Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Backframe is a javascript library for declaratively creating REST APIs for Express. Express is a great tool for building lightweight web and application servers, but it leaves almost all of the implementation to the developer. When building REST API's, this usually ends up requiring the developer to write a lot of tedious and repetitive code. Backframe provides simple, declarative tools for building REST APIs.
npm install --save backframe
Backframe is a great tool for rapidly creating performant REST APIs for your web or mobile application
import express from 'express'
import Backframe from 'backframe'
import Kittens from from 'app/models/kittens'
// initialize backframe
const backframe = Backframe()
// create a resource
const kittens = backframe.resources({
model: Kittens
})
const app = express()
// mount backframe within express
app.use(backframe.router({
routes: kittens
}))
app.listen(3000)
Backframe was originally written by Greg Kops and is based upon his work with Think Topography, Funkhaus and The Cornell Cooperative Extension of Tompkins County
FAQs
Library for building REST API's for expressjs
The npm package backframe receives a total of 6 weekly downloads. As such, backframe popularity was classified as not popular.
We found that backframe demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.