Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
@google-cloud/grafeas
Advanced tools
Grafeas API client for Node.js
A comprehensive list of changes in each version may be found in the CHANGELOG.
Read more about the client libraries for Cloud APIs, including the older Google APIs Client Libraries, in Client Libraries Explained.
Table of contents:
npm install @google-cloud/grafeas
// const projectId = 'my-project';
// instantiate the client.
const grpc = require('@grpc/grpc-js');
const {GrafeasClient} = require('@google-cloud/grafeas');
const client = new GrafeasClient({
sslCreds: grpc.credentials.createInsecure(), // or any other credentials object.
servicePath: '0.0.0.0', // overriding the service path.
port: 8080, // overriding the port.
});
// populate the request.
const formattedName = client.projectPath(projectId);
const request = {
parent: formattedName,
};
// fetch the list of occurrences.
const [resp] = await client.listOccurrences(request);
console.info(resp);
Samples are in the samples/
directory. Each sample's README.md
has instructions for running its sample.
Sample | Source Code | Try it |
---|---|---|
Grafeas.batch_create_notes | source code | |
Grafeas.batch_create_occurrences | source code | |
Grafeas.create_note | source code | |
Grafeas.create_occurrence | source code | |
Grafeas.delete_note | source code | |
Grafeas.delete_occurrence | source code | |
Grafeas.get_note | source code | |
Grafeas.get_occurrence | source code | |
Grafeas.get_occurrence_note | source code | |
Grafeas.list_note_occurrences | source code | |
Grafeas.list_notes | source code | |
Grafeas.list_occurrences | source code | |
Grafeas.update_note | source code | |
Grafeas.update_occurrence | source code | |
Quickstart | source code |
The Grafeas Node.js Client API Reference documentation also contains samples.
Our client libraries follow the Node.js release schedule. Libraries are compatible with all current active and maintenance versions of Node.js. If you are using an end-of-life version of Node.js, we recommend that you update as soon as possible to an actively supported LTS version.
Google's client libraries support legacy versions of Node.js runtimes on a best-efforts basis with the following warnings:
Client libraries targeting some end-of-life versions of Node.js are available, and
can be installed through npm dist-tags.
The dist-tags follow the naming convention legacy-(version)
.
For example, npm install @google-cloud/grafeas@legacy-8
installs client libraries
for versions compatible with Node.js 8.
This library follows Semantic Versioning.
This library is considered to be stable. The code surface will not change in backwards-incompatible ways unless absolutely necessary (e.g. because of critical security issues) or with an extensive deprecation period. Issues and requests against stable libraries are addressed with the highest priority.
More Information: Google Cloud Platform Launch Stages
Contributions welcome! See the Contributing Guide.
Please note that this README.md
, the samples/README.md
,
and a variety of configuration files in this repository (including .nycrc
and tsconfig.json
)
are generated from a central template. To edit one of these files, make an edit
to its templates in
directory.
Apache Version 2.0
See LICENSE
FAQs
Grafeas API client for Node.js
The npm package @google-cloud/grafeas receives a total of 1,778 weekly downloads. As such, @google-cloud/grafeas popularity was classified as popular.
We found that @google-cloud/grafeas demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.