Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
cnyks is a CLI runner for nodejs modules.
Aka : cnyks any ES6 class and :boom:boom:sparkles: you got the greatest command line runner ever (no fingerprint at all)
cnyks
will analyze your class/instance prototype and reflect the API it exposes, hence, any module can be handled by cnyks. There is no API to abide, compose your class the way you like.
"use strict";
var sleep = require('nyks/async/sleep');
module.exports = class {
test(name) {
console.log(name);
}
async hello(name) {
await sleep(1000);
return `Hello ${name}`;
}
static test(){
console.log("Got test");
}
}
Now, just cnyks' it !
cnyks foo.js
npm install -g cnyks
cnyks path/to/your/module.js
# enjoy !
--ir://
is a "namespace" for all cnyks dedicated arguments--ir://run=method_name
run "method_name" on your module, then quit--ir://start=method_name
run "method_name" on your module, then start the interactive loop--ir://json
(to be used with "run") silence ir helpers, format output as JSON--ir://run=hello --name=bar
run method "hello" with argument name
set to 'bar' (i.e. function hello(name) { }
)--ir://run=hello --name::json='[1,2,3]'
run method "hello" with argument name
set to [1, 2, 3]
(as a javascript array).Cnyks expose a cnyksify plugin for browserify.
browserify --node entry.js --plugin cnyks/ify > bundle.js
node bundle.js
=> start runnerJust add this 2 lines footer to your module/class so it can be use by clyks directly
//at the end of your module
module.exports = SomeClass;
if(module.parent === null) //ensure module is called directly, i.e. not required
require('cnyks')(SomeClass); //start runner
Now just node someapp.js
to start cnyks runner.
Cnyks also allows you to declare async function through generators (internaly using co ).
require('cnyks/ify')
: a browserify pluginrequire('cnyks/prompt/bool')(prompt, default)
: prompt (using [read]) for a booleancli, reflection API, commander, cnyks, interactive runner, async/await, co, promise, Promises, yield, "Let's have a beer & talk in Paris"
FAQs
Command line introspection tool for nodejs (interactive runner)
We found that cnyks demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.