
Research
/Security News
Toptal’s GitHub Organization Hijacked: 10 Malicious Packages Published
Threat actors hijacked Toptal’s GitHub org, publishing npm packages with malicious payloads that steal tokens and attempt to wipe victim systems.
An easy to use package that makes database with JSON.
npm install daniel.db
create()
const DanielDB = require("daniel.db")
const db = new DanielDB({ name: "main" })
add()
// Increases the current value to the key
db.add('joins', 1)
set()
// Sets the key to value
db.set(`name`, 'daniel')
get()
// Get a value from the key
db.get(`name`)
has()
// Returns if the database has the provided key
db.has(`name`)
delete()
// Deletes a key from the database
db.delete(`name`)
deleteAll()
// Deletes all the keys in the database
db.deleteAll()
// Done!
all()
// Returns an array of objects (ID, data)
db.all()
push()
// Pushes a value to the array
db.push(`name`, 'hello')
reset()
// Resets the key in the database to 0
db.reset(`joins`)
WARNING: ⚠
If you're using nodemon
, please use the --ignore
file to ignore all the json files, or else your project will restart every time the database getting updated.
Example:
nodemon fileName.js --ignore *.json
If do you want to run your main file, dont write the [fileName]
in the command.
FAQs
An easy to use package that makes database with JSON.
We found that daniel.db demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
/Security News
Threat actors hijacked Toptal’s GitHub org, publishing npm packages with malicious payloads that steal tokens and attempt to wipe victim systems.
Research
/Security News
Socket researchers investigate 4 malicious npm and PyPI packages with 56,000+ downloads that install surveillance malware.
Security News
The ongoing npm phishing campaign escalates as attackers hijack the popular 'is' package, embedding malware in multiple versions.