Research
Two Malicious Rust Crates Impersonate Popular Logger to Steal Wallet Keys
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
By Kirill Boychenko - Sep 24, 2025
@rmrk-team/evm-contracts
Advanced tools
@rmrk-team/evm-contracts
A set of Solidity smart contracts implementing [RMRK](https://rmrk.app) modular NFTs and compatible extensions for them.
RMRK EVM Package
A set of Solidity smart contracts implementing RMRK modular NFTs and compatible extensions for them.
Smart contracts documentation as well as usage instructions and tutorials can be found in the RMRK EVM developer documentation
Usage
To use the RMRK legos and smart contracts contained in this repository, simply add them to your project:
yarn add @rmrk-team/evm-contracts
or
npm -i @rmrk-team/evm-contracts
Once the dependency is added to your project, simply import the smart contracts you wish to utilize into your own smart contract.
RMRK Legos
RMRK is a set of NFT standards that compose several NFT module primitives. Putting these modules together allows a user to create NFT systems of arbitrary complexity. So far we have created 6 modules as ERC proposals, all of which are ERC721 compatible. The first 5 are already standards, the 6th is still in Draft.
- MultiAsset: ERC-5773: Context-Dependent Multi-Asset Tokens
- Nestable: ERC-7401: Parent-Governed Non-Fungible Tokens Nesting
- Composable & Equippable: ERC-6220: Composable NFTs utilizing Equippable Parts
- Soulbound: ERC-6454: Minimal Transferable NFT detection interface
- Emotable: ERC-7409: Public Non-Fungible Tokens Emote Repository
- Dynamic Attributes: ERC-7508: Dynamic On-Chain Token Attributes Repository
- ERC20-Holder: ERC-7590: ERC-20 Holder Extension for NFTs
FAQs
A set of Solidity smart contracts implementing [RMRK](https://rmrk.app) modular NFTs and compatible extensions for them.
We found that @rmrk-team/evm-contracts demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 3 open source maintainers collaborating on the project.
Package last updated on 17 Jun 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Malicious fezbox npm Package Steals Browser Passwords from Cookies via Innovative QR Code Steganographic Technique
A malicious package uses a QR code as steganography in an innovative technique.
By Olivia Brown - Sep 22, 2025
Research
/Security News
Identifying and Preventing Fraudulent Engineering Candidates: An Investigation into 80 Confirmed Cases
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.
By Lauren Valencia, Kirill Boychenko - Sep 17, 2025