
Security News
Package Maintainers Call for Improvements to GitHub’s New npm Security Plan
Maintainers back GitHub’s npm security overhaul but raise concerns about CI/CD workflows, enterprise support, and token management.
@nearform/flame
Advanced tools
Programmable interface to Clinic.js Flame. Learn more about Clinic.js: https://clinicjs.org/
const ClinicFlame = require('@nearform/flame')
const flame = new ClinicFlame()
flame.collect(['node', './path-to-script.js'], function (err, filepath) {
if (err) throw err
flame.visualize(filepath, filepath + '.html', function (err) {
if (err) throw err
})
})
const ClinicFlame = require('@nearform/flame')
const flame = new ClinicFlame()
<Object>
flame.collect(args, callback)
Starts a process by using 0x
0x will produce a file in the current working directory, with the process PID in its filename. The filepath relative to the current working directory will be the value in the callback.
stdout
, stderr
, and stdin
will be relayed to the calling process. As will
the SIGINT
event.
flame.visualize(dataFilename, outputFilename, callback)
Will consume the datafile specified by dataFilename
, this datafile will be
produced by the sampler using flame.collect
.
flame.visualize
will then output a standalone HTML file to outputFilename
.
When completed the callback
will be called with no extra arguments, except a
possible error.
FAQs
Programmable interface to Clinic.js Flame
The npm package @nearform/flame receives a total of 5,649 weekly downloads. As such, @nearform/flame popularity was classified as popular.
We found that @nearform/flame demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 6 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Maintainers back GitHub’s npm security overhaul but raise concerns about CI/CD workflows, enterprise support, and token management.
Product
Socket Firewall is a free tool that blocks malicious packages at install time, giving developers proactive protection against rising supply chain attacks.
Research
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.