Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@prisma/prisma-fmt-wasm
Advanced tools
The WASM package for prisma-fmt
This directory only contains build logic to package the prisma-fmt
engine
into a Node package as a WASM module. All the functionality is implemented in
other parts of prisma-engines.
The published NPM package is internal to Prisma. Its API will break without prior warning.
node -e "const prismaFmt = require('@prisma/prisma-fmt-wasm'); console.log(prismaFmt.version())"
rustup
, cargo install
and apt
, with underspecified system dependencies and best-effort version pinning.When implementing features for language-tools
in prisma-engines
, to sync with your local dev environment for the language-server
, one can do the following:
# Install the latest Rust version with `rustup`
# or update the latest Rust version with `rustup`
rustup update
rustup target add wasm32-unknown-unknown
cargo update -p wasm-bindgen
# Check the version defined in `prisma-fmt-wasm/cargo.toml` for `wasm-bindgen` and replace `version` below:
cargo install -f wasm-bindgen-cli@version
./prisma-fmt-wasm/scripts/update-fmt-wasm.sh
This script has the following expectations:
language-tools
is in the same dir as prisma-engines
dir/{prisma-engines,language-tools}
prisma-engines
root folderFAQs
The WASM package for prisma-fmt
The npm package @prisma/prisma-fmt-wasm receives a total of 201,531 weekly downloads. As such, @prisma/prisma-fmt-wasm popularity was classified as popular.
We found that @prisma/prisma-fmt-wasm demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.