Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
@opentelemetry/instrumentation-knex
Advanced tools
OpenTelemetry instrumentation for `knex` database SQL query builder
This module provides automatic instrumentation for the knex
module, which may be loaded using the @opentelemetry/sdk-trace-node
package and is included in the @opentelemetry/auto-instrumentations-node
bundle. This module allows the user to automatically collect trace data and export them to their backend of choice.
If total installation size is not constrained, it is recommended to use the @opentelemetry/auto-instrumentations-node
bundle with @opentelemetry/sdk-node for the most seamless instrumentation experience.
Compatible with OpenTelemetry JS API and SDK 1.0+
.
npm install --save @opentelemetry/instrumentation-knex
knex
versions >=0.10.0 <4
const { KnexInstrumentation } = require('@opentelemetry/instrumentation-knex');
const { ConsoleSpanExporter, SimpleSpanProcessor } = require('@opentelemetry/sdk-trace-base');
const { NodeTracerProvider } = require('@opentelemetry/sdk-trace-node');
const { registerInstrumentations } = require('@opentelemetry/instrumentation');
const provider = new NodeTracerProvider();
provider.addSpanProcessor(new SimpleSpanProcessor(new ConsoleSpanExporter()));
provider.register();
registerInstrumentations({
instrumentations: [
new KnexInstrumentation({
maxQueryLength: 100,
})
],
tracerProvider: provider,
});
Options | Type | Example | Description |
---|---|---|---|
maxQueryLength | number | 100 | Truncate db.statement attribute to a maximum length. If the statement is truncated '..' is added to it's end. Default 1022 . -1 leaves db.statement untouched. |
requireParentSpan | boolean | false | Don't create spans unless they are part of an existing trace. Default is false . |
This package uses @opentelemetry/semantic-conventions
version 1.22+
, which implements Semantic Convention Version 1.7.0
Attributes collected:
Attribute | Short Description |
---|---|
db.name | This attribute is used to report the name of the database being accessed. |
db.operation | The name of the operation being executed. |
db.sql.table | The name of the primary table that the operation is acting upon. |
db.statement | The database statement being executed. |
db.system | An identifier for the database management system (DBMS) product being used. |
db.user | Username for accessing the database. |
net.peer.name | Remote hostname or similar. |
net.peer.port | Remote port number. |
net.transport | Transport protocol used. |
Apache 2.0 - See LICENSE for more information.
FAQs
OpenTelemetry instrumentation for `knex` database SQL query builder
The npm package @opentelemetry/instrumentation-knex receives a total of 1,122,226 weekly downloads. As such, @opentelemetry/instrumentation-knex popularity was classified as popular.
We found that @opentelemetry/instrumentation-knex demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.