
Research
/Security News
Compromised npm Packages in the AsyncAPI Namespace Deliver Miasma Botnet Loader
4 compromised asyncapi packages deliver miasma botnet loader on macOS, Linux and Windows.
node-bigfoot
Advanced tools
Auto download and install wow interface addons if bigfoot client can not update.
nodejs编写的自动更新大脚插件工具,因为bigfoot客户端总是报“下载配置文件出错”的错误,而NGA论坛提供了绿色安装包,因此有了这个自动更新工具。
前往https://nodejs.org并下载安装nodejs
npm install node-bigfoot
config.js
| 配置项 | 说明 |
|---|---|
| distDir | 更新插件的位置,解压出来的文件夹为Interface |
| downloads.dir | 下载文件的存放地址 |
| downloads.keepArchive | 是否保留下载的压缩包 |
node index.js
FAQs
Auto download and install wow interface addons if bigfoot client can not update.
We found that node-bigfoot demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Research
/Security News
4 compromised asyncapi packages deliver miasma botnet loader on macOS, Linux and Windows.

Research
/Security News
A compromised jscrambler npm release added a malicious preinstall hook that runs hidden native binaries on Linux, macOS, and Windows.

Research
/Security News
A malicious .NET package is typosquatting the Braintree SDK to steal live payment card data, merchant API keys, and host secrets from production apps.