Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
_ _ ____ ____ ____ _ ___
| \ | | / ___| / ___| / ___| | | |_ _|
| \| | | | | | _____ | | | | | |
| |\ | | |___ | |___ |_____| | |___ | |___ | |
|_| \_| \____| \____| \____| |_____| |___|
Usage: ncc <command>
Options:
-V, --version output the version number
-h, --help output usage information
Commands:
init|i 初始化
add|a 填加自定义模板
list|l 展示所有模板
delete|d 删除模板
在src目录中运行
ncc i
,输入业务节点名称,例如我想创建hrwa的wapayment 模块的paydata代码,那我应该输入hrwa/wapayment/paydata
,然后选择自己需要的模板
新增加自定义模板,目前只支持http(s)://xxx.com地址,后期会加入本地缓存文件
展示所有模板信息
删除指定模板,内置两个模板不允许删除
FAQs
ncchr cli
The npm package ncchr receives a total of 2 weekly downloads. As such, ncchr popularity was classified as not popular.
We found that ncchr demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.