Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
TypeScript toolset to simplify building peer-to-peer applications using IPFS and Ethereum
A TypeScript toolset to simplify building peer-to-peer smart contract applications using Ethereum, IPFS, and OrbitDB. All the tools you'll need to get started quickly. Smart contracts, storage, MVC, and unit tests with a proven MVC pattern inspired by proven enterprise Java/.NET libraries like Spring.
SpaceMVC makes it easy to build professional mobile, desktop, web, and Node applications using next generation internet technologies.
SpaceMVC provides a pre-configured development environment with reasonable defaults. Start building real apps immediately.
The fastest way to create a new project is to clone the SpaceMVC Starter project. It's an example of a basic CRUD application that saves and loads lists of students for a class roster.
For a more complete example see American Sports Oligarch.
import "core-js/stable"
import "regenerator-runtime/runtime"
import SpaceMVC from "space-mvc";
// Set up Inversify container with dependencies.
//Example bindings. See iversify docs for full details. You'll bind your controllers, services, and DAOs here.
import { FranchiseService } from "./service/franchise-service" //just an example of a service
import { LeagueController } from "./controller/league-controller" //just ann example of a controller.
const container = new Container()
container.bind(FranchiseService).toSelf().inSingletonScope()
container.bind(HomeController).toSelf().inSingletonScope()
/**
* Create Framework 7 init params.
*
* See Framework7 documentation for available options: https://framework7.io/docs/app.html
*
* Please note that the routes field is optional.
* SpaceMVC maps routes with controller annotations.
* Passing a value will disable that mechanism.
*
*/
let f7Config = {
root: '#app', // App root element
id: 'example', // App bundle ID
name: 'SpaceMVC Example', // App name
theme: 'auto', // Automatic theme detection
}
/**
* Configure the Orbit DB store definitions that we'll open in the WALLET_METASTORE (see below)
* For each StoreDefinition it will open an OrbitDB store.
*/
let storeDefinitions:StoreDefinition[] = [{
name: "settings",
type: "kvstore",
load: 100,
options: {}
}]
/*
* Using a truffle contract as an example.
Contracts are available by injecting the ContractService into your services or DAOs.
Call getContract(name) to get the initialized ethers contract.
*/
let truffleJson = require('../truffle/build/contracts/YourContract.json')
let contract:Contract = await ContractService.createContractFromTruffle(truffleJson)
/**
* By default the app will connect the "homestead" ethers provider.
* You can override this by passing a value for defaultProvider
*/
let spaceMvcInit:SpaceMvcInit = {
name: "demo-project",
displayName: "Demo Project",
container: container,
f7Config: f7Config,
storeDefinitions: storeDefinitions,
contracts: [contract],
defaultProvider: new ethers.providers.JsonRpcProvider("http://localhost:7545") //an example to override and connect to ganache
}
await SpaceMVC.init(spaceMvcInit)
Use Inversify to configure and inject dependencies into our services, DAOs, controllers, and more. You can also extend this behavior and bind your own objects to the container. You can also inject the services that SpaceMVC exports into your own classes.
The inversify container can be accessed at
SpaceMVC.getContainer()
SpaceMVC implements a Model-View-Controller pattern.
URL routes are mapped to controller objects with the @routeMap() annotation.
Services are where your business logic goes. A service is a POJO annotated with the @service() annotation.
Data Access Objects (DAOs) store and retreive data from OrbitDB, MFdb and IPFS. A DAO is a POJO with a @dao() annotation.
SpaceMVC uses ethers.js under the hood for contract communication but we also use Truffle to develop Solidity unit test suites.
We have a basic interface that's agnostic to implementation but an easy way to import Truffle JSON files.
interface Contract {
name:string,
networks:Network[],
abi:any
}
interface Network {
networkId:string, //network ID is exposed by provider.send("net_version")
address:string //the address where the contract is deployed.
}
Example: This will grab all the networking information out of the Truffle JSON and into the right format.
import { ContractService } from "space-mvc"
let truffleJson = require('../truffle/build/contracts/YourContract.json')
let contract:Contract = await ContractService.createContractFromTruffle(truffleJson)
A Metastore is an object that loads and connects to a group of OrbitDB stores. This allows you to define all of the stores that your application needs and open them all at once.
A Metastore named "WALLET_METASTORE" is created by default. It's only writeable by the user's wallet address. The app will open and load all of the stores and OrbitDB will sync all of the stores to all of the user's devices.
Interface
interface Metastore {
name:string
writeAccess?: string[]
storeDefinitions?:StoreDefinition[]
addresses?: any
stores?: any
}
A store definition contains info to open an OrbitDB.
Creating a custom Metastore
//Configure a metastore a name, an array of keys with write access to the stores and the store definitions.
let metastore = {
name: "NBA_STATS",
writeAccess: ["0x3Cf6079639D48D37b741D4bcF7c04f2C02062C46"],
storeDefinitions: [
{
name: "player",
type: "mfsstore",
load: 100,
options: {
schema: {
playerKey: { unique: true },
firstName: { unique: false },
lastName: { unique: false }
}
}
}
]
}
//Connect
await metastoreService.connect(metastore)
//To load a store later
await metastoreService.getStore("YOUR METASTORE NAME", "THE ORBITDB STORE NAME IN STORE DEFINITION")
//Load a store from the default wallet metastore
let store = metastoreService.getWalletStore("student")
//Create a listener
SpaceMVC.getEventEmitter().on('spacemvc:initFinish', async () => {
//Do stuff.
})
Production:
npm run build
Development:
npm run build:dev
Tests:
npm run test
FAQs
TypeScript toolset to simplify building peer-to-peer applications using IPFS and Ethereum
The npm package space-mvc receives a total of 0 weekly downloads. As such, space-mvc popularity was classified as not popular.
We found that space-mvc demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.