Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
homey-app-upload-lib
Advanced tools
CLI tool and library to make developing apps for the Homey home automation platform a bit easier.
The purpose is to allow for incremental app updates to be pushed to Homey during app development.
This tool consists of two parts: a library that you need to include in your Homey app, and a CLI (command line interface) tool that you should install on the computer you are developing on.
$ cd path-to-your-homey-app
$ npm install homey-app-upload-lib
The library needs to be initialized from the onInit
method of your app, and should be passed your app's manifest as an argument:
const HomeyAppUpload = require('homey-app-upload-lib');
...
class YourHomeyApp extends Homey.App {
onInit() {
HomeyAppUpload(this.manifest);
...
}
...
}
Remarks:
homey:manager:api
permission, and will refuse to run when it isn't set.$ npm install homey-app-upload-cli -g
homey-app-upload – Homey App Upload
Usage:
homey-app-upload [options] upload
Options:
-h --help Show this screen
--version Show version
-i --incremental Perform incremental updates
-I --incremental-file=<file> File to use for incremental update metadata
-u --url=<url> Homey Uploader Server URL
-n --no-restart Don't restart app after changes have been uploaded
--dry-run Just show which files would have been uploaded
-v --verbose More verbose output
Instead of passing -u, you can set an environment variable HOMEY_APP_UPLOAD_URL
that contains the URL for the upload server:
export HOMEY_APP_UPLOAD_URL=http://192.168.1.100:5481/
First, run athom project --run
to upload the app to Homey initially. Keep it running, and open another window/terminal from which to run (incremental) updates using this CLI tool.
By default, the CLI tool uploads the entire app. It will take into account .gitignore
and .homeyignore
files to determine which files to ignore.
If you want incremental updates, use the -i
option:
$ homey-app-upload -i upload
Incremental updates work by checking the timestamp of a metadata file (--incremental-file
) against the files and directories in the app directory. Only the changed files will be uploaded, typically reducing the upload time significantly when compared to uploading the entire app.
After uploading, the default action is to restart the app. This can be prevented using the -n/--no-restart
option.
FAQs
Homey App Upload library
We found that homey-app-upload-lib demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.