Socket
Socket
Sign inDemoInstall

slg-vue-components

Package Overview
Dependencies
0
Maintainers
1
Versions
22
Alerts
File Explorer

Advanced tools

Install Socket

Detect and block malicious and high-risk dependencies

Install

slg-vue-components

Dependency Confusion POC by 0xhunter313


Version published
Maintainers
1
0

Weekly downloads

Readme

Source

libsnitch

Find broken npm dependencies from exposed package.json

Example usage

➜ go run libsnitch.go -df domains-500.txt -p 100 -npmd 0.4 -o output.txt 

    _    _ ___  ____ _  _ _ ___ ____ _  _ 
    |    | |__] l__  |\ | |  |  |    |__| 
    l___ | |__] ___] | \| |  |  l___ |  | 


200	localhost:5000  	grunt (dependencies)
200	www.managingmadrid.com  	grunt-contrib-watch (devDependencies)
200	www.seqwater.com.au  	cypress (devDependencies)
...
404	localhost:5000  	dead-dependency-123 (devDependencies)
200	www.ridiculousupside.com  	grunt-stripmq (devDependencies)


‣ Succeeded in 16.380843107s 
‣    targets scanned          500
‣    exposed package.json     4
‣    tested npm dependencies  14
‣ Found 1 broken dependency. 

output.txt

200	http://localhost:5000/package.json	grunt	dependencies
200	http://localhost:5000/package.json	grunt-contrib-watch	devDependencies
200	https://www.ridiculousupside.com/package.json	grunt-newer	devDependencies
200	https://www.managingmadrid.com/package.json	grunt-contrib-jshint	devDependencies
200	https://www.managingmadrid.com/package.json	grunt-contrib-watch	devDependencies
...

Arguments

argtypeDescription
-dstringTarget domain
-dfstringInput file path
-pintParallelism (default 50)
-npmdfloatDelay seconds between requests to npmjs.com (default 0)
-tintRequest timeout in seconds (default 10)
-sboolSimple CLI
-ostringOutput file path

FAQs

Last updated on 19 Jun 2022

Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc