Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
RSED is simple event dispatcher. It dispatches events in sync mode. There's no async/await, all events are non-blocking.
Build your custom application event
export default class CurrentUserSaved {
public user: User;
constructor(user: User) {
this.user = user;
}
}
Build event listeners
You have to build class that implements IListenerProvider.
import { AppEventHandler, IListenerProvider } from "rsed";
export default class CurrentUserEventListener implements IListenerProvider {
getListenersForEvent(event: object): AppEventHandler[] {
if (event instanceof CurrentUserSaved) {
return [this.setAccess];
}
return [];
}
setAccess = (event: CurrentUserSaved) => {
console.log("New user authenticated", event.user);
};
}
Build event dispatcher
import EventDispatcher, { IEventDispatcher } from "rsed";
const eventDispatcher = new EventDispatcher();
eventDispatcher.addListenerProvider(new CurrentUserEventListener());
Dispatch event in your application
eventDispatcher.dispatch(new CurrentUserSaved(currentUser));
Test async event handlers
// add tester helper
export const flushPromises = () => {
return new Promise((resolve) => setImmediate(resolve));
};
export class MyAsyncListener {
public async isSatisfied(newValue: number) {
// await someAction()
}
}
// test
eventDispatcher.dispatch(new MyEvent());
await flushPromises();
expect(MyAsyncListener.isSatisfied).toHaveBeenCalled();
FAQs
Event Dispatcher
The npm package rsed receives a total of 0 weekly downloads. As such, rsed popularity was classified as not popular.
We found that rsed demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.