Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
A High Performance HTTP Server for Ruby
require 'agoo'
Agoo::Server.init(6464, './root')
class MyHandler
def call(req)
[ 200, { }, [ "hello world" ] ]
end
end
handler = MyHandler.new
Agoo::Server.handle(:GET, "/hello", handler)
Agoo::Server.start()
# To run this example type the following then go to a browser and enter a URL
# of localhost:6464/hello.
#
# ruby hello.rb
require 'agoo'
class Query
def hello
'hello'
end
end
class Schema
attr_reader :query
def initialize
@query = Query.new()
end
end
Agoo::Server.init(6464, './root', thread_count: 1, graphql: '/graphql')
Agoo::Server.start()
Agoo::GraphQL.schema(Schema.new) {
Agoo::GraphQL.load(%^type Query { hello: String }^)
}
sleep
# To run this GraphQL example type the following then go to a browser and enter
# a URL of localhost:6464/graphql?query={hello}
#
# ruby hello.rb
gem install agoo
As agoo supports rack compatible apps you can use it for rails applications:
Add agoo to the Gemfile:
# Gemfile
gem 'agoo'
Install bundle:
$ bundle install
Start rails with agoo as server:
$ rails server -u agoo
Enjoy the increased performance!
Agoo is Japanese for a type of flying fish. This gem flies. It is a high performance HTTP server that serves static resource at hundreds of thousands of fetches per second. A simple hello world Ruby handler at over 100,000 requests per second on a desktop computer. That places Agoo at about 85 times faster than Sinatra and 1000 times faster than Rails. In both cases the latency was two orders of magnitude lower or more. Checkout the benchmarks.
Agoo supports the Ruby rack API which allows for the use of rack compatible gems such as Hanami and Rails. Agoo also supports WebSockets and SSE.
Agoo is not available on Windows.
Some examples can be found in the example
directory. Some other
documented walk through examples of using Agoo are in the misc
directory. These examples are described in markdown files. Some like
the song example are simple while others like the
glue are more complex. The documented walk through
examples are:
Version 2.11.0 supports GraphQL subscriptions. TLS (SSL,HTTPS) support added. Examples for both. Related, the graphql-benchmark repo was given to the-benchmarker.
Agoo has a new GraphQL module with a simple, easy to use API. Checkout the hello or song examples. An Instrumental Intro to GraphQL with Ruby is a walk through.
Agoo takes first place as the highest throughput on web-frameworks benchmarks. Latency was not at the top but release 2.5.2 improves that. The Agoo-C benchmarks it at the top. The fastest web server across all languages.
Clustered Agoo is ready. For slower application and a machine with multiple cores a significant improvement is performance is realized. The application must be stateless in that no data is shared between workers.
WebSocket and SSE are supported and a PR has been submitted to updated the Rack spec. Go over to the proposed Rack extension and give it a look and a thumbs-up or heart if you like it.
Agoo now serves Rails static assets more than 8000 times faster than the default Puma. Thats right, 8000 times faster.
Releases are made from the master branch. The default branch for checkout is the develop branch. Pull requests should be made against the develop branch.
Get supported Agoo with a Tidelift Subscription. Security updates are supported.
Documentation: http://rubydoc.info/gems/agoo or http://www.ohler.com/agoo/doc/index.html
GitHub repo: https://github.com/ohler55/agoo
RubyGems repo: https://rubygems.org/gems/agoo
WABuR repo: https://github.com/ohler55/wabur has an option to use Agoo
Perfer repo: https://github.com/ohler55/perfer
FAQs
Unknown package
We found that agoo demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.