
Research
Malicious npm Packages Impersonate Flashbots SDKs, Targeting Ethereum Wallet Credentials
Four npm packages disguised as cryptographic tools steal developer credentials and send them to attacker-controlled Telegram infrastructure.
jmap-draft-client
Advanced tools
This repository provides a JavaScript library to make requests against a JMAP server. It is a client-side implementation of the JMAP specification. It is developed using ES6 and transpiled to ES5 code using babel.js.
Non-exhaustive list of features:
The library is provided as a NPM or Bower packages, thus to install either use:
npm install jmap-draft-client
or
bower install jmap-draft-client
depending on your preferred package manager.
The library is very easy to use, all you need to do is create an instance of the Client class, then use its fluent API to send some JMAP requests:
new jmapDraft.Client(<your Transport>, <your PromiseProvider>)
.withAPIUrl('https://jmap.my.server.com')
.withAuthenticationToken('YourAuthenticationToken')
.getMailboxes()
.then((mailboxes) => {
// Do something with the list of mailboxes
}, (err) => {
// An error occured
});
Once you're familiar with the library, head on to the API documentation to find out what's possible...
There's also some code samples included in the samples folder.
git clone https://ci.open-paas.org/stash/scm/olibs/jmap-draft-client.git
cd jmap-draft-client
npm install
grunt
More detailled instructions can be found in the contributing section.
If you are a maintainer of this project, to release a new version check this project https://ci.linagora.com/linagora/lgs/openpaas/openpaas-release-module
FAQs
This lib help to make requests against a JMAP server
The npm package jmap-draft-client receives a total of 9 weekly downloads. As such, jmap-draft-client popularity was classified as not popular.
We found that jmap-draft-client demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Four npm packages disguised as cryptographic tools steal developer credentials and send them to attacker-controlled Telegram infrastructure.
Security News
Ruby maintainers from Bundler and rbenv teams are building rv to bring Python uv's speed and unified tooling approach to Ruby development.
Security News
Following last week’s supply chain attack, Nx published findings on the GitHub Actions exploit and moved npm publishing to Trusted Publishers.