To try asse, just run
npx asse
You can also run following command if noone else is seeing your screen or recording it
npx asse --values
I have created this library to show how broken our current "Desktop systems" are. Any "application" that is running has the rights to do anything, from network-access to reading all "Personal Files", to passwords stored by third party applications. The only restriction is usually system wise, but on a personal computer, what is of value to a user is not the integrity of the system, but rather whether his private data is really private : eg can it be open by all programs without explicit permission ? I wish that we could find a solution to go forward (maybe docker based ?), so that the desktop apps will have the same amount of restrictions as applications on Android or iOS, or browser apps (which all run in a controlled sandbox).
I chose npx because it makes running third party programs even more "simple".
I hereby decline any responsibility if you use this program maliciously.
asse is the acronym for A Simple Security Experiment
FAQs
A simple security experiment
We found that asse demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Malicious npm package postcss-optimizer delivers BeaverTail malware, targeting developer systems; similarities to past campaigns suggest a North Korean connection.
Security News
CISA's KEV data is now on GitHub, offering easier access, API integration, commit history tracking, and automated updates for security teams and researchers.
Security News
Opengrep forks Semgrep to preserve open source SAST in response to controversial licensing changes.