Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
lynx-express
Advanced tools
Express middleware for sending response status counts and response times to statsd
Express Middleware for sending data to StatsD.
Please refer to the Lynx documentation for more in depth details for configuring the Lynx StatsD Client.
Once your client is configured, it's pretty straight forward to configure lynx-express.
Installation:
npm install lynx-express
Configuration:
// Import lynx and lynx-express
var Lynx = require('lynx');
var LynxExpress = require('lynx-express');
// Setup your Lynx StatsD client as normal, optionally passing a prefix (like 'express')
var metrics = new Lynx('localhost', 8125, {prefix: 'express'});
// Create the Express middleware passing in the Lynx StatsD Client you created
var statsdMiddleware = LynxExpress(metrics);
// Tell Express to use your statsD middleware
server.use(statsdMiddleware());
By default lynx-express will track the counts for each response code and a response time for the overall system. What's more useful is to have timing for each route in your Express app. lynx-express can be configured to give you per-route timing by adding an option timeByUrl to the middleware constructor.
server.use(statsdMiddleware({timeByUrl: true})}
FAQs
Express middleware for sending response status counts and response times to statsd
The npm package lynx-express receives a total of 138 weekly downloads. As such, lynx-express popularity was classified as not popular.
We found that lynx-express demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.