Research
Security News
Threat Actor Exposes Playbook for Exploiting npm to Build Blockchain-Powered Botnets
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
create-listening-server
Advanced tools
Promise-based API to create listening `http.Server` instances.
Promise-based API to create listening http.Server
instances.
Safe creation functionality is also exposed, with automated consecutive port retries when "address in use" errors occur. Useful for tests and development mode.
Install the library in an existing project:
npm i create-listening-server
Creation of an http.Server
with a specific port:
import { createListeningHttpServer } from "create-listening-server";
import express from "express";
const PORT = 3000;
async function main() {
const app = express();
app.use(/* middleware */);
const httpServer = await createListeningHttpServer(PORT, app);
}
Creation of an http.Server
with automated consecutive ports retries:
import { safeListeningHttpServer } from "create-listening-server";
import express from "express";
const PREFERRED_PORT = 3000;
async function main() {
const app = express();
app.use(/* middleware */);
const { httpServer, port } = await safeListeningHttpServer(PREFERRED_PORT, app);
}
MIT
FAQs
Promise-based API to create listening `http.Server` instances.
We found that create-listening-server demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Security News
NVD’s backlog surpasses 20,000 CVEs as analysis slows and NIST announces new system updates to address ongoing delays.
Security News
Research
A malicious npm package disguised as a WhatsApp client is exploiting authentication flows with a remote kill switch to exfiltrate data and destroy files.