Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
This module is a wrapper around the fpcalc
command-line tool
and provides a node interface to calculate AcoustID audio
fingerprints for audio files.
fpcalc
(provided by Chromaprint) must be installed for
this module to function.
OSX using Homebrew
$ brew install chromaprint
Ubuntu
$ sudo apt-get install libchromaprint-tools
var fpcalc = require("fpcalc");
fpcalc("./audio.mp3", function(err, result) {
if (err) throw err;
console.log(result.file, result.duration, result.fingerprint);
});
fpcalc(file, [options,] callback)
Calculates the fingerprint of the given audio file.
File must be the path to an audio file.
Options may be an object with any of the following keys:
length
: Length of the audio data used for fingerprint calculation
(passed as -length
option)raw
: Output the raw uncompressed fingerprint (default: false
)command
: Path to the fpcalc command (default: "fpcalc"
- expects
executable in $PATH
)Callback must be a function that will be called with callback(err, result)
once the fingerprint is calculated. The result object will
contain the following keys:
file
: Path to the audio fileduration
: Duration of audio file in secondsfingerprint
: Fingerprint of audio file - Buffer if options.raw
,
String otherwisenpm install --save fpcalc
FAQs
Calculate AcoustID audio fingerprint
The npm package fpcalc receives a total of 148 weekly downloads. As such, fpcalc popularity was classified as not popular.
We found that fpcalc demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.