
Research
Malicious fezbox npm Package Steals Browser Passwords from Cookies via Innovative QR Code Steganographic Technique
A malicious package uses a QR code as steganography in an innovative technique.
swagger-ui-cornify
Advanced tools
Cornify plugin for Swagger-UI v3.
This is a lighthearted example of how to create an external plugin for Swagger-UI. This project has a minimal Webpack build pipeline that creates bundles for browser consumption.
The plugin is available on npm as swagger-ui-cornify
, and minified release copies are attached to each GitHub Release.
If you use the script directly, the module will be exposed on the global scope as SwaggerUICornify
.
Load this plugin (either through npm or directly), and provide it to Swagger-UI when you call it:
SwaggerUI({
url: "http://petstore.swagger.io/v2/petstore.yaml",
plugins: [
SwaggerUICornify
]
})
If/when the API definition you're viewing contains an x-cornify: true
statement, magic will happen.
FAQs
Cornify plugin for Swagger-UI v3
The npm package swagger-ui-cornify receives a total of 1 weekly downloads. As such, swagger-ui-cornify popularity was classified as not popular.
We found that swagger-ui-cornify demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
A malicious package uses a QR code as steganography in an innovative technique.
Research
/Security News
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.
Application Security
/Research
/Security News
Socket detected multiple compromised CrowdStrike npm packages, continuing the "Shai-Hulud" supply chain attack that has now impacted nearly 500 packages.