Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
eavesdocker
Advanced tools
Collect logs from docker containers stdout and forward to various destinations according to your configuration.
Collect logs from docker containers stdout and forward to various destinations according to your configuration.
config.yml
:pipeline:
- webhook:
url: yoururl.requestcatcher.com
headers:
X-Foo: bar
docker run -v "/var/run/docker.sock:/var/run/docker.sock" -v "config.yml:/config.yml" gcsboss/eavesdocker -c /config.yml`
docker run hello
configs:
eavesdocker.yml:
file: ./eavesdocker.yml
logger:
image: gcsboss/eavesdocker:0.0.10
volumes:
- "/var/run/docker.sock:/var/run/docker.sock"
configs: [ eavesdocker.yml ]
command: -c /eavesdocker.yml
deploy:
mode: global
restart_policy:
condition: any
In this section you can see the available transports and their settings.
Mongo Collection
- mongo:
url: 'mongodb://myDb' # Required. Your MongoDB connection URL.
db: 'MyDB' # Optional. Defaults to `'Eavesdocker'`. Which database to connect to.
collection: 'MyCollection' # Optional. Defaults to `'Log_Entries'`. Which collection to send log entries to.
Redis Pub/Sub
- redispub:
host: 'my-redis-host' # Optional. Defualts to `'localhost'`. The Domain/IP of you Redis server.
port: 1111 # Optional. Defaults to `6379`. Redis connection port.
password: 'mypass' # Optional. Defaults to `null`. The redis password in case auth is setup on the server.
channel: 'redis:__channel' # Required. Redis channel where to publish messages.
Webhook
- webhook:
url: 'http://example.com/somePath' # Required. The URL to call.
headers: # Optional. A set of HTTP headers in key-value format.
x-my-header: someValue
New GitLab Issue
- gitlab:
url: 'https://my-gitlab.com' # Optional. Defaults to GitLab.com. The URL of your GitLab instance.
project: 232342 # Required. Your Project ID or path string.
token: 'glpat-aaaaaaaa' # Optional. Defaults to `null`. A token to authenticate in GitLab.
labels: # Optional. Defaults to `[]`. A list of labels to be added to the new issue. Strings are templated.
- label-a
- something-{key}-cool
title: 'some {key} title' # Optional. Defaults to `'{level} - {message}'`. A template string to generate the new issue title.
GitLab Alert
- gitlabAlert:
url: 'https://my-gitlab.com/endpoint/etc...' # Required. The Alert integration endpoint from your GitLab project.
key: 'something' # Required. The GitLab Alert integration Authorization Key.
title: 'some {key} title' # Optional. Defaults to `'env - {message}'`. A template string to generate the alert title.
service: 'some {key} service' # Optional. Defaults to `null`. A template string to generate the alert service.
env: 'my-env' # Optional. A GitLab environment name.
fingerprintFields: # Optional. Defaults to `[]`. An array of log entry fields to be considered for fingerprinting.
- keyA
- keyB
SMTP
- email:
subject: 'some {key} subject' # Optional. Defaults to `'{level} - {message}'`. A template string to generate the subject line.
to: 'me@example.com' # Required. A mail recipient.
from: 'eavesdocker@my-address.com' # Required. A mail sender address.
host: 'smtp.example.com' # Required. Your SMTP host.
port: 465 # Required. Your SMTP port.
secure: true # Optional. Defaults to `false`. Whether to use TLS.
FAQs
Collect logs from docker containers stdout and forward to various destinations according to your configuration.
The npm package eavesdocker receives a total of 1 weekly downloads. As such, eavesdocker popularity was classified as not popular.
We found that eavesdocker demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.