Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
@faststore/api
Advanced tools
The only API you need for building your next ecommerce.
This package defines a front-end first, GraphQL API inspired by clean architecture and schema.org.
GraphQL types defined in this repo extends and simplifies schema.org. This makes it easier to make your frontend search friendly. Also, by using the clean architecture, all types defined on this schema are not platform specific, but created to resolve an specific business case on your frontend, like rendering listprices, sellers etc.
Alongside the GraphQL type definitions, we provide standard implementations for common ecommerce platforms. Currently we support:
With the typedefs and resolvers, you can create an executable schema and deploy anywhere you want. For instance, one use case would be:
yarn add @faststore/api
GraphQL is very versatile and can run in many places. To setup the schema in an apollo server, just:
import { getSchema } from '@faststore/api'
import { ApolloServer } from 'apollo-server'
// Get the Store schema
const schema = await getSchema({ platform: 'vtex', account: 'my-account', environment: 'vtexcommercestable' })
// Setup Apollo Server
const server = new ApolloServer({ schema });
// The `listen` method launches a web server.
server.listen().then(({ url }) => {
console.log(`🚀 Server ready at ${url}`);
});
GraphQL is a very versatile language. By using the exported getSchema
function, you can not only extend the base schema but also redefine the whole resolvers implementation.
To extend the schema, one can:
import { getSchema } from '@faststore/api'
import { makeExecutableSchema, mergeSchemas } from '@graphql-tools/schema'
import { ApolloServer } from 'apollo-server'
// Setup type extensions
const typeDefs = `
extend type Product {
customField: String!
}
`
// Setup custom resolvers
const resolvers = {
Product: {
customField: async () => {
...
// Your code goes here
...
}
}
}
// Create custom schema
const customSchema = makeExecutableSchema({ resolvers, typeDefs })
const storeApiSchema = await getSchema({ platform: 'vtex', ...})
// Merge schemas into a final schema
const finalSchema = mergeSchemas(schemas: [
storeApiSchema,
customSchema
])
// Setup Apollo Server
const server = new ApolloServer({ schema });
// The `listen` method launches a web server.
server.listen().then(({ url }) => {
console.log(`🚀 Server ready at ${url}`);
});
If your ecommerce platform is not supported you have two options.
Inline resolves means you are going to write all resolvers for the api schema in your project or in an external library. This is recommended if you are supporting a niche platform and want to have full control over how each field is processed.
To create your own resolvers, you can:
import { getTypeDefs } from '@faststore/api'
import { ApolloServer } from 'apollo-server'
import { makeExecutableSchema } from '@graphql-tools/schema'
// Get the Store API TypeDefs
const typeDefs = getTypeDefs()
const resolvers = {
...
// add your resolvers
...
}
// Create a runnable schema
const schema = makeExecutableSchema({ resolvers, typeDefs })
// You now have a runnable GraphQL schema, you can create a server or run queries locally.
FAQs
FastStore API Connect to your favorite ecommerce platform
The npm package @faststore/api receives a total of 3,287 weekly downloads. As such, @faststore/api popularity was classified as popular.
We found that @faststore/api demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.