Research
Security News
Threat Actor Exposes Playbook for Exploiting npm to Build Blockchain-Powered Botnets
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
thirdweb
Advanced tools
Publish and deploy smart contracts without dealing with private keys
The thirdweb CLI is your one-stop-shop for publishing custom contracts for your team or the world to use. The CLI uploads all necessary data to decentralized storage and makes it available to deploy via the thirdweb sdk or thirdweb dashboard.
This brings all the capabilities of thirdweb to your own custom contracts.
npx thirdweb@latest deploy
This command will:
From the thirdweb dashboard, you can review and deploy your contracts on any supported EVM chain.
Deploying contracts this way gives you access to:
npx thirdweb@latest publish
Creates an official published contract, along with:
Publishing contracts this way gives you shareable URL to let others deploy your contracts in one click. It lets you manage published versions and get attribution for deployed contracts. Published contracts are registered on-chain (Polygon) and IPFS, for free (gasless).
Deploying published contracts give deployers access to automatic SDKs to integrate into their app and dashboards to manage and monitor the deployed contracts.
npx thirdweb@latest detect
As you're developing your contracts, you may want to implement Extensions to unlock functionality on the SDKs (ie. nft minting with automatic upload to IPFS) and the dashboard (ie. generated UI to manage permissions). This command will show what extensions were detected on your contract, unlocking the corresponding functionality on the SDKs and dashboard.
We recommend using npx to always get the latest version. Alternatively, you can install the CLI as a global command on your machine:
npm i -g @thirdweb-dev/cli
To publish, you need to be in a directory that contains a project which the CLI is compatible with. The projects we support so far:
Clone the repo and run this command after installing the CLI tool:
$ cd examples/hardhat
$ npx thirdweb@latest publish
The simplest way to work on the CLI locally is to:
git clone https://github.com/thirdweb-dev/js.git
pnpm i && pnpm build
js/packages/cli
Run the build:watch
command to compile any changes in real time$ npm install -g ./
$ pnpm build:watch
FAQs
thirdweb <a href="https:
The npm package thirdweb receives a total of 26,688 weekly downloads. As such, thirdweb popularity was classified as popular.
We found that thirdweb demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Security News
NVD’s backlog surpasses 20,000 CVEs as analysis slows and NIST announces new system updates to address ongoing delays.
Security News
Research
A malicious npm package disguised as a WhatsApp client is exploiting authentication flows with a remote kill switch to exfiltrate data and destroy files.