Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
jupiter-node-sdk
Advanced tools
A thin wrapper over the Jupiter blockchain API with some utility functions to make doing common tasks like fetching data and encrypting/decrypting data easy.
$ npm install -s jupiter-node-sdk
import JupiterClient from 'jupiter-node-sdk'
const client = JupiterClient({
server: `https://jpr.gojupiter.tech`,
address: `JUP-XXX-XXX`,
passphrase: `your secret phrase here`,
encryptSecret: `optional alphanumeric password to encrypt data going to blockchain`, // DEFAULT: passphrase
})
client.nqtToJup(stringOfNqtAmount)
client.jupToNqt(stringOfJupAmount)
const cipherText = await client.encrypt(
`plain text to encrypt with AES-256 bit encryption`
)
const plainDecryptedText = await client.decrypt(`cipher text`)
// secretPhrase is basically ERC-20 mnemonic that you can build yourself
const {
address,
publicKey,
requestProcessingTime,
account,
} = await client.createNewAddress(secretPhrase)
const balanceJup = await client.getBalance(`JUP-XXX-XXX`)
// sender is address in constructor above
await client.sendMoney(recipientJupAddress)
// store any data you want (object should be a Javascript object) on the blockchain
await client.storeRecord(object)
const txns = await client.getAllTransactions()
// to make any generic Jupiter/NXT API request you can use #request as shown below
// which uses axios under the hood
await this.request('get', '/nxt', {
params: {
requestType: 'getBlockchainTransactions',
account: `JUP-XXX-XXX`,
withMessage: true,
type: 1,
},
})
I love FOSS (free and open source software) and for the most part don't want to charge for the software I build. It does however take a good bit of time keeping up with feature requests and bug fixes, so if you have the desire and ability to send me a free coffee, it would be greatly appreciated!
3D779dP5SZo4szHivWHyFd6J2ESumwDmph
0xF3ffa9706b3264EDd1DAa93D5F5D70C8f71fAc99
GACH6YMYFZ574FSGCV7IJXTGETEQL3DLQK64Z6DFGD57PZL5RH6LYOJT
JUP-TUWZ-4B8Z-9REP-2YVH5
FAQs
A thin wrapper around the Jupiter blockchain APIs.
The npm package jupiter-node-sdk receives a total of 1 weekly downloads. As such, jupiter-node-sdk popularity was classified as not popular.
We found that jupiter-node-sdk demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.