Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
connect-php
Advanced tools
PHP middleware for https://github.com/senchalabs/connect
This plugin is a very early stage, and was primarily designed to provide a better PHP integration with grunt-contrib-connect
. So for now, it was only tested with Grunt on a rather basic test set.
Its main goal is to parse and execute .php
files whenever a request to such a file is made.
Install the module with: npm install connect-php
grunt-contrib-connect
at the moment is very tight in it's execution and has no way to easily add another middleware to its execution stack as it was possible with grunt-connect
. However, it is still possible to override the usually used middleware
function. So, to just execute .php
files we can easily set it up like this:
module.exports = function (grunt) {
// show elapsed time at the end
require('time-grunt')(grunt);
// load all grunt tasks
require('load-grunt-tasks')(grunt);
//Add this to the beginning of your Gruntfile.js
var phpMiddleware = require('connect-php');
grunt.initConfig({
...
connect: {
options: {
port: 9000,
livereload: 35729,
hostname: 'localhost',
middleware: function(connect, options) {
// The directory where connect is executed
var directory = options.directory
|| options.base[options.base.length - 1];
// Return an array of all middlewares
return [
phpMiddleware(directory)
]
}
},
...
}
});
};
To sneak in our middleware into grunt-contrib-connect
's original middleware stack, we have to recreate a good chunk of their implementation. Add this to the middleware part described above:
...
middleware: function(connect, options) {
var middlewares = [];
var directory = options.directory || options.base[options.base.length - 1];
if (!Array.isArray(options.base)) {
options.base = [options.base];
}
// Magic happens here
middlewares.push(phpMiddleware(directory));
options.base.forEach(function(base) {
// Serve static files.
middlewares.push(connect.static(base));
});
// Make directory browse-able.
middlewares.push(connect.directory(directory));
return middlewares;
}
...
In lieu of a formal styleguide, take care to maintain the existing coding style. Add unit tests for any new or changed functionality. Lint and test your code using Grunt.
Copyright (c) 2013 Stefan Baumgartner. Licensed under the MIT license.
FAQs
PHP middleware for https://github.com/senchalabs/connect
The npm package connect-php receives a total of 6 weekly downloads. As such, connect-php popularity was classified as not popular.
We found that connect-php demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.