Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
common-tests-zip
Advanced tools
Some nonsense to download *.common.tests.zip files from ftp.mozilla.org.
We need to download *.common.tests.zip
files for specific channels and OSes. This seemed like a good solution.
$ npm install common-tests-zip -g
Usage: common-tests-zip [options]
--help, -h
Displays help information about this script
'common-tests-zip -h' or 'common-tests-zip --help'
--channel, -c
Release channel. Valid values are "release" and "nightly". Required.
'common-tests-zip --channel=release' or 'common-tests-zip -c nightly'
--os, -o
Operating system. Valid values are "linux" and "mac". Required.
'common-tests-zip --os=mac' or 'common-tests-zip -o linux'
--verify, -v
Verifies the link and returns the result as a JSON object. Optional.
'common-tests-zip --verify' or 'common-tests-zip -v'
--version
Displays version info
common-tests-zip --version
The following example returns a link to the Mac OS X Firefox Nightly channel *.common.tests.zip:
$ common-tests-zip -c nightly -o mac
Output:
https://ftp.mozilla.org/pub/mozilla.org/firefox/nightly/latest-trunk/firefox-43.0a1.en-US.mac.common.tests.zip
The following example returns a JSON object to the Linux Firefox Release channel *.common.tests.zip file:
$ common-tests-zip --channel=release --os=linux --verify
Output:
{
"href": "https://ftp.mozilla.org/pub/mozilla.org/firefox/tinderbox-builds/mozilla-release-linux64/latest/firefox-40.0.2.en-US.linux-x86_64.common.tests.zip",
"statusCode": 200,
"contentLength": 23670401
}
FAQs
Some nonsense to download *.common.tests.zip files from ftp.mozilla.org.
We found that common-tests-zip demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.