Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
s3-parallel-get
Advanced tools
s3cmd is great, but too slow for downloading lots of files from s3. Instead, s3__parallel-get lets you download many files concurrently, meaning you get your files quicker.
Downloading 150MB of log files split over 150 files, s3cmd took around 100 seconds, whereas s3-parallel-get took just under 25 seconds.
Just a standard npm install,
npm install -g s3-parallel-get
export AWS_KEY=<key>
export AWS_SECRET=<secret>
s3get --bucket <bucket> --prefix <path/to/files>
s3__parallel-get was built for fetching log files, so output is sent to stdout
for piping in to other commands.
Progress is printed to stderr,
found 4 objects in 'logs/production/access.log/2014/02/22'
retrieved object #2 - PROD/access.log/2014/02/22/access.i-13e5f250-b
retrieved object #4 - PROD/access.log/2014/02/22/access.i-13e5f250-d
retrieved object #3 - PROD/access.log/2014/02/22/access.i-13e5f250-c
retrieved object #1 - PROD/access.log/2014/02/22/access.i-13e5f250-a
done
var s3get = require('../lib/aws-parallel-get').s3get
// Set some options
var opts = {
bucket: program.bucket,
prefix: program.prefix,
key: program.key,
secret: program.secret
});
var s3 = new s3get(opts)
// write a handler for the s3 stream
s3.on('data', function (data) {
process.stdout.write("*" + data)
})
// kick it off
s3.go();
FAQs
Get files from s3, in parallel
The npm package s3-parallel-get receives a total of 1,109 weekly downloads. As such, s3-parallel-get popularity was classified as popular.
We found that s3-parallel-get demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.