Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
modshot is a CLI utility that captures screenshots (png image) of UI modules and compares with an existing baseline image. If a baseline is not present, a new baseline is created. It is a warpper on top of PhantomCSS, to provide an easy mechanism for visual regression.
modshot can operate in two modes
HTML
files. If a file is found loads it with PhantomJS, takes a screenshot and puts them in a screenshots
directory adjacent to the HTML file. For subsequent runs, these screenshots are used as baselines. modshot assumes that you follow a modular UI architecture, where each of the UI component lives in its own directory along with the test files and mock HTML.If both modes (static HTML & URL) are provided, modshot starts both of them in parallel. If a modshot run fails, but the UI change was intentional, then the developer has to manually delete the baseline. modshot will create a new baseline in the next run.
Install modshot
$ npm install -g modshot
To run modshot
USAGE modshot [options]*
Options:
--in-dir | -i The input directory to recurse and fetch the HTML files.
Uses current working directory if not specified
--url | -u The web page URL to take screenshots
--out-dir | -o The output directory to save the screenshots.
Optional when an input directory is provided, as screenshots are saved adjacent to the HTML files.
When a URL is provided and output directory is missing, current working directory is used as output directory
--selectors | -s A list of selectors to be applied on the HTML files or URL
--exclude | -e Paths|files|directories to be excluded. node_modules excluded by default.
A list can be provided -e test -e dist
--tolerance | -t Mismatch tolerance percentage. Defaults to 0.05%
--help | -h Displays this information
Example 1:
modshot -i src/ui-modules -s .box -s .test -e temp
Example 2:
modshot -u http://pages.ebay.com/sitemap.html -s h1 -s .btn -o screenshots
Example 3:
modshot -i src/ui-modules -u http://pages.ebay.com/sitemap.html -o screenshots -t 15
Running modshot
with no options, uses the current directory as the input directory and scans for static HTML files.
##Testing
The testing suite is available in the test directory. To run the tests - clone/fork the repo,
install the package $ npm install
and run
$ npm test
##Issues Have a bug or a feature request? Please open a new issue
##Author Senthil Padmanabhan
##License Copyright (c) 2015 eBay Inc.
Released under the MIT License http://www.opensource.org/licenses/MIT
FAQs
Takes screenshot of UI modules and compare with baselines using PhatomCSS
The npm package modshot receives a total of 0 weekly downloads. As such, modshot popularity was classified as not popular.
We found that modshot demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.