
Research
Malicious npm Packages Impersonate Flashbots SDKs, Targeting Ethereum Wallet Credentials
Four npm packages disguised as cryptographic tools steal developer credentials and send them to attacker-controlled Telegram infrastructure.
Tools and utilities for interacting with the ledger on the fetch network
Python library code for interacting with the Fetch.ai ledger platform.
$ pip3 -U fetchai-ledger-api
The project is a component of a larger ecosystem of projects for developing on the Fetch.ai's platform. Please check out some of the links below:
Make sure that the library is uninstalled from the system (or use a virtualenv) then use the following commnad:
$ python3 setup.py develop
The project uses pytest for running the unit tests. Simple run the following command to exectute all the of tests
$ pytest
This application is licensed under the Apache software license (see LICENSE file). Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
Fetch.AI makes no representation or guarantee that this software (including any third-party libraries) will perform as intended or will be free of errors, bugs or faulty code. The software may fail which could completely or partially limit functionality or compromise computer systems. If you use or implement the ledger, you do so at your own risk. In no event will Fetch.ai be liable to any party for any damages whatsoever, even if it had been advised of the possibility of damage.
FAQs
Tools and utilities for interacting with the ledger on the fetch network
We found that fetchai-ledger-api demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Four npm packages disguised as cryptographic tools steal developer credentials and send them to attacker-controlled Telegram infrastructure.
Security News
Ruby maintainers from Bundler and rbenv teams are building rv to bring Python uv's speed and unified tooling approach to Ruby development.
Security News
Following last week’s supply chain attack, Nx published findings on the GitHub Actions exploit and moved npm publishing to Trusted Publishers.