Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@koopjs/cli
Advanced tools
An easy-to-use CLI tool to quickly build Koop applications and plugins
Use npm
npm install -g @koopjs/cli
Use yarn
yarn global add @koopjs/cli
Once installed the koop
command is available at the console.
Create a new Koop application with the name my-koop-app
# create a project folder and initialize it
koop new app my-koop-app
# cd in the folder
cd my-koop-app
Add a provider @koopjs/filesystem-s3 from npm
# install the provider and register it to the koop app
koop add provider @koopjs/filesystem-s3
Add a custom provider that connects to a local database
# add boilerplate provider files at src/providers/local-db and register it to
# the koop app (though you still need to implement the provider)
koop add provider providers/local-db --local
Test out your work
# run the koop server
koop serve
koop <command>
Commands:
koop new <type> <name> create a new koop project
koop add <type> <name> add a new plugin to the current app
koop remove <name> remove an existing plugin from the current app
koop list [type] list plugins added to the current app
koop test run tests in the current project
koop serve [path] run a Koop server for the current project
koop validate validte the current plugin
Options:
--quiet supress all console messages except errors
[boolean] [default: false]
Each command comes with the corresponding node.js API and this CLI can be used as a library. For detail information, please read the command documentations.
FAQs
CLI tool to build Koop projects
The npm package @koopjs/cli receives a total of 199 weekly downloads. As such, @koopjs/cli popularity was classified as not popular.
We found that @koopjs/cli demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 7 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.