Research
/Security News
11 Malicious Go Packages Distribute Obfuscated Remote Payloads
Socket uncovered 11 malicious Go packages using obfuscated loaders to fetch and execute second-stage payloads via C2 domains.
By Olivia Brown - Aug 06, 2025
You're Invited:Meet the Socket Team at BlackHat and DEF CON in Las Vegas, Aug 4-6.RSVP →
#Feather
A light-weight logger
Current version 0.0.4
`npm install feather`
- Feather integrates seamlessly with your codebase and has minimal overheads.
- Configurarly control what you log in dev and in production.
- Why? because logs that are useful during development can be discarded in production.
It uses Unix log levels [Emergency, Alert, Critical, Error, Warn, Notice, Info, Debug], and similarly to logging
facilities like [syslog] (http://www.syslog.org/), Feather allows you to define the highest level to log up too.
This avoids printing out debug logs in production, for example. Or if you want to discard both Info and Debug level logs
you can. This is what loger can do for you.
#Main step below
-
Functions provided by feather are:
`var logger = require('feather');` `logger.emergency('emergency message'); logger.alert('alert message); logger.critical('critical error message'); logger.error('error message'); logger.warn('warn message'); logger.notice('notice message'); logger.info('info message'); logger.debug('data data');`
#Run tests
Now you can run the tests. Chenge the rootLogger node in config/loggerProperties.js configuration and run the tests again. Have a play and feed back to me at viktor.trako@holidayextras.com.
`$ node test/run.js // run tests`
#Set up
-
Feather looks for a featherProperties.js in config directory in your app directory. If it cannot find one then it will use its default configuration file in feather/config/featherProperties.
-
Taking a look inside feather/config/featherProperties:
module.exports = { "timestampFormat" : "dddd, MMMM Do YYYY, h:mm:ss a", "level" : "Info" }
This is a good example of the properties set. Whatever value the rootLevel node is set to then nothing below that
value will be loged. In the instance above where [info] is set, all log messages will be loged apart from [debug]
messages. If [warn] is assigned to rootLevel then [notice], [info], and [debug] messages throughout your
codebase will be ignored.
FAQs
A light-weight logger
The npm package feather receives a total of 144 weekly downloads. As such, feather popularity was classified as not popular.
We found that feather demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 21 Dec 2012
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
TC39 Advances 11 Proposals for Math Precision, Binary APIs, and More
TC39 advances 11 JavaScript proposals, with two moving to Stage 4, bringing better math, binary APIs, and more features one step closer to the ECMAScript spec.
By Sarah Gooding - Aug 06, 2025
Research
/Security News
Critical Vulnerability in NestJS Devtools: Localhost RCE via Sandbox Escape
A flawed sandbox in @nestjs/devtools-integration lets attackers run code on your machine via CSRF, leading to full Remote Code Execution (RCE).
By Jonathan Leitschuh - Aug 01, 2025