Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
backbone-publication
Advanced tools
Supports backbone classes backed by `publication-client` reactive queries.
backbone-publication
implements the boilerplate code that is required to make
backbone
and our publication based system (through
publication-client
)
play nicely together. To use these classes, you simply need to instantiate them
with the necessary reactive queries from a publication-client
. This normally
can be done in the bootstrapping process. For instance:
// During the bootstrapping process we normally initialize most
// collections/models - using `backbone-publication` collections/models is no
// different.
var featureCollection = new FeatureCollection(initialPayload.features, {
// pubClient is initialized by using the `publication-client` constructor.
reactiveQuery: pubClient.getCollection('features').find({ userId: getUser().id }),
waitOn: pubClient.subscribe('features', ['branding'])
}));
Where FeatureCollection is defined as:
import { PublicationCollection } from 'backbone-publication';
// Note that we only need to extend the Publication[Collection,Model]s if we
// need to add custom behavioural overrides.
var FeatureCollection = PublicationCollection.extend({
// Code removed for example purposes.
});
export default FeatureCollection;
isObject
-> isPlainObject
).FAQs
Supports backbone classes backed by `publication-client` reactive queries.
The npm package backbone-publication receives a total of 49 weekly downloads. As such, backbone-publication popularity was classified as not popular.
We found that backbone-publication demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 29 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.