Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
abstract-log
Advanced tools
An abstract interface to build data processing applications on a log-based architecture.
An abstract interface to build data processing applications on a log-based architecture.
The idea would be to have implementations that would allow reading/writing to files, databases, kafka, redis, etc.
This is basically abstract-blob-store for append-only logs.
To understand all this append only log stuff and why it's useful to build data processing systems, watch this great talk by Martin Kleppman.
Basically Kafka is all good and well, but very heavy until you need that kind of scale. This project enables you to build on this kind of architecture and then scale up to bigger logging back-ends when you need to.
// There's a reference implementation of the memory based log included. Should be its own
// module
const memLog = require('abstract-log/mem-log');
// If this were a database log then you would pass through a connection string
let log = memLog();
// append to the log (currently the offset can be an object, not just an integer)
let offset = await log.append({ msg: 'hello world' });
// read from the log
let data = await log.get(offset);
// stream from the log
let offset = 0; // use 0 as initial offset as this is a memory log
log.createReadStream(offset)
.on('data', console.log);
// stream to a log
const arrayToStream = require('array-to-stream');
arrayToStream([0, 1, 2, 3, 4].map((i) => ({ msg: `hello world ${i}` })))
.pipe(log.createWriteStream());
knex
database library to log to postgres, sqlite, mysql, etcNB: Please feel free to contribute implementations. PRs welcome!
abstract-blob-store
Some logs don't have efficient push mechanisms for changes. So you have to poll for changes. Check out polling-stream which helps you create a perpetual stream of changes.
WIP. Currently - See tests.
FAQs
An abstract interface to build data processing applications on a log-based architecture.
The npm package abstract-log receives a total of 3 weekly downloads. As such, abstract-log popularity was classified as not popular.
We found that abstract-log demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.