Security News
Introducing the Socket Python SDK
The initial version of the Socket Python SDK is now on PyPI, enabling developers to more easily interact with the Socket REST API in Python projects.
By Douglas Coburn - Sep 13, 2024
@trezor/connect-common
Advanced tools
@trezor/connect-common
Collection of assets and utilities used by @trezor/connect* packages.
files
bridge
Data in releases.json are used to determine which version of Bridge to use depending on the user's operating system.
firmware
Binaries of the latest versions of firmware for each Trezor model are included in this package so that they are available to users of Suite desktop app without connecting to the internet. The process of adding new firmwares is described here. Besides the latest versions, T1 and TT both require a transitory version for upgrading from old firware (intermediary firmware trezor-inter-1.10.0.bin for T1 and version trezor-2.1.1.bin for TT).
There is a releases.json file for each Trezor model which must be updated any time new binaries are added. This file provides data about all available firmware versions and it is used to display them in Suite and to make sure that the correct firmware is downloaded. Read more about releases.json and it's structure here
src
Storage
A utility to remember app permissions given by user.
Publishing
Follow instructions how to publish @trezor package to npm registry.
Keywords
FAQs
Collection of assets and utils used by trezor-connect library.
The npm package @trezor/connect-common receives a total of 37,253 weekly downloads. As such, @trezor/connect-common popularity was classified as popular.
We found that @trezor/connect-common demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 4 open source maintainers collaborating on the project.
Package last updated on 02 Aug 2023
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
The Wildcard Gamble: Understanding the Risks of Floating Dependency Ranges in npm
Floating dependency ranges in npm can introduce instability and security risks into your project by allowing unverified or incompatible versions to be installed automatically, leading to unpredictable behavior and potential conflicts.
By Sarah Gooding - Sep 13, 2024
Security News
New Rust RFC Proposes Adding Support for Trusted Publishing to Crates.io
A new Rust RFC proposes "Trusted Publishing" for Crates.io, introducing short-lived access tokens via OIDC to improve security and reduce risks associated with long-lived API tokens.
By Sarah Gooding - Sep 12, 2024