Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@tenderly/actions
Advanced tools
Tenderly Web3 Actions are programmable hooks for smart contract and chain events. They can also be serverless backends for your dapps. A Web3 Action is a regular TypeScript/JavaScript function that runs on Tenderly infrastructure.
A Web3 Action comes with key-value storage for data you need to persist and secrets management for sensitive information such as API keys. You can think of Web3 Actions as infrastructure building a Web3 version of IFTTT/Zapier automation, allowing you to glue together your smart contracts, on-chain events, dapp frontends, APIs, and other services.
Based on the trigger rules you define, external on-chain or off-chain events will trigger your Web3 Action and your TypeScript/JavaScript code will handle the event instantly.
With Web3 Actions, you can build systems that let you be timely informed about non-trivial events. This way, you can improve your dapp in terms of UX and interactivity and enhance your project through the depth of information you can collect or share through notifications.
The code Web3 Actions run is called a function. Function must be written in TypeScript/JavaScript and runs in Node runtime. Specification of events that your action listens to is called a trigger.
Follow these guides to quickly get started with building Web3 Actions via the browser or command line tools.
Read our documentation to get started with Tenderly Web3 Actions.
Setting up Web3 Actions requires you to write TypeScript/JavaScript code for your functions. Building your Web3 Actions using Tenderly CLI includes defining triggers in a yaml configuration file. The defined trigger and yaml configuration become an integral part of your project’s codebase.
Tenderly Web3 Actions are currently supported on the following networks.
FAQs
Types for Web3 Actions
The npm package @tenderly/actions receives a total of 527 weekly downloads. As such, @tenderly/actions popularity was classified as not popular.
We found that @tenderly/actions demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.