
Research
Two Malicious Rust Crates Impersonate Popular Logger to Steal Wallet Keys
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
electrum-require-components
Advanced tools
This Electrum build tool generates a source file with a list of requires.
This tool synthesizes a source file with a list of requires.
electrum-require-components --wrap --crlf ./src widgets .component.js all.js
Produces file ./src/all.js
while recursively exploring folder widgets
found in the source folder ./src
, looking for *.component.js
.
--wrap
option inserts calls to Electrum.wrap()
.--crlf
option uses CR+LF line endings (for Windows files).Here is an example of a resulting source file with --wrap
:
import Electrum from 'electrum';
import _CheckBox from './widgets/buttons/check-box.component.js'
import _Panel from './widgets/layout/panel.component.js';
export const CheckBox = Electrum.wrap ('CheckBox', _CheckBox);
export const Panel = Electrum.wrap ('Panel', _Panel);
And the same example without --wrap
:
import _CheckBox from './widgets/buttons/check-box.component.js'
import _Panel from './widgets/layout/panel.component.js';
export const CheckBox = _CheckBox;
export const Panel = _Panel;
Note how
check-box
produces an export namedCheckBox
.
If there are companion files (e.g. panel.styles.js
located beside
the panel.component.js
file), then they will also get imported and
provided to Electrum.wrap
as an additional argument:
import Electrum from 'electrum';
import _Panel from './widgets/layout/Panel.component.js';
import _Panel$about from './widgets/layout/panel.about.js';
import _Panel$styles from './widgets/layout/panel.styles.js';
export const Panel = Electrum.wrap ('Panel', _Panel, {about: _Panel$about, styles: _Panel$styles});
FAQs
This Electrum build tool generates a source file with a list of requires.
The npm package electrum-require-components receives a total of 6 weekly downloads. As such, electrum-require-components popularity was classified as not popular.
We found that electrum-require-components demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
Research
A malicious package uses a QR code as steganography in an innovative technique.
Research
/Security News
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.