Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
harry-reporter
Advanced tools
Plugin for and hermione which is intended to aggregate the results of tests running into html report. Inspired by html-reporter.
You can read more about hermione plugins here.
npm install harry-reporter
Plugin has following configuration:
Boolean
– enable/disable the plugin; by default plugin is enabledString
- path to directory for saving html report file; by
default html report will be saved into hermione-report/index.html
inside current work
directory.String
- default view mode. Available values are:
all
- show all tests. Default value.failed
- show only failed tests.String
- it changes original host for view in the browser; by default original host does not changeAlso there is ability to override plugin parameters by CLI options or environment variables
(see configparser).
Use html_reporter_
prefix for the environment variables and --html-reporter-
for the cli options.
For example you can override path
option like so:
$ html_reporter_path=custom/dir hermione test
$ hermione test --html-reporter-path custom/dir
Add plugin to your hermione
config file:
module.exports = {
// ...
plugins: {
'harry-reporter': {
enabled: true,
path: 'my/hermione-reports',
defaultView: 'all',
baseHost: 'test.com'
}
},
//...
}
Additional commands that are added to the tool for which this plugin is connected.
Command that adds ability to effective work with screenshots.
Example of usage:
npx hermione gui
Command that adds ability to merge reports which are created after running the tests.
Example of usage:
npx hermione merge-reports src-report-1 src-report-2 -d dest-report
Run mocha:
npm run test
Run lint:
npm run lint
FAQs
Reporter plugin for hermione
We found that harry-reporter demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 6 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.