Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
javascripting
Advanced tools
Learn JavaScript by adventuring around in the terminal.
Looking for more interactive tutorials like this? Go to nodeschool.io.
Having issues with javascripting? Get help troubleshooting in the nodeschool discussions repo, or on gitter:
![Gitter](https://badges.gitter.im/Join Chat.svg)
Make sure Node.js is installed on your computer.
Install it from nodejs.org/download
javascripting
with npm
Open your terminal and run this command:
npm install --global javascripting
The --global
option installs this module globally so that you can run it as a command in your terminal.
Having issues with installation? If you get an EACCESS error you can prefix the command with
sudo
, but also take a look at this npm documentation for fixing permissions so that you don't have to usesudo
: https://docs.npmjs.com/getting-started/fixing-npm-permissions
Open your terminal and run the following command:
javascripting
You'll see the menu:
Navigate the menu with the up & down arrow keys.
Choose a challenge by hitting enter.
In the gif I'm using the command line editor nano
(here are some basic usage tips for nano).
You can use any editor you like.
atom or brackets are both good options.
Open an issue in the nodeschool/discussions repo: https://github.com/nodeschool/discussions
Include the name javascripting
and the name of the challenge you're working on in the title of the issue.
Add these challenges:
MIT
FAQs
Learn JavaScript by adventuring around in the terminal.
The npm package javascripting receives a total of 211 weekly downloads. As such, javascripting popularity was classified as not popular.
We found that javascripting demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 9 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.