Research
Two Malicious Rust Crates Impersonate Popular Logger to Steal Wallet Keys
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
By Kirill Boychenko - Sep 24, 2025
@janeirodigital/interop-application
Advanced tools
@janeirodigital/interop-application
Top-level module for applications confirming to Solid Application Interoperability specification
Application
Early access
Specifications this library implements are still a work in progress. While we track changes to the public API of this library with semver, the underlying data will be slightly changing for the rest of 2021. We are commited to keep this implementation up to date. If you plan to use your application in production please ask the specification editors on the public chatroom about the stability of the data model.
Example
import { DatasetCore } from '@rdfjs/types';
import { Application } from '@janeirodigital/interop-application';
import { DataInstance } from '@janeirodigital/interop-data-model';
import { Session } from '@inrupt/solid-client-authn-node';
import { randomUUID } from 'crypto';
import { Store } from 'n3';
class Custom {
localDataset: DatasetCore;
constructor(private dataInstance: DataInstance) {
this.localDataset = new Store([...dataInstance.dataset]);
}
delete(): Promise<void> {
return this.dataInstance.delete();
}
update(): Promise<void> {
return this.dataInstance.update(this.localDataset);
}
get dataset(): DatasetCore {
return this.dataInstance.dataset;
}
set name(name: string): void {
// manipulate this.localDataset to change project name
}
}
class Project extends Custom {
static shapeTree = 'https://solidshapes.example/trees/Project';
}
class Task extends Custom {
static shapeTree = 'https://solidshapes.example/trees/Task';
}
(async function () {
// authentication is handled by separate library
// for example https://docs.inrupt.com/developer-tools/javascript/client-libraries/authentication/
const session = new Session();
await session.login({
/* options */
});
// For simplicity we ommit handing redirect to user's Solid-OIDC Provider
// Following lines assume session.info.isLoggedIn === true
// IRI used as client_id of the application, see: https://solidproject.org/TR/oidc#clientids-document
const applicationID = 'https://projectron.example/';
// create new application
// fetch needs to take care of authentication
const application = await Application.build(session.info.webId, applicationId, { fetch: session.fetch, randomUUID });
// if application wasn't authorized it needs to be redirected to user's authorization agent
if (!application.hasApplicationRegistration) {
window.location.href = application.authorizationRedirectUri;
}
// application provides list of all data owners
// we can find one matching currently logged in user
const user = application.dataOwners.find((agent) => agent.iri === session.info.webId);
const projects = [];
// agent has one or more data registrations
for (const registration of user.selectRegistrations(Project.shapeTree)) {
// registration provides async iterator of Data Instances from that data registration
for await (const dataInstance of registration.dataInstances) {
// data instance will provide RDFJS DatasetCore with all the data
// one can create app specific instances
projects.push(new Project(dataInstance));
}
}
// DataInstance#delete
const projectToDelete = projects.find(/* logic */);
try {
await projectToDelete.delete();
} catch (e) {
// handle error
}
// DataInstance#update
const projectToUpdate = projects.find(/* logic */);
projectToUpdate.name = 'Very very important thing';
try {
await projectToUpdate.update();
} catch (e) {
// handle error
}
// DataRegistrationProxy#newDataInstance
const registration = user.selectRegistrations(Project.shapeTree).find(/* logic */);
const newProject = new Project(registration.newDataInstance());
newProject.name = 'Another thing';
try {
await newProject.update();
} catch (e) {
// handle error
}
// for inherited grants DataRegistrationProxy#newDataInstance parent data instance is required
// for that reason also data instance acting as parent provides convienience method
const projectToCreateTaskIn = projects.find(/* logic */);
const newTask = new Task(projectToCreateTaskIn.newChildDataInstance(Task.shapeTree));
newTask.name = 'some task';
try {
await newTask.update();
} catch (e) {
// handle error
}
})();
Funding
This project is funded through the NGI Zero Entrust Fund, a fund established by NLnet with financial support from the European Commission's Next Generation Internet program. Learn more at the NLnet project page.
FAQs
Top-level module for applications confirming to Solid Application Interoperability specification
We found that @janeirodigital/interop-application demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 5 open source maintainers collaborating on the project.
Package last updated on 18 Mar 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Malicious fezbox npm Package Steals Browser Passwords from Cookies via Innovative QR Code Steganographic Technique
A malicious package uses a QR code as steganography in an innovative technique.
By Olivia Brown - Sep 22, 2025
Research
/Security News
Identifying and Preventing Fraudulent Engineering Candidates: An Investigation into 80 Confirmed Cases
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.
By Lauren Valencia, Kirill Boychenko - Sep 17, 2025