Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
fbjs-scripts
Advanced tools
This is a collection of tools and scripts intended to be used in conjunction with fbjs
. Previously these were shipped as a part of fbjs
.
// before (fbjs@0.1.0)
var invariant = require('fbjs/lib/invariant');
var devExpression = require('fbjs/scripts/babel/dev-expression');
// after (fbjs, fbjs-scripts@0.2.0)
var invariant = require('fbjs/lib/invariant');
var devExpression = require('fbjs-scripts/babel/dev-expression');
This ensures that production code consuming fbjs
library code does not need to install script dependencies, unless you explicitly use them via the fbjs-scripts
package.
FAQs
A bundle of helpful scripts used in projects consuming fbjs.
The npm package fbjs-scripts receives a total of 140,073 weekly downloads. As such, fbjs-scripts popularity was classified as popular.
We found that fbjs-scripts demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.