Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
By Socket Research Team - Dec 02, 2024
Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More →
23andme 
JavaScript wrapper for the 23andMe API.
Installation
Install the package with NPM:
$ npm install 23andme
Usage
Minimal example:
import API from "23andme";
let clientId = "fake_client_id";
let clientSecret = "fake_client_secret";
let redirectUri = "http://localhost:9000/receive_code";
let scope = ["ancestry"];
let api = new API(clientId, clientSecret, redirectUri, scope);
function receiveCode(code) {
api.auth(code)
.then(() => api.ancestry())
.then(ancestry => console.log(ancestry))
.catch(err => console.error(err));
}
As can be seen, the package exposes an API wrapper class that can be instantiated. This class has the following methods:
constructor(clientId, clientSecret, redirectUri, scope)- Creates an instance of the class.
auth(code)- Authenticates with the 23andMe API by exchanging an authorization code for an authorization token.
- Returns a Promise of the authorization token.
- Call this method first before you make any API requests!
user()- Retrieves data from the API's
/userendpoint. - Returns a Promise of the endpoint's response data.
- Retrieves data from the API's
names()- Retrieves data from the API's
/namesendpoint. - Returns a Promise of the endpoint's response data.
- Retrieves data from the API's
haplogroups()- Retrieves data from the API's
/haplogroupsendpoint. - Returns a Promise of the endpoint's response data.
- Retrieves data from the API's
ancestry()- Retrieves data from the API's
/ancestryendpoint. - Returns a Promise of the endpoint's response data.
- Retrieves data from the API's
familyMembers()- Retrieves data from the API's
/family_membersendpoint. - Returns a Promise of the endpoint's response data.
- Retrieves data from the API's
relatives()- Retrieves data from the API's
/relativesendpoint. - Returns a Promise of the endpoint's response data.
- Retrieves data from the API's
And the following properties:
authUri- The URI to redirect the user's Web browser to in order for them to login to 23andMe and be granted an authorization code. (When 23andMe sends the authorization code to your server, pass it to the
auth()method!)
- The URI to redirect the user's Web browser to in order for them to login to 23andMe and be granted an authorization code. (When 23andMe sends the authorization code to your server, pass it to the
baseUri- The base URI of the 23andMe API.
token- The authorization token granted when
auth()was called.
- The authorization token granted when
Disclaimer
The package is not officially affiliated with 23andMe in any way. Use at own risk.
FAQs
JavaScript wrapper for the 23andMe API.
We found that 23andme demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 18 Apr 2016
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Research
Typosquatting Cryptographic Libraries: Malicious npm Packages Threaten Crypto Developers with Keylogging and Wallet Theft
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
By Kirill Boychenko - Nov 27, 2024
Security News
Weekly Downloads Now Available in npm Package Search Results
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.
By Sarah Gooding - Nov 26, 2024