Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@magic.batua/messaging
Advanced tools
The Messaging modules powers the text messaging features of the Magic Batua platform.
Handles all the messaging needs of the Magic Batua platform.
Clone the repository to your computer.
Add a file named .env
at the root of the project. This should be a YAML file and have the
following environment variables:
SMS_Password
: Pinnacle account passwordSMS_SenderID
: Pinnacle account Sender ID. Is "DEMOOO" at the time of writing.SMS_Password
: Pinnacle account usernameOpen Terminal (Command Prompt on Windows), cd
to the project folder and type npm install
.
This would install all the NPM dependencies for this project, and transpile the Typescript
code to JavaScript. Don't close the Terminal window.
Next, type the following in the Terminal window: npm test
. This would run all the unit test
that I've written for this particular module. If all tests pass, you've got a fully working
Account
module in front you.
To get a sense of the code structure, I'd recommend consulting the Code Manual
. Code Manual
is a local site that gets generated from the documentation comments I've left in the source code.
To generate Code Manual
on your computer, open the Terminal, cd
to the project root and run
npm run code-manual
.
You should now have a Code Manual
folder at your project root. Open the index.html
file in
the folder in your favourite browser and enjoy the ride.
Make sure you commit any changes made to the source code at regular intervals, and sync the changes
back to the Bitbucket origin
repository.
For queries, you can write to Animesh at hello@animesh.ltd. Make sure you have read this before firing off a bug report.
FAQs
The Messaging modules powers the text messaging features of the Magic Batua platform.
We found that @magic.batua/messaging demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.