Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
cognito-restore
Advanced tools
This is a tool that can help restore users from a cognito-backup JSON file.
npm install -g cognito-restore
map
$ AWS_PROFILE=... AWS_REGION=... cognito-backup backup-users OLD_USERPOOL_ID --file export.json
$ cognito-restore map --header header.csv [--attribute name=value...] export.json > users.csv
This will produce users.csv
by mapping all data from export.json
into the structure defined by header.csv
. The --attribute
argument
can be provided to inject additional fixed values into the CSV.
Note that there are a number of requirements for the import: https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-using-import-tool-csv-header.html. Assuming that you are using emails as identifiers you probably need to provide --username-attribute email
as well.
The file users.csv
can then be imported using the AWS Cognito Console.
FIXME: Describe how to use the aws-cli to do the importing
FIXME: Implement a command for actually doing the importing.
This software is licensed under the Apache 2 license, quoted below.
Copyright 2011-2018 Collaborne B.V. <http://github.com/Collaborne/>
Licensed under the Apache License, Version 2.0 (the "License"); you may not
use this file except in compliance with the License. You may obtain a copy of
the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
License for the specific language governing permissions and limitations under
the License.
FAQs
Restore users from a cognito-backup JSON file
The npm package cognito-restore receives a total of 0 weekly downloads. As such, cognito-restore popularity was classified as not popular.
We found that cognito-restore demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.