🚀 Big News: Socket Acquires Coana to Bring Reachability Analysis to Every Appsec Team.Learn more
Socket
Book a DemoInstallSign in
Socket

slg-vue-components

Package Overview
Dependencies
Maintainers
1
Versions
22
Alerts
File Explorer

Advanced tools

Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install
Package version was removed
This package version has been unpublished, mostly likely due to security reasons

slg-vue-components

Dependency Confusion POC by 0xhunter313

2.3.1
unpublished
npm
Version published
Weekly downloads
1
-50%
Maintainers
1
Weekly downloads
 
Created
Source

libsnitch

Find broken npm dependencies from exposed package.json

Example usage

➜ go run libsnitch.go -df domains-500.txt -p 100 -npmd 0.4 -o output.txt 

    _    _ ___  ____ _  _ _ ___ ____ _  _ 
    |    | |__] l__  |\ | |  |  |    |__| 
    l___ | |__] ___] | \| |  |  l___ |  | 


200	localhost:5000  	grunt (dependencies)
200	www.managingmadrid.com  	grunt-contrib-watch (devDependencies)
200	www.seqwater.com.au  	cypress (devDependencies)
...
404	localhost:5000  	dead-dependency-123 (devDependencies)
200	www.ridiculousupside.com  	grunt-stripmq (devDependencies)


‣ Succeeded in 16.380843107s 
‣    targets scanned          500
‣    exposed package.json     4
‣    tested npm dependencies  14
‣ Found 1 broken dependency. 

output.txt

200	http://localhost:5000/package.json	grunt	dependencies
200	http://localhost:5000/package.json	grunt-contrib-watch	devDependencies
200	https://www.ridiculousupside.com/package.json	grunt-newer	devDependencies
200	https://www.managingmadrid.com/package.json	grunt-contrib-jshint	devDependencies
200	https://www.managingmadrid.com/package.json	grunt-contrib-watch	devDependencies
...

Arguments

argtypeDescription
-dstringTarget domain
-dfstringInput file path
-pintParallelism (default 50)
-npmdfloatDelay seconds between requests to npmjs.com (default 0)
-tintRequest timeout in seconds (default 10)
-sboolSimple CLI
-ostringOutput file path

FAQs

Package last updated on 19 Jun 2022

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts