Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
This stack uses new tools from Amazon Web Services to completely redefine how to build massively scalable (and cheap) web applications.
####Follow the "Installation Guide" in the Wiki to get started!
##Architecture
####API
There are no servers are included in this stack. The entire back-end is comprised of Lambda functions which are organized in the api
folder. Each of your API URLs points to one of these Lambda functions. This way, the code for each API Route is completely isolated, enabling you to develop/update/configure/deploy/maintain code for specific API urls at any time without affecting any other part of your application(!!!). Think of each Lambda function as a "Controller", in traditional MVC structure.
You can either use the AWS Management Console's API Gateway User Interface to create your API, or define your API in the api_swagger.json
file and deploy instantly via AWS's Swagger Import Tool (Recommended).
####Lib
The lib
folder/module contains re-useable code you can use across all of your Lambda functions, which can be thought of as your "Models". It's an npm module that can be required into your Lambda functions, like any other.
Since Lambda can be slow to initialize on cold-starts (after ~5 mins of inactivity), this module is designed so that you do not have to require
all of its code, but instead you can require in only the code that your Lambda function needs. For example:
// This only loads code needed for the User Model
var ModelUser = require('jaws-lib').models.User;
While developing, make sure you create an npm sym-link between this module and all of your Lambda functions. This way, all of the changes in the lib
folder will be instantly available in every one of your Lambda functions when you run/test them locally. Check out the wiki for instructions.
####CLI This stack comes with its own command line interface to help you test your API Lambda Functions locally and deploy them. The commands are:
Run A Lambda Function Locally
Make sure you in the root folder of your Lambda function (api/users/signup) and enter this:
$ jaws run
Deploy A Lambda Function
Make sure you in the root folder of your Lambda function (api/users/signup) and enter this:
$ jaws deploy
Start A Local Server
Make sure you in thesite
folder of the JAWS app and enter this:
$ jaws server
####Site Your website/client-side application. These assets can be uploaded and served from S3 for super fast response times.
##Roadmap
site
to use the API Routes, after they are deployed##Starring
Javascript:
AWS Services:
Other:
##Other
FAQs
The Javascript + AWS Web Application Boilerplate
We found that jaws-stack demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.