
Security News
Follow-up and Clarification on Recent Malicious Ruby Gems Campaign
A clarification on our recent research investigating 60 malicious Ruby gems.
Ruby gem to wrap the INFURA API which gives HTTP API access to ethereum and IPFS nodes. The API uses the same format as the JSON RPC spec for normal ethereum nodes.
For now, I only need the getBalance
call and so that is all I have built. Feel free to add the rest of the functionality or I may get to it over time...
Installation
gem install infura_ruby
require 'infura_ruby'
# create a client object
infura = InfuraRuby.client(api_key: key)
# get the balance (in wei) of an address
infura.get_balance('0x81F631b8615EaB75d38DaC4d4bce4A5b63e10310') #=> 591686024850016
# This can be qualified with 4 different tags to get the balance at the tag's time.
# 'latest' - latest balance (default) with at least 1 confirmation
# 'pending' - balance including pending transactions
# 'earliest' - balance at the time of the genesis block or earliest known block
# '0x123' - balance at the time of chain height `0x123` (hex string)
# balance including unconfirmed transactions
infura.get_balance('0x81F631b8615EaB75d38DaC4d4bce4A5b63e10310', tag: 'pending')
FAQs
Unknown package
We found that infura_ruby demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
A clarification on our recent research investigating 60 malicious Ruby gems.
Security News
ESLint now supports parallel linting with a new --concurrency flag, delivering major speed gains and closing a 10-year-old feature request.
Research
/Security News
A malicious Go module posing as an SSH brute forcer exfiltrates stolen credentials to a Telegram bot controlled by a Russian-speaking threat actor.