Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
imessagemodule
Advanced tools
This is a node module that allows you to send iMessages, assuming you are running on a Mac that's signed in to an iMessage account.
Like this:
var imessagemodule = require("iMessageModule");
imessagemodule.sendMessage("recipient email, phone, or chat title", "message text", function(err) {});
It's really that simple! And you can send the messages as quickly as you like. iMessageModule will queue up them and send them as quickly as Messages.app will allow.
Nothing else on npm seems to deal with group chats correctly. I wanted something to use in my own project that I believed worked reliably and as quickly as possible. This uses an Automator script to run handle interacting with Messages.app. Should work with OS X 10.7 or better.
There's already a pretty good library for that on npm at imessage but personally I just read the Messages SQLite database directly in my other projects at imessageclient, iMessageWebClient, and imessagebot.
This would be better if it used some private APIs within OS X, but could be improved to use more. Private APIs within OS X should be able to be used to completely send messages without the use of Messages.app, but I haven't figured out how to do so yet. Right now I am using some private APIs to open a new message window and prefilling the To: field. Maybe you can help out and contribute? Check out nodeprivatemessageskit for more info.
FAQs
A fast and reliable module for easily sending iMessages from your Mac
The npm package imessagemodule receives a total of 6 weekly downloads. As such, imessagemodule popularity was classified as not popular.
We found that imessagemodule demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.