![Malicious npm Package Typosquats react-login-page to Deploy Keylogger](https://cdn.sanity.io/images/cgdhsj6q/production/007b21d9cf9e03ae0bb3f577d1bd59b9d715645a-1024x1024.webp?w=400&fit=max&auto=format)
Research
Security News
Malicious npm Package Typosquats react-login-page to Deploy Keylogger
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
@volar/source-map
Advanced tools
Readme
Provides functionality related to source maps.
This package exports a SourceMap
class with the following methods:
getSourceOffset(generatedOffset: number)
: Returns the source offset for a given generated offset.
getGeneratedOffset(sourceOffset: number)
: Returns the generated offset for a given source offset.
getSourceOffsets(generatedOffset: number)
: Returns all source offsets for a given generated offset.
getGeneratedOffsets(sourceOffset: number)
: Returns all generated offsets for a given source offset.
Mapping
The Mapping
is a tuple that represents a mapping in the source map. It consists of the following elements:
source
: A string representing the source file. This can be undefined
.sourceOffsets
: Offsets in the source code.generatedOffsets
: Offsets in the generated code.data
: The data associated with this mapping. The type of this data is generic and can be specified when creating a SourceMap
instance.Here is an example of a Mapping
:
let mapping: Mapping<MyDataType> = {
source: '.../sourceFile.ts',
sourceOffsets: [10],
generatedOffsets: [30],
lengths: [10],
data: myData,
};
In this example, myData
is of type MyDataType
, which is the type specified for the SourceMap instance.
Remember to replace MyDataType
and myData
with actual types and data that are relevant to your project.
This project is licensed under the MIT License. See the LICENSE file for more details.
FAQs
Unknown package
The npm package @volar/source-map receives a total of 1,520,572 weekly downloads. As such, @volar/source-map popularity was classified as popular.
We found that @volar/source-map demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
Security News
The JavaScript community has launched the e18e initiative to improve ecosystem performance by cleaning up dependency trees, speeding up critical parts of the ecosystem, and documenting lighter alternatives to established tools.
Product
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.