Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@multiversx/sdk-core
Advanced tools
MultiversX SDK for JavaScript and TypeScript (written in TypeScript).
sdk-core
is delivered via npm and it can be installed as follows:
npm install @multiversx/sdk-core
Feel free to skip this section if you are not a contributor.
browserify
and esmify
are required to compile the browser-friendly versions of sdk-core
. They can be installed as follows:
npm install --global browserify
npm install esmify --no-save
This package can make HTTP requests using axios
, which is not bundled by default. If you plan to use the API network provider or Proxy network provider, make sure to install axios
:
npm install axios
This package requires @multiversx/sdk-bls-wasm
for BLS (Boneh-Lynn-Shacham) cryptographic functions, which is not bundled by default. If you plan to use BLS functionality, make sure to install this optional dependency:
npm install @multiversx/sdk-bls-wasm
This package provides mnemonic and seed generation functionality using bip39
, but it is not bundled by default. If you plan to use mnemonic-related features, make sure to install this optional dependency:
npm install bip39
In order to compile the library, run the following:
npm install
npm run compile
npm run compile-browser
In order to run the tests on NodeJS, do as follows:
npm run tests-unit
npm run tests-localnet
npm run tests-devnet
npm run tests-testnet
Before running the tests in the browser, make sure you have the package http-server
installed globally.
npm install --global http-server
In order to run the tests in the browser, do as follows:
make clean && npm run browser-tests
For the localnet
tests, make sure you have a local testnet up & running. In order to start a local testnet, follow this.
FAQs
MultiversX SDK for JavaScript and TypeScript
The npm package @multiversx/sdk-core receives a total of 13,674 weekly downloads. As such, @multiversx/sdk-core popularity was classified as popular.
We found that @multiversx/sdk-core demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.