Research
Security News
Threat Actor Exposes Playbook for Exploiting npm to Build Blockchain-Powered Botnets
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
@smartlook/crash-cli-upload
Advanced tools
Smartlook Crash CLI Upload is CLI tool that allows to upload source map file to S3 bucket using Smartlook REST API.
with NPM
npm install --location=global @smartlook/crash-cli-upload
with Yarn
yarn global add @smartlook/crash-cli-upload
smartlook-crash-cli-upload [command] [options]
Options:
-V, --version output the version number
-h, --help display help for command
Commands:
upload-mapping-file|umf [options]
help [command] display help for command
Aliases:
sccu
smartlook-crash-cli-upload upload-mapping-file
Usage: smartlook-crash-cli-upload upload-mapping-file|umf [options]
Options:
-p --path <value> Path to mapping file to be uploaded - for Apple either path to.xcarchive or single dSYM file. Can be set as ENV variable PATH_TO_MAPING_FILE
-t --token <value> API token to access Smartlook REST API. Can be set as ENV variable API_TOKEN
-b --bundleId <value> BundleId of Application related to uploaded mapping file. Can be set as ENV variable BUNDLE_ID
-pl --platform <value> Platform of Application related to uploaded mapping file. Supported values are `android` and `apple`. Can be set as ENV variable PLATFORM
-av --appVersion <value> Version of Application related to uploaded mapping file. Can be set as ENV variable APP_VERSION
-iv --internalVersion <value> Internal version of Application related to uploaded mapping file. Can be set as ENV variable INTERNAL_VERSION
-h, --help display help for command
Example:
smartlook-crash-cli-upload upload-mapping-file -t apiToken132456 -p mapping-file.txt -b prod -pl android -av 0.0.1 -iv build.1234
FAQs
CLI tool to upload mapping files to S3 bucket.
We found that @smartlook/crash-cli-upload demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 9 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Security News
NVD’s backlog surpasses 20,000 CVEs as analysis slows and NIST announces new system updates to address ongoing delays.
Security News
Research
A malicious npm package disguised as a WhatsApp client is exploiting authentication flows with a remote kill switch to exfiltrate data and destroy files.