Research
Two Malicious Rust Crates Impersonate Popular Logger to Steal Wallet Keys
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
By Kirill Boychenko - Sep 24, 2025
@rhoas/service-accounts-sdk
Advanced tools
Service Accounts SDK
RHOAS Service Accounts TypeScript SDK.
Service accounts are a special type of non-human privileged account used to execute applications and run automated services. Service accounts typically will allow you to connect to the services from your applications.
NOTE: Creation of the service account doesn't automatically gives developers priviledge to use it with the service. Please refer to individual service API to see how to add permissions. For example for kafka-instance-sdk check "access-management" APIs.
Getting Started
Install Package
npm install @rhoas/service-accounts-sdk --save
Usage
import { Configuration, DefaultApi} from "@rhoas/service-accounts-sdk";
const accessToken = process.env.CLOUD_API_TOKEN;
const basePath = "https://sso.redhat.com/auth/realms/redhat-external/";
const apiConfig = new Configuration({
accessToken,
basePath,
});
const serviceAccountAPI = new ServiceAccountsApi(apiConfig)
serviceAccountAPI.getServiceAccounts().then((data) => {
console.log(data?.data)
}).catch((err) => {
console.error(err.message)
})
See ./examples for full example
Security
API is using https://sso.redhat.com for OAuth Authentication. Provided token needs to be AccessToken returned from library like keycloak.js
FAQs
RHOAS Service Accounts SDK
The npm package @rhoas/service-accounts-sdk receives a total of 6 weekly downloads. As such, @rhoas/service-accounts-sdk popularity was classified as not popular.
We found that @rhoas/service-accounts-sdk demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 5 open source maintainers collaborating on the project.
Package last updated on 11 Apr 2023
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Malicious fezbox npm Package Steals Browser Passwords from Cookies via Innovative QR Code Steganographic Technique
A malicious package uses a QR code as steganography in an innovative technique.
By Olivia Brown - Sep 22, 2025
Research
/Security News
Identifying and Preventing Fraudulent Engineering Candidates: An Investigation into 80 Confirmed Cases
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.
By Lauren Valencia, Kirill Boychenko - Sep 17, 2025