Security News
Another Round of TEA Protocol Spam Floods npm, But It’s Not a Worm
Recent coverage mislabels the latest TEA protocol spam as a worm. Here’s what’s actually happening.
By Philipp Burckhardt - Nov 14, 2025
@aw-web-design/x-default-browser
Advanced tools
@aw-web-design/x-default-browser
Detect default web browser of the current user, cross-platform (Win/Lin/Mac)
x-default-browser
This cross-platform module finds out the default browser for current user.
Tested on Windows 10 64-bit, Windows 7 64-bit, Windows XP 32-bit, Ubuntu 14.04 64-bit (en-US locale), Mac OS X.
It requires nodejs and npm. If you don't have node, grab it at nodejs.org. Node installer bundles npm (node package manager)
How it works
- Windows:
- checks registry value
HKCU\Software\Clients\StartMenuInternet
- checks registry value
- Linuxes:
- reads the output of
xdg-mime query default x-scheme-handler/http
- reads the output of
- OS X:
- delegated to default-browser-id from Sindre Sorhus
Usage as a nodejs module
$ npm install x-default-browser
var defaultBrowser = require('x-default-browser');
defaultBrowser(function (err, res) {
// in case of error, `err` will be a string with error message; otherwise it's `null`.
console.dir(res);
// => {
// isIE: false,
// isFirefox: true,
// isChrome: false,
// isChromium: false,
// isOpera: false,
// isWebkit: false,
// identity: 'firefox.exe',
// commonName: 'firefox'
// }
});
commonNameis portable, it will beie,safari,firefox,chrome,chromium,operaorunknownisBlinkis true for Chrome, Chromium, OperaisWebkitis true for Chrome, Chromium, Opera, Safariidentitykey is platform-specific.- On Windows, it's the prefix you can use for querying
HKLM\Software\Clients\StartMenuInternet\<prefix>keys to find out details of the browser. It'll be one ofiexplore.exe,firefox.exe,google chrome,chromium.<somerandomkeyhere>,operastable. - On Ubuntu, it will be
firefox.desktop,google-chrome.desktop,chromium-browser.desktoporopera.desktop - On Mac OS X, it will be the bundle ID:
com.apple.Safari,com.google.chrome,com.operasoftware.Opera,org.mozilla.firefoxetc
- On Windows, it's the prefix you can use for querying
Usage from command line
$ npm install -g x-default-browser
$ x-default-browser
firefox
Command line version outputs the commonName key, i.e. ie, safari, firefox, chrome, chromium, opera or unknown.
Linux support
This module was only tested on Ubuntu. Compatibility reports and fixes for other distros are more than welcome! Use GitHub issues or email: (jakub.g.opensource) (gmail)
License
MIT © Jakub Gieryluk
Related projects
- default-browser-id (OS X)
- win-detect-browsers (Windows)
- browser-launcher2 (cross-platform)
- opener (cross-platform)
- node-open (cross-platform)
FAQs
Detect default web browser of the current user, cross-platform (Win/Lin/Mac)
The npm package @aw-web-design/x-default-browser receives a total of 973,355 weekly downloads. As such, @aw-web-design/x-default-browser popularity was classified as popular.
We found that @aw-web-design/x-default-browser demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 07 Aug 2022
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
PyPI Expands Trusted Publishing to GitLab Self-Managed as Adoption Passes 25 Percent
PyPI adds Trusted Publishing support for GitLab Self-Managed as adoption reaches 25% of uploads
By Sarah Gooding - Nov 14, 2025
Research
/Security News
Malicious Chrome Extension Exfiltrates Seed Phrases, Enabling Wallet Takeover
A malicious Chrome extension posing as an Ethereum wallet steals seed phrases by encoding them into Sui transactions, enabling full wallet takeover.
By Kirill Boychenko - Nov 12, 2025