Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
javascripting
Advanced tools
Learn JavaScript by adventuring around in the terminal.
Looking for more interactive tutorials like this? Go to nodeschool.io.
Having issues with javascripting? Get help troubleshooting in the nodeschool discussions repo, or on gitter:
Make sure Node.js is installed on your computer.
Install it from nodejs.org
On Windows and using v4 or v5 of Node.js? Make sure you are using at least 5.1.0, which provides a fix for a bug on Windows where you can't choose items in the menu.
javascripting
with npm
Open your terminal and run this command:
npm install --global javascripting
The --global
option installs this module globally so that you can run it as a command in your terminal.
If you get an EACCESS
error, the simplest way to fix this is to rerun the command, in either of the following ways:
sudo npm install --global javascripting
You can also fix the permissions so that you don't have to use sudo
. Take a look at this npm documentation:
https://docs.npmjs.com/getting-started/fixing-npm-permissions
Open your terminal and run the following command:
javascripting
You'll see the menu:
Navigate the menu with the up & down arrow keys.
Choose a challenge by hitting enter.
In the gif I'm using the command line editor nano
(here are some basic usage tips for nano).
You can use any editor you like.
atom or brackets are both good options.
Open an issue in the nodeschool/discussions repo: https://github.com/nodeschool/discussions
Include the name javascripting
and the name of the challenge you're working on in the title of the issue.
Code contributions welcome! Please check our documentation on contributing to get started.
Add these challenges:
MIT
FAQs
Learn JavaScript by adventuring around in the terminal.
The npm package javascripting receives a total of 211 weekly downloads. As such, javascripting popularity was classified as not popular.
We found that javascripting demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 9 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.