Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Warning: Experimental
bugger
provides Chrome Devtools bindings for node.
It integrates tightly with Chrome which means two things:
npm install -g bugger
Start example/alive.js
in debug mode:
bugger example/alive.js
Pass parameters to the script:
# This will be interpreted as a port paramter for alive.js
bugger example/alive.js --port=3000
# This will be interpreted as a port paramter for bugger itself
bugger --port=3000 example/alive.js
Pass V8 options (or advanced node options):
node --trace_gc $(which bugger) example/alive.js
The correct URL will be written to the output. It should look similar to this:
chrome-devtools://devtools/bundled/devtools.html?ws=127.0.0.1:8058/websocket
You can also open chrome://inspect
if you started Chrome with --remote-debugging-targets=localhost:8058
.
The process should pop up on that page almost immediately.
-v, --version
: Print version information-h, --help
: Show usage help-p, --port
: The devtools protocol port to use, default: 8058-b, --brk
: Pause on the first line of the scriptbabel --source-maps
or coffee --map
)cluster
.babel-core/register
and coffee-script/register
, editing the files doesn't work #48console.{time, timeEnd, timeStamp}
$0..$4
bugger was heavily inspired by node-inspector and nodebug.
FAQs
Chrome Devtools Agents for node.js
The npm package bugger receives a total of 3 weekly downloads. As such, bugger popularity was classified as not popular.
We found that bugger demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.