Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@karhu/core
Advanced tools
@karhu/core
Karhu is a productivity tool for web applications. This package has the core functionality as the command register and entry graph to adapt command listing to users habits and learn over time.
npm install @karhu/core
import Karhu from '@karhu/core';
const karhu = new Karhu();
Karhu
karhu.addCommand
Adds a command to the current Karhu instance.
karhu.addCommand(command: UnregisteredCommand): Command
karhu.removeCommand
Removes a command from teh current Karhu instance.
karhu.removeCommand(commandId: string): void
karhu.findMatchingCommands
Searches through the existing commands keywords and the current entry graph to find commands that matches the provided input, and returns them.
karhu.findMatchingCommands(input?: string): Command[]
karhu.runCommand
Call the command with the provided id's .actions.onExec()
function.
Returns the updated entry graph.
The input is needed to better sort the commands next time karhu.findMatchingCommands()
is called.
Note: Even though this method is synchronous, the .onExec()
function is not being called synchronously. It's bering called using setTimeout(fn, 0)
to not block further executing.
karhu.runCommand(id: string, input: string): EntryGraph
karhu.getCommands
Returns a list of all registered commands for the Karhu instance.
karhu.getCommands(): Command[]
karhu.getEntryGraph
Returns the current Entry Graph for the Karhu instance.
karhu.getEntryGraph(): EntryGraph
karhu.replaceEntryGraph
Overwrites the the current Entry Graph for the Karhu instance with the new one.
karhu.replaceEntryGraph(entryGraph: EntryGraph): void
Karhu.createCommand
Makes an UnregisteredCommand
-> Command
. Mostly used internally but can be useful in
some situations.
Karhu.createCommand (command: UnregisteredCommand): Command
FAQs
Core package for Karhu, the lib for powering web app productivity tools
The npm package @karhu/core receives a total of 6 weekly downloads. As such, @karhu/core popularity was classified as not popular.
We found that @karhu/core demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.