Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
TypeScript library built for Node backends to create ZIP files with password protection
Zipster aims to enable developers to easily create password-protected ZIP files. This library relies on a combination of other libraries to function correctly as well as built-in Node functionality.
Although the core behind Zipster is password-protected ZIP files, you can also create passwordless ZIP files and pass in a number of different options to configure how your ZIP files are created.
This project is still in development. Please report any bugs or feature requests as an issue.
This is how to get a copy of this working locally. The only requirement is that Node is installed on the base machine.
$ git clone git@github.com:ToeFungi/zipster.git
$ cd zipster
$ npm i
Use the following command to install the Zipster:
npm i zipster
You can create a ZIP file containing a single file or multiple files, set a password or not and configure how you want the ZIP to be created.
Create ZIP file containing a single file
const path = '/some/path/to/my/file.txt'
const options: Options = {
format: Formats.ZIP
}
const zipster = new Zipster()
zipster.create(path, options)
.then((outputPath: string) => console.log({ outputPath }, 'Successfully created ZIP'))
Create ZIP file containing multiple files
const path = [
'/some/path/to/my/file.txt',
'/some/path/to/my/file.csv'
]
const options: Options = {
format: Formats.ZIP
}
const zipster = new Zipster()
zipster.createBulk(paths, options)
.then((outputPath: string) => console.log({ outputPath }, 'Successfully created ZIP'))
Option | Default | Description |
---|---|---|
format | null | Whether the ZIP should be password protected or not |
password | null | The password for the ZIP if applicable format is specified |
output name | UUID V4 | The name of the ZIP file to be created |
output path | OS Specific | The path to where the ZIP file should be created |
To run tests, you should be able to simply run be able to run the following.
$ npm run test
$ npm run coverage
The testing framework used is Mocha. Chai, Chai-as-promised and nyc are used for assertions and coverage reporting respectively. Ensure that any new changes are covered by an accompanying test suite.
If you find any problems while working with this library, please log an issue here so that development can begin to rectify the error.
This project is completely open source and as such, you are invited to make contributions. Fork the project, make some changes and make the pull request. If you have any feedback regarding the functionality, please don't hesitate to open an issue so this can be resolved. Please ensure that any pull requests have unit tests that cover any additional functionality.
MIT License
Copyright (c) 2021 Alex Pickering
FAQs
TypeScript library built for Node backends to create ZIP files with password protection
The npm package zipster receives a total of 44 weekly downloads. As such, zipster popularity was classified as not popular.
We found that zipster demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.