
Research
PyPI Package Disguised as Instagram Growth Tool Harvests User Credentials
A deceptive PyPI package posing as an Instagram growth tool collects user credentials and sends them to third-party bot services.
serverless-api-gateway-execution-log-manager
Advanced tools
Serverless plugin for setting log retention and deleting API Gateway execution logs during stack update/removal
This Serverless Framework plugin manages the API Gateway execution log groups automatically created in CloudWatch when execution logging is enabled in serverless.yml
. When enabling these logs, API Gateway automatically creates a CloudWatch log group named API-Gateway-Execution-Logs_[RestApiId]/[stage]
. This log group is not part of the CloudFormation stack deployed by Serverless Framework.
The plugin does the following:
npm install serverless-api-gateway-execution-log-manager --save-dev
Version 1.1.1 is compatible with Serverless Framework v3, but it uses the legacy logging interface. Version 2.0.0 and later uses the new logging interface.
serverless-api-gateway-execution-log-manager | Serverless Framework |
---|---|
≤ v1.1.0 | v1.x, v2.x |
v1.1.1 | v1.x, v2.x, v3.x |
≥ v2.0.0 | v3.x |
Add the following to your serverless.yml
:
plugins:
- serverless-api-gateway-execution-log-manager
provider:
logs:
restApi:
level: INFO
executionLogging: true
fullExecutionData: true
logRetentionInDays: 7 # also applied to the execution logs with the plugin
This plugin does not have any configuration options (yet).
FAQs
Serverless plugin for setting log retention and deleting API Gateway execution logs during stack update/removal
The npm package serverless-api-gateway-execution-log-manager receives a total of 26 weekly downloads. As such, serverless-api-gateway-execution-log-manager popularity was classified as not popular.
We found that serverless-api-gateway-execution-log-manager demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
A deceptive PyPI package posing as an Instagram growth tool collects user credentials and sends them to third-party bot services.
Product
Socket now supports pylock.toml, enabling secure, reproducible Python builds with advanced scanning and full alignment with PEP 751's new standard.
Security News
Research
Socket uncovered two npm packages that register hidden HTTP endpoints to delete all files on command.