Research
Security News
Threat Actor Exposes Playbook for Exploiting npm to Build Blockchain-Powered Botnets
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
truffle-artifactor
Advanced tools
This package saves contract artifacts into JSON files
const Artifactor = require("truffle-artifactor");
const artifactor = new Artifactor(__dirname);
artifactor.save({/*...*/}); // => a promise saving MyContract.json to a given destination
👏
.json
files, which can then be included in your project with a simple require
.The artifactor can be used with truffle-contract, which provides features above and beyond web3
:
ES6
and async/await
.from
address or gas
.$ npm install truffle-artifactor
Here, we'll generate a .json
files given a JSON object like @truffle/contract-schema. This will give us a file which we can later require
into other projects and contexts.
const Artifactor = require("truffle-artifactor");
const artifactor = new Artifactor(__dirname);
// See truffle-schema for more info: https://github.com/trufflesuite/truffle/tree/develop/packages/contract-schema
const contractData = {
contractName: "...", // String; optional.
abi: ..., // Array; required.
metadata: "...", // String; optional.
bytecode: "...", // String; optional.
"x-some-dependency": ... // String, Number, Object, or Array: optional.
};
artifactor.save(contractData);
// The file ./MyContract.json now exists, which you can
// import into your project like any other Javascript file.
artifactor.save(contractData)
Save contract data as a .json
file. Returns a Promise.
contractData
: Object. Data that represents this contract:
{
contractName: "MyContract", // String; optional. Defaults to "Contract".
abi: ..., // Array; required. Application binary interface.
metadata: "...", // String; optional. Contract metadata.
bytecode: "...", // String; optional. Contract-creation binary without resolve library links.
deployedBytecode: "...", // String; optional. On-chain deployed binary without resolve library links.
sourceMap: "...", // String; optional. Source mapping for bytecode.
deployedSourceMap: "...", // String; optional. Source mapping for deployedBytecode.
source: "...", // String; optional. Uncompiled source code for contract.
sourcePath: "...", // String; optional. File path for uncompiled source code.
ast: ..., // Object; optional. JSON representation of contract source code, as output by compiler.
legacyAST: ..., // Object; optional. Legacy JSON representation of contract source code, as output by compiler.
compiler: ..., // Object; optional. Compiler "type" and "properties".
networks: ..., // Object; optional. Mapping of network ID keys to network object values (address information, links to other contract instances, and/or contract event logs).
schemaVersion: "...", // String; optional. Schema version used by contract object representation.
updatedAt: "...", // String; optional. Time contract object representation was generated/most recently updated.
devdoc: "...", // String; optional. Developer documentation.
userdoc: "...", // String; optional. User documentation.
"x-custom-property": ... // String, Number, Object, or Array: optional. Custom property. Keys must be prefixed with "x-".
}
artifactor.saveAll(contracts)
Save many contracts to the filesystem at once. Returns a Promise.
contracts
: Object. Keys are the contract names and the values are contractData
objects, as in the save()
function above:
{
"MyContract": {
"abi": ...,
"bytecode": "..."
}
"AnotherContract": {
// ...
}
}
$ npm test
MIT
FAQs
A contract packager for Ethereum and Javascript
The npm package truffle-artifactor receives a total of 91 weekly downloads. As such, truffle-artifactor popularity was classified as not popular.
We found that truffle-artifactor demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 8 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Security News
NVD’s backlog surpasses 20,000 CVEs as analysis slows and NIST announces new system updates to address ongoing delays.
Security News
Research
A malicious npm package disguised as a WhatsApp client is exploiting authentication flows with a remote kill switch to exfiltrate data and destroy files.