Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Hydra is a NodeJS light-weight library for building distributed computing applications such as microservices
Hydra is a NodeJS package which facilitates building distributed applications such as Microservices.
Hydra offers features such as service discovery, distributed messaging, message load balancing, logging, presence, and health monitoring. It was announced at EmpireNode 2016.
If you're just getting started with Node Microservices and you have ExpressJS experience you should first look at our HydraExpress project.
If you want a lighter-weight Express integration or you're using Hapi or Koa, then checkout the Hydra Integration Project.
We're building a dedicated documentation site for hydra at: https://www.hydramicroservice.com Our older docs are still available at: Full documentation
Hydra works great on AWS using Docker containers and Swarm mode, see: https://www.hydramicroservice.com/docs/docker/docker.html
Are you using or planning on using Hydra on your project? Join us on Slack for more direct support. https://fwsp-hydra.slack.com To join, email cjus34@gmail.com with your desired username and email address (for invite).
There are many projects on NPM which contain the name hydra
. The following are official projects related to the Hydra - microservice library.
A special thanks to Michael Stillwell for generously transferring his Hydra
project name on NPM!
FAQs
Hydra is a NodeJS light-weight library for building distributed computing applications such as microservices
The npm package hydra receives a total of 380 weekly downloads. As such, hydra popularity was classified as not popular.
We found that hydra demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.