Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Command-line interface and type declarations for Homey Apps.
$ npm i -g homey
To get started run:
$ homey --help
Or read the getting started documentation.
This package ships with built-in plugins to make the development workflow easier. Plugins must be defined in /.homeyplugins.json
in your app's root, and are executed in order.
The compose
plugin copies & merges files, which is useful for very large Homey Apps.
For documentation, refer to Homey Compose.
The zwave
plugin installs homey-meshdriver.
For documentation, refer to AppPluginZwave.
The zigbee
plugin installs homey-meshdriver.
For documentation, refer to AppPluginZigbee.
The rf
plugin installs homey-rfdriver, and copies pairing templates to /.homeycompose/
.
For documentation, refer to AppPluginRF.
The oauth2
plugin installs homey-oauth2app.
For documentation, refer to AppPluginOAuth2.
The log
plugin installs homey-log. You must still require the module in the app yourself:
const { Log } = require('homey-log');
Don't forget to add the HOMEY_LOG_URL
variable to your env.json
.
Please visit https://developer.athom.com for more information.
FAQs
Command-line interface and type declarations for Homey Apps
The npm package homey receives a total of 474 weekly downloads. As such, homey popularity was classified as not popular.
We found that homey demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.