
Research
Malicious fezbox npm Package Steals Browser Passwords from Cookies via Innovative QR Code Steganographic Technique
A malicious package uses a QR code as steganography in an innovative technique.
@near-wallet-selector/mintbase-wallet
Advanced tools
This is the Mintbase Wallet package for NEAR Wallet Selector.
The easiest way to use this package is to install it from the NPM registry, this package requires near-api-js
v1.0.0 or above:
# Using Yarn
yarn add near-api-js
# Using NPM.
npm install near-api-js
# Using Yarn
yarn add @near-wallet-selector/mintbase-wallet
# Using NPM.
npm install @near-wallet-selector/mintbase-wallet
Then use it in your dApp:
import { setupWalletSelector } from "@near-wallet-selector/core";
import { setupMintbaseWallet } from "@near-wallet-selector/mintbase-wallet";
const mintbaseWallet = setupMintbaseWallet({
networkId: 'mainnet',
walletUrl: 'https://wallet.mintbase.xyz',
callbackUrl: 'https://www.mywebsite.com',
contractId: "yourcontract.near", //remove if you don't want limited access keys to be generated
deprecated: false,
});
const selector = await setupWalletSelector({
network: "testnet",
modules: [mintbaseWallet],
});
networkId
: (string?
): 'mainnet' or 'testnet' . Defaults to mainnet
.deprecated
: (boolean?
): Deprecated is optional. Default is false
.callbackUrl
: (string?
): Valid url to send your user after txn.walletUrl
: (string?
): wallet url: https://wallet.mintbase.xyz for mainnet and https://testnet.wallet.mintbase.xyz for testnet.contractId
: (string?
): the contract for which the generated limited access key will allow transactions, if you do not need a limited access key do not add this and it wont be created providing quicker onboardingThis repository is distributed under the terms of both the MIT license and the Apache License (Version 2.0).
FAQs
Mintbase wallet package for NEAR Wallet Selector.
We found that @near-wallet-selector/mintbase-wallet demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 8 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
A malicious package uses a QR code as steganography in an innovative technique.
Research
/Security News
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.
Application Security
/Research
/Security News
Socket detected multiple compromised CrowdStrike npm packages, continuing the "Shai-Hulud" supply chain attack that has now impacted nearly 500 packages.