Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
citation-server
Advanced tools
An Hapi server publishing a GraphQL API reading and storing data in a Git repository.
An Hapi server publishing a GraphQL API reading and storing data in a Git repository.
Code is transpiled with Babel.
The API is implemented with GraphQL. The Schema definition is a work in progress. It should even be dynamic (if possible) in the end. It uses the official GraphQL implementation with the community hapi-graphql bridge.
Not having found anyone implemented this idea correctly on GitHub. It's home made using nodegit.
A lot of question about perfs, concurency and conflicts are still opened and will be addressed during the progress of the implementation.
To run Babel with watch mode:
npm run dev
To run Babel:
npm run build
FAQs
An Hapi server publishing a GraphQL API reading and storing data in a Git repository.
The npm package citation-server receives a total of 0 weekly downloads. As such, citation-server popularity was classified as not popular.
We found that citation-server demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.