
Research
/Security News
10 npm Typosquatted Packages Deploy Multi-Stage Credential Harvester
Socket researchers found 10 typosquatted npm packages that auto-run on install, show fake CAPTCHAs, fingerprint by IP, and deploy a credential stealer.
@nicodoggie/devctl
Advanced tools
Easily start developing in monorepos with docker-compose, development fork
DevCTL is a CLI app designed to:
DevCTL decreases the onboarding time of new devs in any of our projects at Splitmedialabs. All the new users needs to have installed is docker, docker-compose and NodeJS 8+. Once a project is setup with devctl, its users does not require knowledge of docker.
yarn global add @splitmedialabs/devctl (or npm install -g @splitmedialabs/devctl)Traditional docs are non-existent 😔 instead, they're all in working examples in the examples folder. Don't worry though, they are quite comprehensive! We do, however, have a reference
Clone this repository, and start with examples/example-basic-react-prisma-mysql/readme.md
FAQs
Easily start developing in monorepos with docker-compose, development fork
The npm package @nicodoggie/devctl receives a total of 0 weekly downloads. As such, @nicodoggie/devctl popularity was classified as not popular.
We found that @nicodoggie/devctl demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Research
/Security News
Socket researchers found 10 typosquatted npm packages that auto-run on install, show fake CAPTCHAs, fingerprint by IP, and deploy a credential stealer.

Product
Socket Firewall Enterprise is now available with flexible deployment, configurable policies, and expanded language support.

Security News
Open source dashboard CNAPulse tracks CVE Numbering Authorities’ publishing activity, highlighting trends and transparency across the CVE ecosystem.