
Research
Malicious npm Packages Impersonate Flashbots SDKs, Targeting Ethereum Wallet Credentials
Four npm packages disguised as cryptographic tools steal developer credentials and send them to attacker-controlled Telegram infrastructure.
Some crazy parallelized / serialized async library - blame @peterdemartini
Some crazy combination of parallelized / serialized async library - blame @peterdemartini
For every instance of Actionator, you can add
action to a task (grouped by the task name). All tasks will be ran in series, all actions will be ran in parallel. All tasks added must be added in order of execution.
->add([<taskName>, <actionName>], callback)
Add a step to be performed in parallel grouped by the optional taskName. Additionally calling it with an optional actionName (second argument) as a label. Calling the callback with an error will short circuit the entire flow.
->beforeEach(callback)
Run this function before each task.
->run(callback)
Run all actions. fn
will be called with an error
and stats
->stats()
Returns benchmarks for each task.
->stat(string)
Returns benchmarks for a task.
Actionator = require 'actionator'
actions = new Actionator
actions.add 'foo', (next) =>
setTimeout =>
console.log 'this will output after step 2'
next()
, 100
actions.add 'foo', (next) =>
setTimeout =>
console.log 'this will output before step 1'
next()
, 10
actions.add 'bar', (next) =>
console.log 'this will output after foo step 1 and 2'
next()
actions.add 'bar', (next) =>
setTimeout =>
console.log 'this will be the last step ran'
next()
, 100
actions.run (error, stats) =>
return console.error error if error?
console.log 'All steps are done'
console.log stats
FAQs
Some crazy parallelized / serialized async library - blame @peterdemartini
The npm package actionator receives a total of 1 weekly downloads. As such, actionator popularity was classified as not popular.
We found that actionator demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Four npm packages disguised as cryptographic tools steal developer credentials and send them to attacker-controlled Telegram infrastructure.
Security News
Ruby maintainers from Bundler and rbenv teams are building rv to bring Python uv's speed and unified tooling approach to Ruby development.
Security News
Following last week’s supply chain attack, Nx published findings on the GitHub Actions exploit and moved npm publishing to Trusted Publishers.