Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@lbu/store
Advanced tools
Collection of Lightbase backend utilities
Here at lightbase we had a constantly growing boilerplate for new projects. To facilitate our needs more and to stop copying and pasting things around this project was born. This project is for now tailored at monolithic projects.
@lbu/cli:
@lbu/lint-config:
@lbu/insight:
@lbu/stdlib:
mainFn
wrapper that reads .env
and calls the provided function if the
file is the process entrypoint__dirname
and __filename
@lbu/server:
@lbu/store:
@lbu/code-gen:
See the website for the changelog, all available APIs and various guides.
For contributing see contributing.md.
New features added should fall under the following categories:
lbu docker
commands or various utilities provided by
@lbu/stdlibAlthough some parts heavily rely on conventions set by the packages, we currently aim not to be a framework. We aim to provide a good developer experience, useful abstractions around the basics, and a stable backend <-> client interface.
FAQs
Postgres & S3-compatible wrappers for common things
The npm package @lbu/store receives a total of 196 weekly downloads. As such, @lbu/store popularity was classified as not popular.
We found that @lbu/store demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.