![Malicious npm Package Typosquats react-login-page to Deploy Keylogger](https://cdn.sanity.io/images/cgdhsj6q/production/007b21d9cf9e03ae0bb3f577d1bd59b9d715645a-1024x1024.webp?w=400&fit=max&auto=format)
Research
Security News
Malicious npm Package Typosquats react-login-page to Deploy Keylogger
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
protoblast
Advanced tools
Changelog
0.2.1 (2016-06-06)
queue_drop
option to FunctionQueue, which will limit amount of items
in a function queue by dropping older added tasksArray.likeArray
to determine if an object is like an arrayObject.dissect
will only add numeric array properties to the resultBlast.setTimeout
and Blast.setSchedule
for more precise timersString.randomMac
to generate a random mac addressFunction.getNamespace
to get/create a namespace objectBlast.DEBUG
is now true if there is a DEBUG environment variableReadme
Extend native objects with helpful methods to speed up development, or leave the native objects alone and use bound methods.
For more information and API documentation, visit the Protoblast homepage.
$ npm install protoblast
You can use Protoblast in 2 ways.
This is the easiest way to use all the new methods & shims. Ideal for internal or big projects.
require('protoblast')();
// Now new native methods have been added
var arr = [5,9,3,4,1];
arr.flashsort();
// [1, 3, 4, 5, 9]
You can also get an object that has pre-bound all the new methods, without modifying anything.
It's more verbose, but should be the way to use Protoblast in redistributable modules.
var Blast = require('protoblast')(false);
// Now new native methods have been added
var arr = [5,9,3,4,1];
Blast.Bound.Array.flashsort(arr);
// [1, 3, 4, 5, 9]
FAQs
Unknown package
We found that protoblast demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
Security News
The JavaScript community has launched the e18e initiative to improve ecosystem performance by cleaning up dependency trees, speeding up critical parts of the ecosystem, and documenting lighter alternatives to established tools.
Product
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.