Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@ubnt/uisp-connector
Advanced tools
WebSocket client for UniFi consoles and UISP communication
A typescript light weight WebSocket connector for interaction with UISP
The main function is located in src/index.js
, called by the device with following arguments, further
in detail described in src/types.d.ts
:
Is a unique string identifying a single device
A function injected to the UISP-Connector returning a promise with device data as per UniFiNetworkStatusV2
specification.
Custom logger is an object containing at least three functions: error(args), info(args), debug(args).
Use of custom logger is optional. If one is not injected to UISP-Connector, an inner implementation
will be used as fallback.
A function injected to UISP-Connector is used to persist a device specific AES key and UISP WS url when
one is retrieved from UISP upon handshake of otherwise during connection, it may be of a string
or undefined
type, undefined
to be used to disconnect UISP-Connector from UISP.
If UISP-Connector is disconnected, its device specific AES key is deleted and UISP-Connector finishes its
function. In case the device is to connect again to UISP, the UISP-Connector must be called once again
with master AES key and exchange for a device specific AES key must take place once again.
A function injected do UISP-Connector is used to retrieve a persisted device specific aes key and UISP WS url,
undefined
to be returned if there is none.
FAQs
WebSocket client for UniFi consoles and UISP communication
We found that @ubnt/uisp-connector demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 207 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.