Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
To install:
npm install -g burn-it
Usage:
usage: bin/burn <command> <image_name> [command-args] [options]
Commands:
it <name>[@<version>] [components..] create a new image
ls <name>[@<version>] list all images by the name
ls list all images available
rm <name>[@<version>] delete image(s)
run <name>[@<version>] launch instances using the image
config ls list all user options
config <key> get user option
config <key> <value> set the user option
config rm <key> delete user option
Options:
-r, --region AWS region name
-s, --subnet-id Subnet ID
-p, --vpc-id VPC ID
-e, --env-vars Environment variable key-value pairs separated by
command (example: "key1=val1,key2=val2")
-b, --base-image Base image name and optional version (e.g.
"my_base_image", "my_base_image@1.2.3")
-B, --base-image-id Base image AMI ID
-d, --debug Debug mode
-k, --key-pair Key pair name
-g, --security-groups List of security group IDs separated by comma
-t, --instance-type Instance type
-u, --user-data User data (BASE64 encoded)
-U, --user-data-file User data file (contents must NOT be BASE64 encoded)
-i, --iam-role IAM profile name
-x, --exclude-instances Whether to exclude the instances or not
-c, --instance-count The number of instances
-a, --access-key AWS access key
-A, --secret-key AWS secret key
-T, --tags Tag key-value pairs separated by command (example:
"key1=val1,key2=val2")
-D, --disk-size EBS volume size in GiB
--version Show version number
Examples:
burn it my_app_image Create an image with name of "my_app_image"
and version of "1.0.0".
burn it my_app_image@2.3.4 Create an image with name of "my_app_image"
and version of "2.3.4".
burn run my_app_image 4 Create 4 instances using the image with name
of "my_app_image".
burn ls my_app_image List all images with name of "my_app_image"
and their instances.
burn ls my_app_image@1.x List all images with name of "my_app_image"
and version of "1.x" and their instances.
burn rm my_app_image@1.x Delete all images with name of "my_app_image"
and version of "1.x" and their instances.
burn config key-pair my-key Set default value of "key-pair" to "my-key"
FAQs
To install: ``` npm install -g burn-it ```
We found that burn-it demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.