Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@flowfuse/nr-assistant
Advanced tools
A Node-RED plugin to assist FlowFuse users
npm install @flowfuse/nr-assistant
Client-side portion of the plugin is in index.js
. The server side code is in index.js
This plugin is designed to assist users of the FlowFuse platform by providing tools to aid development of their Node-RED project.
The capabilities it adds to Node-RED can be found in Node-RED editor on the main toolbar and within the function node editor.
{
"flowforge": {
"assistant": {
"enabled": true,
"url": "https://", // URL of the AI service
"token": "", // API token for the AI service
"requestTimeout": 60000 // Timeout value for the AI service request
}
}
}
While in development, the version number of this package will remain at 0.x.y
.
x
will be incremented for breaking changes, y
for new features and patches.
Once plugin and API are stable, the version number will be updated to 1.0.0 and full SemVer rules will be applied.
Apache-2.0
FAQs
FlowFuse Node-RED assistant plugin
The npm package @flowfuse/nr-assistant receives a total of 673 weekly downloads. As such, @flowfuse/nr-assistant popularity was classified as not popular.
We found that @flowfuse/nr-assistant demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.