Research
Security News
Threat Actor Exposes Playbook for Exploiting npm to Build Blockchain-Powered Botnets
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
nativescript-sentry
Advanced tools
NativeScript plugin that uses sentry-android and sentry-cocoa to catch native errors/stack traces and send them to a sentry server.
:seven: – This is the documentation of v2 which is compatible with NativeScript 7
:construction: – Currently in alpha state, use with caution!
:six: – If you are using NativeScript 6, use a v1 release.
ns plugin add nativescript-sentry
Add the following line to your AndroidManifest.xml
within the <application>-tag
:
<meta-data android:name="io.sentry.dsn" android:value="__YOUR_DSN_HERE__" />
import { Sentry } from 'nativescript-sentry';
const dsn = 'https://<key>:<secret>@host/<project>';
Sentry.init(dsn);
import { SentryModule } from 'nativescript-sentry/angular';
NgModule({
// ...
imports: [
SentryModule.forRoot({
dsn: 'https://<key>:<secret>@host/<project>',
discardUncaughtJsExceptions: true
})
]
// ...
});
Note: this plugin adds a custom ErrorHandler to your angular app
Sentry.captureException(exeption: Error, options?: ExceptionOptions);
export interface ExceptionOptions {
// Object of additional Key/value pairs which generate breakdowns charts and search filters in Sentry.
tags?: object;
// Object of unstructured data which is stored with events.
extra?: object;
}
Example:
try {
throw new Error('Whoops!');
} catch (error) {
Sentry.captureException(error, {});
}
Sentry.captureMessage(message: string, options?: MessageOptions)
export interface MessageOptions {
level?: Level;
// Object of additional Key/value pairs which generate breakdowns charts and search filters.
tags?: object;
// Object of unstructured data which is stored with events.
extra?: object;
}
export enum Level {
Fatal = 'fatal',
Error = 'error',
Warning = 'warning',
Info = 'info',
Debug = 'debug'
}
Sentry.captureBreadcrumb(breadcrumb: BreadCrumb)
export interface BreadCrumb {
message: string;
category: string;
level: Level;
}
Sentry.setContextUser(user: SentryUser)
export interface SentryUser {
id: string;
email?: string;
username?: string;
}
Sentry.setContextTags(tags: object)
Sentry.setContextExtra(extra: object)
Sentry.clearContext();
If you have a native exception and the app exits, the plugin will save the log and send it in the next app startup, this is how the native plugins are implemented and it is expected behavior.
Sentry has an optional dependency on SLF4J on Android, which when not present will log an error about it not being in the application.
System.err: SLF4J: Failed to load class "org.slf4j.impl.StaticLoggerBinder".
System.err: SLF4J: Defaulting to no-operation (NOP) logger implementation
System.err: SLF4J: See http://www.slf4j.org/codes.html#StaticLoggerBinder for further details.
To get rid of this log warning you can add a dependency to your app's app.gradle file located in App_Resources/Android/app.gradle
to include:
compile 'org.slf4j:slf4j-nop:1.7.25'
in the dependencies. See the demo app.
To run and test the demo apps you need to replace the placeholder __YOUR_DSN_HERE__
by your own DSN in the following files:
Thanks to @jeremypele and @jerbob92!
Thanks to @bradmartin!
Package was forked from the unmaintained package danielgek/nativescript-sentry. Access to original npm package has been transfered. Many thanks to @danielgek for his original work on this plugin!
Thanks to @bradmartin and @jerbob92!
BREAKING CHANGES
capture()
method was deprecated in favor of captureMessage
/captureException
Features
FAQs
Sentry.io NativeScript plugin.
We found that nativescript-sentry demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Security News
NVD’s backlog surpasses 20,000 CVEs as analysis slows and NIST announces new system updates to address ongoing delays.
Security News
Research
A malicious npm package disguised as a WhatsApp client is exploiting authentication flows with a remote kill switch to exfiltrate data and destroy files.