? Want to contribute? Leave any questions or ideas you may have on the GitHub Issues page.
FeaturePeek Indie is great for sharing single commits on personal projects. For company projects, you'll want to use FeaturePeek Teams:
FAQs
npm package for running peek in the command-line
The npm package @featurepeek/peek receives a total of 4 weekly downloads. As such, @featurepeek/peek popularity was classified as not popular.
We found that @featurepeek/peek demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.