Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
opentracing-javascript
Advanced tools
This library is a JavaScript implementation of Open Tracing API intended for use both on the server and in the browser.
This library is a JavaScript implementation of Open Tracing API intended for use both on the server and in the browser.
Distributed tracing and context propagation have become important analysis tools for today's multi-layer distributed systems comprised of numerous micro-services implemented in different languages. The success of these tools is dependent on pervasive instrumentation of applications and libraries with trace context propagation support.
The OpenTracing project (http://opentracing.github.io) provides a multi-lingual standard for application-level instrumentation that's loosely coupled to any particular downstream tracing or monitoring system. In this way, adding or switching tracing implementations becomes a single-step code change.
In the current version, opentracing-javascript
provides the core API and a default no-op implementation.
A reference implementation and a set of simple examples are planned.
See DEV.md for further development status and notes.
// TBD.
Trace is a virtual representation of the path a request takes through the layers and services of a (potentially distributed) system.
Span is a representation of any logical unit of work in the system. Spans can be nested and ordered to model parent-child and casual relationships. A Trace is tree of Spans.
TBD.
TBD.
npm publish
See DEV.md for additional detail.
FAQs
This library is a JavaScript implementation of Open Tracing API intended for use both on the server and in the browser.
We found that opentracing-javascript demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.