
Security News
/Research
Wallet-Draining npm Package Impersonates Nodemailer to Hijack Crypto Transactions
Malicious npm package impersonates Nodemailer and drains wallets by hijacking crypto transactions across multiple blockchains.
@salto-io/salesforce-adapter
Advanced tools
Salesforce adapter for salto.io
Salto supports authenticating with Salesforce using either a combination of user-name, password and token, or using OAuth authentication. In order to use OAuth authentication, please follow the steps below as you will need to create a new "Connected App" in your Salesforce account.
E2E tests need real SFDC credentials to run - a free developer account is good enough.
Add the following environment variables to bash_profile:
export SF_USER='XXXX'
export SF_PASSWORD='XXXX'
export SF_TOKEN='XXXX'
The credentials pool can be used to run the E2E tests concurrently on multiple SFDC accounts.
The pool is used if the SF_
environment variables are not defined. You can also force its use by defining the environment variable USE_CRED_POOL=1
.
The pool uses Amazon DynamoDB, and needs read/write/list permissions for the e2e_permissions
table.
Make sure your AWS credentials are set, e.g, as environment variables:
export AWS_ACCESS_KEY_ID='XXXX'
export AWS_SECRET_ACCESS_KEY='XXXX'
To add your credentials to the pool, use the cred-store
CLI located at the e2e_test
directory of the project:
./e2e_test/cred_store register salesforce 'my-credentials-id' --username='myuser@mydomain.com' --password='MYPASSWORD' --api-token='MYAPITOKEN'
Enter --help
to see other uses for the cred-store
utility - listing, removing and managing sets of credentials.
FAQs
Salto Salesforce adapter
We found that @salto-io/salesforce-adapter demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
/Research
Malicious npm package impersonates Nodemailer and drains wallets by hijacking crypto transactions across multiple blockchains.
Security News
This episode explores the hard problem of reachability analysis, from static analysis limits to handling dynamic languages and massive dependency trees.
Security News
/Research
Malicious Nx npm versions stole secrets and wallet info using AI CLI tools; Socket’s AI scanner detected the supply chain attack and flagged the malware.