Research
Recent Trends in Malicious Packages Targeting Discord
The Socket research team breaks down a sampling of malicious packages that download and execute files, among other suspicious behaviors, targeting the popular Discord platform.
async-logging
Advanced tools
Readme
This module is trying to solve the discrepancy between the async model & the common synchronous logging model
Function | Description |
---|---|
LogCluster | |
require('log-cluster').LogCluster | importing constructor |
new LogCluster(options, emitter) | constructor accepts two parameters; |
LogBuffer | |
require('log-buffer').LogBuffer | importing constructor |
new LogBuffer(emitter,mapper) | constructor accepts two parameters, emitter which emits 'log' events and optional mapper which can map log properties to correct format |
LogListener | |
require('log-listener').LogListener | importing constructor |
npm install async-logging
var LogCluster = require("log-cluster.js").LogCluster,
CalPublisher = require("cal-publisher.js").CalPublisher;
new LogCluster({LogPublisher:CalPublisher});
var CalPublisher = exports.CalPublisher = function(emitter, calMapper, calSender, calCallback){
//a specific publisher, could be as simple as log file appender
}
new require("log-client").LogClient({url:""}); //url must be given
Look at lib/log-server.js. You can start it by typing following commands from the root of the project
npm install
node lib/log-server.js
port
: port on which the cluster will run(default 3000)monPort
: port of the monitoring app if any(default 3001)cluster
: (default true)noWorders
number of worker processes to create:connThreshold
: max number of connections to accept(default 1024)ecv
:heartbeatInterval
:LogListener
: defaults to 'log-listen.js'LogBuffer
: defaults to 'log-buffer.js'LogPublisher
: defautls to 'winston-publisher.js'FAQs
0.1.6 is the same as 0.2.2 just to get around ebay-logging-client vs. async-logging-client change
We found that async-logging demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 6 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
The Socket research team breaks down a sampling of malicious packages that download and execute files, among other suspicious behaviors, targeting the popular Discord platform.
Security News
Socket CEO Feross Aboukhadijeh joins a16z partners to discuss how modern, sophisticated supply chain attacks require AI-driven defenses and explore the challenges and solutions in leveraging AI for threat detection early in the development life cycle.
Security News
NIST's new AI Risk Management Framework aims to enhance the security and reliability of generative AI systems and address the unique challenges of malicious AI exploits.