![Malicious npm Package Typosquats react-login-page to Deploy Keylogger](https://cdn.sanity.io/images/cgdhsj6q/production/007b21d9cf9e03ae0bb3f577d1bd59b9d715645a-1024x1024.webp?w=400&fit=max&auto=format)
Research
Security News
Malicious npm Package Typosquats react-login-page to Deploy Keylogger
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
file-system
Advanced tools
Readme
This module make file opertaion apis simple, you don't need to care the dir exits. and the api is same as node's filesystem. This is no exists time cost for this plugin.
var fs = require('file-system');
fs.mkdir('1/2/3/4/5', [mode], function(err) {});
fs.mkdirSync('1/2/3/4/5', [mode]);
fs.writeFile('path/test.txt', 'aaa', function(err) {})
npm install file-system --save
file extend node fs origin methods, and overwrite some methods with next list chart
var file = require('file-system');
var fs = require('fs');
file.readFile === fs.readFile // true
The api is same as node's mkdir
The api is same as node's mkdir
The api is same as node's writeFile
The api is same as node's writeFile
The api equal file-match
Asynchronously copy a file into newpath
srcpath
requireddestpath
requiredoptions
options.encoding
[options.encoding=utf8]options.done(err)
options.process(content)
fs.copyFile('deom.png', 'dest/demo.png', {
done: function(err) {
console.log('done');
}
});
The api same as copyFile, but it's synchronous
fs.copyFileSync('demo.png', 'dest/demo.png');
fs.copyFileSync('demo.css', 'dest/demo.css', {
process: function(contents) {
return contents;
}
})
Recurse into a directory, executing callback for each file and folder. if the filename is undefiend, the callback is for folder, otherwise for file.
dirpath
requiredfilter
callback(filepath, filename)
fs.recurse('path', function(filepath, filename) { });
fs.recurse('path', [
'*.css',
'**/*.js',
'path/*.html',
'!**/path/*.js'
], function(filepath, filename) {
if (filename) {
// it's file
} else {
// it's folder
}
});
// Only using files
fs.recurse('path', function(filepath, filename) {
if (!filename) return;
});
The api is same as recurse, but it is synchronous
fs.recurseSync('path', function(filepath, filename) {
});
fs.recurseSync('path', ['**/*.js', 'path/**/*.html'], function(filepath, filename) {
});
Recurse into a directory, remove all of the files and folder in this directory.
fs.rmdirSync('path');
Recurse into a directory, copy all files into dest.
dirpath
requireddestpath
requiredoptions
options.filter
options.process(contents, filepath, relative)
options.noProcess
fs.copySync('path', 'dest', { clear: true });
fs.copySync('src', 'dest/src');
fs.copySync('src', 'dest/src', { filter: ['*.js', 'path/**/*.css'] });
fs.copySync('path', 'dest', {
noProcess: '**/*.{jpg, png}', // Don't process images
process: function(contents, filepath, relative) {
// only process file content
return contents;
// or custom destpath
return {
contents: '',
filepath: ''
};
}
});
//Handler self files
fs.copySync('path', 'path', { filter: ['*.html.js'], process: function(contents, filepath) {} });
Deprecated, move to base64
Deprecated, move to base64Sync
FAQs
Unknown package
We found that file-system demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
Security News
The JavaScript community has launched the e18e initiative to improve ecosystem performance by cleaning up dependency trees, speeding up critical parts of the ecosystem, and documenting lighter alternatives to established tools.
Product
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.