Security News
High-Severity RCE Vulnerability Disclosed in next-mdx-remote
HashiCorp disclosed a high-severity RCE in next-mdx-remote affecting versions 4.3.0 to 5.x when compiling untrusted MDX on the server.
By Sarah Gooding - Feb 12, 2026
Latest Threat Research:Malicious dYdX Packages Published to npm and PyPI After Maintainer Compromise.Details →
zcash
:dollar: Minimal Zcash library for Node.js
Note: This library has been succeeded by the isomorphic library stdrpc.
npm install zcash --save
Features
- A fast, concise codebase, with zero dependencies.
- Supports all commands listed in the zcash Payment API.
- Test suite!
To Do
- Write a more full test suite.
API
Zcash.auto()
Returns a new Zcash instance, after reading the username and password from HOME/.zcash/zcash.conf. You can then use all the RPC commands as normal.
const rpc = Zcash.auto();
rpc.z_listaddresses().then(addresses => {
console.log(addresses);
});
new Zcash(options)
Returns a new Zcash instances, with the specified options.
options
Type: object
username
The RPC username.
Type: string
password
The RPC password.
Type: string
host
The RPC host.
Type: string
port
The RPC port.
Type: number
const Zcash = require("zcash");
const rpc = new Zcash({
username: "__username__",
password: "__password__"
});
rpc.z_listaddresses().then(addresses => {
console.log(addresses);
});
[ 'zcW36oxxUKViWZsFUb6SUDLr61b3N6EaY9oRt8zPYhxFAUGRwUNCLuGFfd2yxYrDgM5ouLkTDHMRdGNgVqJgriHncbjRedN' ]
FAQs
zcash library for Node
The npm package zcash receives a total of 4 weekly downloads. As such, zcash popularity was classified as not popular.
We found that zcash demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 12 Mar 2018
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
OpenClaw Skill Marketplace Emerges as Active Malware Vector
Security researchers report widespread abuse of OpenClaw skills to deliver info-stealing malware, exposing a new supply chain risk as agent ecosystems scale.
By Sarah Gooding - Feb 09, 2026
Security News
The Next Open Source Security Race: Triage at Machine Speed
Claude Opus 4.6 has uncovered more than 500 open source vulnerabilities, raising new considerations for disclosure, triage, and patching at scale.
By Sarah Gooding - Feb 06, 2026