Research
Two Malicious Rust Crates Impersonate Popular Logger to Steal Wallet Keys
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
By Kirill Boychenko - Sep 24, 2025
@venusprotocol/solidity-utilities
Advanced tools
Development
Prerequisites
-
NodeJS - 18.x
-
Solc - v0.8.13 (https://github.com/ethereum/solidity/releases/tag/v0.8.13)
Installing
yarn install
Linting and code formatting
Linting is done using eslint for typescript and solhint for solidity. Prettier is used to format solidity and typescript files.
To check linting and formatting on all files run:
$ yarn lint
Linting command can be run with the fix flag to fix eligible errors automatically
$ yarn lint:sol --fix
$ yarn lint:ts --fix
To pretty all files run:
$ yarn prettier
Run Tests
npx hardhat test
- To run fork tests add FORK_MAINNET=true PRIVATE_KEY and QUICK_NODE_KEY in the .env file.
Releases and Versioning
Releases are automatically managed using semantic-release and commit messages.
Deployment
npx hardhat deploy
- This command will execute all the deployment scripts in
./deploydirectory - The default network will be
hardhat - Deployment to another network: - Make sure the desired network is configured in
hardhat.config.ts- AddPRIVATE_KEYvariable in.envfile - Execute deploy command by adding--network <network_name>in the deploy command above - E.g.npx hardhat deploy --network bsctestnet - Execution of single or custom set of scripts is possible, if:
- In the deployment scripts you have added
tagsfor example: -func.tags = ["MockTokens"]; - Once this is done, adding
--tags "<tag_name>,<tag_name>..."to the deployment command will execute only the scripts containing the tags.
- In the deployment scripts you have added
Verify Contracts
npx hardhat etherscan-verify --network <network-name>
Hardhat Commands
npx hardhat accounts
npx hardhat compile
npx hardhat clean
npx hardhat test
npx hardhat node
npx hardhat help
REPORT_GAS=true npx hardhat test
npx hardhat coverage
TS_NODE_FILES=true npx ts-node scripts/deploy.ts
npx eslint '**/*.{js,ts}'
npx eslint '**/*.{js,ts}' --fix
npx prettier '**/*.{json,sol,md}' --check
npx prettier '**/*.{json,sol,md}' --write
npx solhint 'contracts/**/*.sol'
npx solhint 'contracts/**/*.sol' --fix
Documentation
Documentation is autogenerated using solidity-docgen.
They can be generated by running yarn docgen
FAQs
Solidity code used by other Venus projects
We found that @venusprotocol/solidity-utilities demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 5 open source maintainers collaborating on the project.
Package last updated on 17 Apr 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Malicious fezbox npm Package Steals Browser Passwords from Cookies via Innovative QR Code Steganographic Technique
A malicious package uses a QR code as steganography in an innovative technique.
By Olivia Brown - Sep 22, 2025
Research
/Security News
Identifying and Preventing Fraudulent Engineering Candidates: An Investigation into 80 Confirmed Cases
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.
By Lauren Valencia, Kirill Boychenko - Sep 17, 2025