Security News
Another Round of TEA Protocol Spam Floods npm, But It’s Not a Worm
Recent coverage mislabels the latest TEA protocol spam as a worm. Here’s what’s actually happening.
By Philipp Burckhardt - Nov 14, 2025
@twilio-labs/plugin-assets
Advanced tools
@twilio-labs/plugin-assets
Plugin for the Twilio CLI to easily upload assets to a Twilio Assets service. Part of the Serverless Toolkit
This plugin adds functionality to the Twilio CLI to upload and manage assets to a Twilio Assets service. It's a part of the Serverless Toolkit and uses the Serverless API.
The plugin creates a new Runtime Service which it then uses as a bucket to which it upload assets. You can upload new files or list your available assets.
For more information see the blog post announcing the the Assets Plugin and an example of how to upload audio files for your Studio IVR with the Assets Plugin.
Important: This version requires Twilio CLI version 3.0 or newer. For Twilio CLI version 2.x you have to use plugin-assets version 1.2.6.
Requirements
Install the Twilio CLI
Via npm or yarn:
$ npm install -g twilio-cli
$ yarn global add twilio-cli
Via homebrew:
$ brew tap twilio/brew && brew install twilio
Usage
$ twilio plugins:install @twilio-labs/plugin-assets
$ twilio --help assets
USAGE
$ twilio assets
...
Commands
twilio assets:init
Create a new assets service to use as a bucket
USAGE
$ twilio assets:init [-l (debug|info|warn|error|none)] [-o (columns|json|tsv|none)] [--silent] [-p <value>]
[--service-name <value>] [--properties <value>]
FLAGS
-l=(debug|info|warn|error|none) [default: info] Level of logging messages.
-o=(columns|json|tsv|none) [default: columns] Format of command output.
-p, --profile=<value> Shorthand identifier for your profile.
--properties=<value> [default: service_sid, sid, domain_name] The asset service environment properties you
would like to display (JSON output always shows all properties).
--service-name=<value> A unique name for your asset service. May only contain alphanumeric characters and
hyphens.
--silent Suppress output and logs. This is a shorthand for "-l none -o none".
DESCRIPTION
Create a new assets service to use as a bucket
See code: src/commands/assets/init.js
twilio assets:list
List all the assets in the service
USAGE
$ twilio assets:list [-l (debug|info|warn|error|none)] [-o (columns|json|tsv|none)] [--silent] [-p <value>]
[--properties <value>]
FLAGS
-l=(debug|info|warn|error|none) [default: info] Level of logging messages.
-o=(columns|json|tsv|none) [default: columns] Format of command output.
-p, --profile=<value> Shorthand identifier for your profile.
--properties=<value> [default: sid, path, url, visibility] The asset properties you would like to display
(JSON output always shows all properties).
--silent Suppress output and logs. This is a shorthand for "-l none -o none".
DESCRIPTION
List all the assets in the service
See code: src/commands/assets/list.js
twilio assets:upload FILE
Upload a new asset to the Assets service
USAGE
$ twilio assets:upload FILE [-l (debug|info|warn|error|none)] [-o (columns|json|tsv|none)] [--silent] [-p
<value>] [--protected] [--properties <value>]
ARGUMENTS
FILE The path to the file you want to upload
FLAGS
-l=(debug|info|warn|error|none) [default: info] Level of logging messages.
-o=(columns|json|tsv|none) [default: columns] Format of command output.
-p, --profile=<value> Shorthand identifier for your profile.
--properties=<value> [default: sid, path, url, visibility] The asset properties you would like to display
(JSON output always shows all properties).
--protected Sets the uploaded asset's visibility to 'protected'
--silent Suppress output and logs. This is a shorthand for "-l none -o none".
DESCRIPTION
Upload a new asset to the Assets service
See code: src/commands/assets/upload.js
Contributing
This project welcomes contributions from the community. Please see the CONTRIBUTING.md file for more details.
Code of Conduct
Please be aware that this project has a Code of Conduct. The tldr; is to just be excellent to each other ❤️
License
MIT
FAQs
Easily upload assets to a Twilio Assets service
The npm package @twilio-labs/plugin-assets receives a total of 14 weekly downloads. As such, @twilio-labs/plugin-assets popularity was classified as not popular.
We found that @twilio-labs/plugin-assets demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Package last updated on 16 Dec 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
PyPI Expands Trusted Publishing to GitLab Self-Managed as Adoption Passes 25 Percent
PyPI adds Trusted Publishing support for GitLab Self-Managed as adoption reaches 25% of uploads
By Sarah Gooding - Nov 14, 2025
Research
/Security News
Malicious Chrome Extension Exfiltrates Seed Phrases, Enabling Wallet Takeover
A malicious Chrome extension posing as an Ethereum wallet steals seed phrases by encoding them into Sui transactions, enabling full wallet takeover.
By Kirill Boychenko - Nov 12, 2025