Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
grunt-jasmine-firefoxaddon
Advanced tools
Run jasmine specs in a Firefox Addon
This plugin requires Grunt ^0.4.5
If you haven't used Grunt before, be sure to check out the Getting Started guide, which explains how to create your grunt file. Once you're familiar with the process, this plugin can be installed as:
npm install grunt-jasmine-firefoxaddon --save-dev
Once the plugin has been installed, it may be enabled with this line of JavaScript:
grunt.loadNpmTasks('grunt-jasmine-firefoxaddon');
Run this task with the grunt jasmine_firefoxaddon
command.
Automatically builds and maintains the spec runner and reports results back to
the grunt console. Uses jpm provided by mozilla to run a dynamically constructed
firefox addon that runs jasmine specs by using browserify. Allows for copying
and loading of custom .jsm
files. The addon is built in the .build/
path,
but is deleted after the task successfully completes. If the task fails part
way it will likely remain, and may be useful for debugging.
Note that if your addon needs to access other resources, you will need to make
the files available (e.g. with
grunt-contrib-copy) under
the path .build/data/...
and then access them in your addon with the path
resource://grunt-jasmine-firefoxaddon-runner/data/...
(you can also use
self.data.url(...)
if
the self API
is available to you). This is due to the structure of Firefox addons - future
iterations of this tool may be able to make the process smoother.
Use your own files in the app to customize your tests. For all of the below, you can use node globbing patterns.
Type: String|Array
The spec files you want to run.
Type: String|Array
Resources (.js, .json, etc.) needed for the tests (will be made available to the
addon under data/
, but not automatically loaded into the addon - your tests
can pull them in as needed from
resource://grunt-jasmine-firefoxaddon-runner/data/
). These files can be
.jsm
, which would allow them to be loaded via Components.utils.import
, or
they can be of other types (which will require different mechanisms to load,
currently left as an exercise to the user - future updates to this tool may try
to facilitate common use cases).
Type: String|Array
Custom JavaScript module (.jsm
) files you wish you load into your addon during
test. These files are automatically loaded during addon setup, but must be
.jsm
types (JavaScript with an EXPORTED_SYMBOLS
array to define visibility).
Type: Number
Default: 10000
How many milliseconds to wait for the browser to start up before failing.
FAQs
Grunt task to run jasmine tests in a firefox addon
The npm package grunt-jasmine-firefoxaddon receives a total of 6 weekly downloads. As such, grunt-jasmine-firefoxaddon popularity was classified as not popular.
We found that grunt-jasmine-firefoxaddon demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.