![Kill Switch Hidden in npm Packages Typosquatting Chalk and Chokidar](https://cdn.sanity.io/images/cgdhsj6q/production/6199b2d12ffc9c39c6ca08c94d7b3217946ad92a-1024x1024.webp?w=400&fit=max&auto=format)
Research
Security News
Kill Switch Hidden in npm Packages Typosquatting Chalk and Chokidar
Socket researchers found several malicious npm packages typosquatting Chalk and Chokidar, targeting Node.js developers with kill switches and data theft.
.. image:: https://badge.fury.io/py/inflate64.svg :target: https://badge.fury.io/py/inflate64
.. image:: https://ci.codeberg.org/api/badges/12505/status.svg :target: https://ci.codeberg.org/repos/12505
The inflate64
is a python package to provide Deflater
and Inflater
class to compress and
decompress with Enhanced Deflate compression algorithm.
The project is in Production/Stable
status.
You can install it with pip
command as usual.
.. code-block::
pip install inflate64
You can extract compressed data by instantiating Inflater
class and call inflate
method.
.. code-block:: python
import inflate64 decompressor = inflate64.Inflater() extracted = decompressor.inflate(data)
You can also compress data by instantiating Deflater
class and call deflate
method.
.. code-block:: python
import inflate64 compressor = inflate64.Deflater() compressed = compressor.deflate(data) compressed += compressor.flush()
This library is free software; you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation; either version 2.1 of the License, or (at your option) any later version.
This library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.
You should have received a copy of the GNU Lesser General Public License along with this library; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
.. note::
Please note that Enhanced Deflate algorithm is also known as DEFLATE64
:sup:TM
that is a registered trademark of PKWARE, Inc.
FAQs
deflate64 compression/decompression library
We found that inflate64 demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers found several malicious npm packages typosquatting Chalk and Chokidar, targeting Node.js developers with kill switches and data theft.
Security News
pnpm 10 blocks lifecycle scripts by default to improve security, addressing supply chain attack risks but sparking debate over compatibility and workflow changes.
Product
Socket now supports uv.lock files to ensure consistent, secure dependency resolution for Python projects and enhance supply chain security.