
Research
Using Trusted Protocols Against You: Gmail as a C2 Mechanism
Socket uncovers malicious packages on PyPI using Gmail's SMTP protocol for command and control (C2) to exfiltrate data and execute commands.
exit-on-dirty-git
Advanced tools
This module is based on dity-git and just exposes binary that will exit with status code 1 in case there're some uncommitted changes in current working directory.
Can be useful as part of prepublish hook, possibly.
If you're going to use it from npm-scripts you don't need to install it globally and could just run
npm i exit-on-dirty-git
Just call it whenever you need it. Sample usage:
"scripts": {
"prepublish": "npm run build && exit-on-dirty-git",
},
FAQs
Exit with status code (1) if something is uncommited in current tree
The npm package exit-on-dirty-git receives a total of 13 weekly downloads. As such, exit-on-dirty-git popularity was classified as not popular.
We found that exit-on-dirty-git demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Socket uncovers malicious packages on PyPI using Gmail's SMTP protocol for command and control (C2) to exfiltrate data and execute commands.
Product
We redesigned Socket's first logged-in page to display rich and insightful visualizations about your repositories protected against supply chain threats.
Product
Automatically fix and test dependency updates with socket fix—a new CLI tool that turns CVE alerts into safe, automated upgrades.