Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Jade-bot is a Node-based Twitter bot which automates the process of Twittering for @jmthorntonwhat.
This doesn't mean there's never a human behind my Twitter account, just some of my account.
$ git clone <https://github.com/Raindeer44/jade-bot.git>
$ cd jade-bot/
$ npm
$ npm test
Jade-bot is also available on npm:
npm install --global jade-bot
Set up an application on the Twitter account you want to use: https://apps.twitter.com/app/new. Add to the .env
file:
.env
also needs the rate at which you want the bot to retweet (in minutes).
For example, .env
might look something like
CONSUMER_KEY=Fw***********P9
CONSUMER_SECRET=TD************Cq
ACCESS_TOKEN=31**************UC
ACCESS_TOKEN_SECRET=r0************S2
TWITTER_RETWEET_RATE=30
That's all the set up! Now just run
$ npm start
For continuous usage, either run on a server (if you happen to have one lying around) or deploy to Heroku, a serverless architecture or a similar service.
Please fork this repository and contribute back using pull requests.
Any contributions, large or small, major features, bug fixes and integration tests are welcomed and appreciated but will be thoroughly reviewed and discussed.
This bot was created with the help of Spences10's Node.js Twitter bot bootstrap, and with inspiration from @amanhimself.
FAQs
A Twitter retweet and favorite bot
We found that jade-bot demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.