Research
2025 Report: Destructive Malware in Open Source Packages
Destructive malware is rising across open source registries, using delays and kill switches to wipe code, break builds, and disrupt CI/CD.
By Kush Pandya - Dec 24, 2025
gate-evm-hardhat-foundry
Advanced tools
Create Hardhat2集成foundry App
构建npm包
# 1. 登录 npm(首次)
npm login
# 2. 检查配置
npm whoami # 确认登录的账户
npm config list
# 3. 构建项目
npm run build
版本管理
# 更新版本号(自动更新 package.json)
npm version patch # 1.0.0 -> 1.0.1 (bug 修复)
npm version minor # 1.0.0 -> 1.1.0 (新功能)
npm version major # 1.0.0 -> 2.0.0 (破坏性更改)
# 或手动编辑 package.json 中的 version
发布
# 发布到 npm
npm publish
脚手架使用指南
- 拉取 bitbucket 项目仓库到本地(可选)
- 在本地全局安装(根目录下)(可选)
npm install
npm link 或者 npm i -g ./
- 后续创建新项目时使用指定框架
# 使用 npx (推荐)
npx gate-evm-hardhat-foundry test-hardhat-foundry-app
# 使用 npm
npm gate-evm-hardhat-foundry test-hardhat-foundry-app
# 使用 yarn
yarn gate-evm-hardhat-foundry test-hardhat-foundry-app
本地创建
node evm-hardhat-cli/bin/cli.js test-hardhat-foundry-app --package-manager npm
FAQs
快速创建 Hardhat集成foundry 项目的 CLI 脚手架工具
The npm package gate-evm-hardhat-foundry receives a total of 3 weekly downloads. As such, gate-evm-hardhat-foundry popularity was classified as not popular.
We found that gate-evm-hardhat-foundry demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 03 Dec 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Engineering with AI Podcast: The Promise of AI-First Development
Socket CTO Ahmad Nassri shares practical AI coding techniques, tools, and team workflows, plus what still feels noisy and why shipping remains human-led.
By Sarah Gooding - Dec 24, 2025
Research
/Security News
Spearphishing Campaign Abuses npm Registry to Target U.S. and Allied Manufacturing and Healthcare Organizations
A five-month operation turned 27 npm packages into durable hosting for browser-run lures that mimic document-sharing portals and Microsoft sign-in, targeting 25 organizations across manufacturing, industrial automation, plastics, and healthcare for credential theft.
By Nicholas Anderson, Kirill Boychenko - Dec 23, 2025