Security News
ESLint is Now Language-Agnostic: Linting JSON, Markdown, and Beyond
ESLint has added JSON and Markdown linting support with new officially-supported plugins, expanding its versatility beyond JavaScript.
sabre-mythx
Advanced tools
Minimum viable MythX client. Compiles a Solidity smart contract and sends it to MythX API for security analysis. Analysis steps performed:
$ npm install -g sabre-mythx
Use Metamask or a web3-enabled browser to sign up for a free account on the MythX website and set your API password. Set up your environment using the Ethereum address you signed up with as the username (for increased convenience add those two lines into your .bashrc
or .bash_profile
).
export MYTHX_ETH_ADDRESS=0x(...)
export MYTHX_PASSWORD=password
$ sabre sample/token.sol
Note that Sabre doesn't deal with Solidity files that contain multiple contract classes. If solc-js
returns more than one contract it will analyze the first one in the list.
Feel free to fork and reuse this code to build awesome tools.
MythX tool builders will earn revenue share in Dai when we go live with paid subscription plans. Details will be released soon. Ping us on Discord if you'd like to get involved.
Some links:
FAQs
Client for the MythX smart contract security analysis service
The npm package sabre-mythx receives a total of 14 weekly downloads. As such, sabre-mythx popularity was classified as not popular.
We found that sabre-mythx demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
ESLint has added JSON and Markdown linting support with new officially-supported plugins, expanding its versatility beyond JavaScript.
Security News
Members Hub is conducting large-scale campaigns to artificially boost Discord server metrics, undermining community trust and platform integrity.
Security News
NIST has failed to meet its self-imposed deadline of clearing the NVD's backlog by the end of the fiscal year. Meanwhile, CVE's awaiting analysis have increased by 33% since June.