
Research
PyPI Package Disguised as Instagram Growth Tool Harvests User Credentials
A deceptive PyPI package posing as an Instagram growth tool collects user credentials and sends them to third-party bot services.
generator-seng-module
Advanced tools
Copies the seng-boilerplate from Github and replaces the contents with your module name.
A Yeoman generator for the seng-boilerplate. It clones the repository and replaces all occurrences of the boilerplate name, author name, email and github, and npm keywords based on the provided input.
First, you need to have Yeoman installed globally:
npm i -g yo
Then, install this generator globally:
npm i -g generator-seng-module
For more information about using generators, check the generator guide on the Yeoman website.
The generator should be run in an empty directory in which you would like to start the new module.
mkdir seng-foobar
cd seng-foobar
yo seng-module
When running, the generator asks the following questions:
What is your module name (e.g. seng-config)?
The value provided here will replace seng-boilerplate
in all files
present in the boilerplate checkout. It should be the name or the Github
repository and your npm module.
Provide keywords for in your package.json (e.g. configuration):
The value provided here will be added to the package.json
. The values
mediamonks
and seng
will be added automatically. You can add multiple
values by seperating them by a comma.
What is your name?
What is your email address?
What is your Github username?
The values provided here will be added to the package.json
author
field and the AUTHORS.md
. The generator will store these values for
future use.
View CHANGELOG.md
View AUTHORS.md
MIT © MediaMonks
FAQs
Copies the seng-boilerplate from Github and replaces the contents with your module name.
The npm package generator-seng-module receives a total of 1 weekly downloads. As such, generator-seng-module popularity was classified as not popular.
We found that generator-seng-module demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
A deceptive PyPI package posing as an Instagram growth tool collects user credentials and sends them to third-party bot services.
Product
Socket now supports pylock.toml, enabling secure, reproducible Python builds with advanced scanning and full alignment with PEP 751's new standard.
Security News
Research
Socket uncovered two npm packages that register hidden HTTP endpoints to delete all files on command.