
Research
/Security News
Critical Vulnerability in NestJS Devtools: Localhost RCE via Sandbox Escape
A flawed sandbox in @nestjs/devtools-integration lets attackers run code on your machine via CSRF, leading to full Remote Code Execution (RCE).
@originjs/cli
Advanced tools
CLI for origin.js.
npm install -g @originjs/cli
or
yarn global add @originjs/cli
Create a Vue3 & Vite
project that support :
Constuct project for development and production.
Supported by @originjs/cli-service
Convert a webpack/vue-cli project to a vite project.
Supported by @originjs/webpack-to-vite.
Upgrade a Vue 2 project to Vue 3.
Supported by @originjs/vue-codemod.
Usage: ori <command> [options]
Options:
-v, --version display version number
-h, --help display help for command
Commands:
init [options] <app-name> init a new project
dev [options] alias of "ori dev" in the current project
build alias of "ori build" in the current project
tovite [options] use vite in the current project
tovue3 [options] use vue-next in the current project
help [command] display help for command
FAQs
Unknown package
The npm package @originjs/cli receives a total of 0 weekly downloads. As such, @originjs/cli popularity was classified as not popular.
We found that @originjs/cli demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 5 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
/Security News
A flawed sandbox in @nestjs/devtools-integration lets attackers run code on your machine via CSRF, leading to full Remote Code Execution (RCE).
Product
Customize license detection with Socket’s new license overlays: gain control, reduce noise, and handle edge cases with precision.
Product
Socket now supports Rust and Cargo, offering package search for all users and experimental SBOM generation for enterprise projects.