Security News
Another Round of TEA Protocol Spam Floods npm, But It’s Not a Worm
Recent coverage mislabels the latest TEA protocol spam as a worm. Here’s what’s actually happening.
By Philipp Burckhardt - Nov 14, 2025
@coveo/headless
Advanced tools
@coveo/headless
[](https://badge.fury.io/js/@coveo%2Fheadless)
Coveo Headless
Using the library: Coveo Headless Library Official Documentation.
Entry points
The @coveo/headless package exposes several entry points.
The entry point from which you will import Coveo Headless resources depends on the engine type you are using:
| Engine type | Entry point |
|---|---|
| Search engine | @coveo/headless |
| Search SSR engine | @coveo/headless/ssr |
| Search SSR engine (in open alpha) | @coveo/headless/ssr-next |
| CaseAssist engine | @coveo/headless/case-assist |
| Commerce engine | @coveo/headless/commerce |
| Commerce SSR engine (in open beta) | @coveo/headless/ssr-commerce |
| Commerce SSR engine (in open alpha) | @coveo/headless/ssr-commerce-next |
| Insight engine | @coveo/headless/insight |
| Recommendation engine | @coveo/headless/recommendation |
Contributing
Getting started
Once you have cloned the repo, follow the instructions in the top-level README.md to install dependencies and link packages.
To start the project in development mode, run:
pnpm run dev
To build the library for production, run:
pnpm run build
To run the unit tests, run:
pnpm test
To run the unit tests and watch, run:
pnpm run test:watch
To use @coveo/headless locally, you have to build the package by running:
pnpm run build
Redux
The headless project intensively uses "Redux" along with "Redux Toolkit", so prior knowledge is necessary.
Source folder structure
The base of the /src folder should only contain exports.
/ssr contains all logic and types related to server-side rendering (SSR) engines and controllers
/app contains app-wide setup: Redux store, root reducer, middlewares.
/state contains interfaces for the various application states.
/features has folders that each owns the functionalities of a feature, which is a subpart of the redux state. Following the "ducks pattern", those files contain Redux slices & reducers that define the state shape. Each feature folder has a file with actions that can be exported with the project.
/controllers contains all the headless controllers in folders. Those controllers are exported and used to provide abstraction from the store's features by being closer to the actual UI controllers of a customer's application.
/utils contains common useful utilities.
/api contains everything regarding api calls.
/test contains test mocks.
Contribution guide: Adding a new controller.
Please see the contributor guide for guidance.
Contribution guide: Troubleshooting bundle content.
Please see the contributor guide for guidance.
FAQs
[](https://badge.fury.io/js/@coveo%2Fheadless)
The npm package @coveo/headless receives a total of 60,541 weekly downloads. As such, @coveo/headless popularity was classified as popular.
We found that @coveo/headless demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 15 open source maintainers collaborating on the project.
Package last updated on 05 Nov 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
PyPI Expands Trusted Publishing to GitLab Self-Managed as Adoption Passes 25 Percent
PyPI adds Trusted Publishing support for GitLab Self-Managed as adoption reaches 25% of uploads
By Sarah Gooding - Nov 14, 2025
Research
/Security News
Malicious Chrome Extension Exfiltrates Seed Phrases, Enabling Wallet Takeover
A malicious Chrome extension posing as an Ethereum wallet steals seed phrases by encoding them into Sui transactions, enabling full wallet takeover.
By Kirill Boychenko - Nov 12, 2025