
Research
Two Malicious Rust Crates Impersonate Popular Logger to Steal Wallet Keys
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
@tru_id/cli-plugin-dev-server
Advanced tools
Runs a development server from the tru.ID CLI
To install plugins you'll need the tru.ID CLI v0.8.0
or above.
npm install -g @tru_id/cli@canary
You can then install the plugin using:
$ tru plugins:install @tru_id/cli-plugin-dev-server
tru server
Runs a development server from the CLI
USAGE
$ tru server
OPTIONS
-h, --help show CLI help
-p, --port=port [default: 8080] The port the server should listen on
-s, --localtunnel-subdomain=localtunnel-subdomain The subdomain for the local tunnel
-t, --localtunnel Run a localtunnel to expose the server to the Internet
--project-dir=project-dir [default: .] The directory that contains the tru.json Project
configuration file
EXAMPLES
$ tru server
$ tru server -t -p 4000
See code: src/commands/server.ts
Ensure the CHANGELOG.md
is updated:
yarn run changelog
Finesse the contents of CHANGELOG.md
and commit.
Tag the version that is being released with the version of the package and, optionally, the tag to be used in NPM:
git tag v{version}@{tag}
Push the update to the remote.
git push v{version}@{tag}
To release version run:
yarn run publish:latest
To release a canary version only run:
yarn run publish:canary
0.0.8 (2021-06-21)
FAQs
Runs a development server from the tru.ID CLI
We found that @tru_id/cli-plugin-dev-server demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
Research
A malicious package uses a QR code as steganography in an innovative technique.
Research
/Security News
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.