Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@run1t/npkill
Advanced tools
This tool allows you to list any node_modules directories in your system, as well as the space they take up. You can then select which ones you want to erase to free up space.
This tool allows you to list any node_modules directories in your system, as well as the space they take up. You can then select which ones you want to erase to free up space. Yay!
Clear space: Get rid of old and dusty node_modules cluttering up your machine.
Very fast: NPKILL is written in TypeScript, but searches are performed at a low level, improving performance greatly.
Easy to use: Say goodbye to lengthy commands. Using npkill is as simple as reading a list of your node_modules, and pressing Del to get rid of them. Could it be any easier? ;)
Minified: It barely has any dependencies.
$ npm i -g npkill
Unix users may need to run the command with sudo. Go carefully
$ npkill
By default, npkill will scan for node_modules starting at the path where npkill
command is executed.
Move between the listed folders with ↓ ↑, and use Space to delete the selected folder (v0.2.2 and below the key was Del).
To exit, Q or Ctrl + c if you're brave.
ARGUMENT | DESCRIPTION |
---|---|
-c, --bg-color | Change row highlight color. (Available: blue, cyan, magenta, white, red and yellow) |
-d, --directory | Set the directory from which to begin searching. By default, starting-point is . |
-D, --delete-all | CURRENTLY DISABLED. Automatically delete all node_modules folders that are found. |
-e, --show-errors | Show error messages related to the search if any |
-f, --full | Start searching from the home of the user (example: "/home/user" in linux) |
-gb | Show folders in Gigabytes instead of Megabytes. |
-h, --help, ? | Show this help page and exit |
-nu, --no-check-update | Dont check for updates on startup. |
-v, --version | Show npkill version |
Warning: In future versions some commands may change
npkill -d ~/projects
# other alternative:
cd ~/projects
npkill
npkill -d ~/backups/ -e
If you find any bugs, don't hesitate and open an issue :)
Available soon
MIT © Nya García Gallardo and Juan Torres Gómez
:cat::baby_chick:
FAQs
This tool allows you to list any node_modules directories in your system, as well as the space they take up. You can then select which ones you want to erase to free up space.
The npm package @run1t/npkill receives a total of 0 weekly downloads. As such, @run1t/npkill popularity was classified as not popular.
We found that @run1t/npkill demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.