Research
wget to Wipeout: Malicious Go Modules Fetch Destructive Payload
Socket's research uncovers three dangerous Go modules that contain obfuscated disk-wiping malware, threatening complete data loss.
By Kush Pandya - May 01, 2025
📅 You're Invited: Meet the Socket team at RSAC (April 28 – May 1).RSVP →
@rushstack/debug-certificate-manager
Advanced tools
@rushstack/debug-certificate-manager
Cross-platform functionality to create debug ssl certificates.
@rushstack/debug-certificate-manager
Installation
npm install @rushstack/debug-certificate-manager --save-dev
Overview
This library contains utilities for managing debug certificates in a development server environment. It provides functions to generate, self-sign, trust, and untrust .pem certificates for both Windows and Mac OS. It will also generate self-signed certificates on other OS's, but the user must manually trust and untrust them.
CertificateStore
The CertificateStore class provides accessors and mutators for the debug certificate data stored in .rushstack.
Retrive certificate data from the store:
const certificateStore: CertificateStore = new CertificateStore();
return {
pemCertificate: certificateStore.certificateData,
pemKey: certificateStore.keyData
};
Set data using the same property names certificateData: string | undefined and keyData: string | undefined.
ensureCertificate
Get a development certificate from the store, or optionally, generate a new one and trust it if one does not exist in the store. Returns a certificate object following the ICertificate interface.
export interface ICertificate {
pemCertificate: string | undefined;
pemKey: string | undefined;
}
untrustCertificate
Attempts to locate a previously generated debug certificate and untrust it. Returns a boolean value to denote success.
Links
- CHANGELOG.md - Find out what's new in the latest version
- API Reference
@rushstack/debug-certificate-manager is part of the Rush Stack family of projects.
FAQs
Cross-platform functionality to create debug ssl certificates.
The npm package @rushstack/debug-certificate-manager receives a total of 15,741 weekly downloads. As such, @rushstack/debug-certificate-manager popularity was classified as popular.
We found that @rushstack/debug-certificate-manager demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 3 open source maintainers collaborating on the project.
Package last updated on 01 May 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Using Trusted Protocols Against You: Gmail as a C2 Mechanism
Socket uncovers malicious packages on PyPI using Gmail's SMTP protocol for command and control (C2) to exfiltrate data and execute commands.
By Olivia Brown - Apr 30, 2025
Product
A New Overview in our Dashboard
We redesigned Socket's first logged-in page to display rich and insightful visualizations about your repositories protected against supply chain threats.
By André Staltz - Apr 29, 2025