Research
Security News
Threat Actor Exposes Playbook for Exploiting npm to Build Blockchain-Powered Botnets
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
webpack-sentry-plugin
Advanced tools
A webpack plugin to upload source maps to Sentry.
Using npm:
$ npm install webpack-sentry-plugin --save-dev
Using yarn:
$ yarn add webpack-sentry-plugin --dev
Require webpack-sentry-plugin
:
var SentryPlugin = require('webpack-sentry-plugin');
Configure webpack to output source maps. Recommended reading: webpack docs, Sentry docs
Add to webpack config:
var config = {
plugins: [
new SentryPlugin({
// Sentry options are required
organisation: 'your-organisation-name',
project: 'your-project-name',
apiKey: process.env.SENTRY_API_KEY,
// Release version name/hash is required
release: function() {
return process.env.GIT_SHA
}
})
]
}
exclude
: RegExp to match for excluded files
suppressErrors
: Display warnings instead of failing webpack build - useful in case webpack compilation is done during deploy on multiple instances
var config = {
plugins: [
new SentryPlugin({
// Exclude uploading of html
exclude: /\.html$/,
...
})
]
}
include
: RegExp to match for included files
var config = {
plugins: [
new SentryPlugin({
// Only upload foo.js & foo.js.map
include: /foo.js/,
...
})
]
}
filenameTransform
: Function to transform filename before uploading to Sentry
var config = {
plugins: [
new SentryPlugin({
filenameTransform: function(filename) {
return 'a-filename-prefix-' + filename
}
})
]
}
organisation
: Sentry organisation to upload files to
project
: Sentry project to upload files to
apiKey
: Sentry api keys. See Sentry docs for info on how to create one
release
: Release name to attach source maps to. Can be string or function that returns a string
Contributions are welcome 😄. To run the tests, please ensure you have the relevant environment variables set up. You can cp .env.example .env
and fill it in.
Warning: The test suite will create releases & upload files. They should be cleaned up afterward, but ensure that you are not overwriting something important!
npm test
: Runs the test suitenpm run build
: Compiles distribution buildFAQs
Webpack plugin to upload source maps to Sentry
The npm package webpack-sentry-plugin receives a total of 1,792 weekly downloads. As such, webpack-sentry-plugin popularity was classified as popular.
We found that webpack-sentry-plugin demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Security News
NVD’s backlog surpasses 20,000 CVEs as analysis slows and NIST announces new system updates to address ongoing delays.
Security News
Research
A malicious npm package disguised as a WhatsApp client is exploiting authentication flows with a remote kill switch to exfiltrate data and destroy files.