Research
Malicious fezbox npm Package Steals Browser Passwords from Cookies via Innovative QR Code Steganographic Technique
A malicious package uses a QR code as steganography in an innovative technique.
By Olivia Brown - Sep 22, 2025
📘 English Readme | 📕 Readme em português
📖 About
The ArunaBase is a API code base for Discord, Twitch, and other platforms bots, made in TypeScript, with the objective of making ease the bot creation, with a simple and organized structure, other than being completely free and open source.With ArunaBase create a bot capable of running commands, interact with the user, in platforms like Discord and Twitch, other than having a simple and intuitive configuration, its very fast and ease.
💻 Installing
To install ArunaBase in your project, you need first to have NodeJS installed, then run the following command in your terminal:NPM:
npm install arunabase
Yarn:
yarn add arunabase
⌨ Use example
To use ArunaBase in your project, you need to import one of the classes that it exports, then create an instance of that class, passing as parameter your bot configurations as an object.🗨 Use example with Discord
const { Discord } = require('arunabase');
// or
import { Discord } from 'arunabase';
const client = new Discord.DiscordClient({
botID: '<Bot Id>',
intents: [
Discord.Intents.Flags.MessageContent, // Optional
// ...
],
});
// use client.getCommandManager().generateCommand('Command name', Command parameters); to create a command.
// use client.getCommandManager().registerCommand(command); to register that command.
client.on('ready', () => {
console.log('Bot is ready!');
});
client.login('<Bot token>');
📄 License
The ArunaBase is distributed with the GNU license. See LICENSE for more details.
🤝 Contributing
Contributions is what makes the open source community an amazing place and its a wonderful place to learn, inspire and create. Any contribution you make will be very much appreciated.
- Make a Fork of the Project
- Create your feature branch (
git checkout -b feature/AmazingFeature) - Commit your changes (
git commit -m 'Add some AmazingFeature') - Push to the branch (
git push origin feature/AmazingFeature) - Open a Pull Request
😉 Authors
LoboMetalurgico |
SpaceFox |
Made with 💚 By Aruna™'s team.
All Reserved Rights.
FAQs
An API made to help developers what works with discord and twitch.
The npm package arunabase receives a total of 1 weekly downloads. As such, arunabase popularity was classified as not popular.
We found that arunabase demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 02 Jun 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
/Security News
Identifying and Preventing Fraudulent Engineering Candidates: An Investigation into 80 Confirmed Cases
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.
By Lauren Valencia, Kirill Boychenko - Sep 17, 2025
Application Security
/Research
/Security News
Updated and Ongoing Supply Chain Attack Targets CrowdStrike npm Packages
Socket detected multiple compromised CrowdStrike npm packages, continuing the "Shai-Hulud" supply chain attack that has now impacted nearly 500 packages.
By Kush Pandya, Peter van der Zee, Olivia Brown, Socket Research Team - Sep 16, 2025