Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
@nlux/langchain
Advanced tools
The LangChain adapters for nlux, the javascript library for building conversational AI interfaces.
This package enables the integration between NLUX and LangChain, the LLM framework.
More specifically ― the package includes the adapter to connect NLUX JS to backends built
using LangServe.
/invoke
and /stream
endpoints to allow for responses to be streamed back as they are generated./input_schema
to construct a matching payload.For more information on how to use this package, please visit:
docs.nlkit.com/nlux/reference/adapters/langchain-langserve
This package @nlux/langchain
is meant for use with the vanilla JS version of NLUX.
If you're looking for the React JS version, please check
the @nlux/langchain-react
package.
NLUX (for Natural Language User Experience) is an open-source JavaScript library that makes it simple to integrate powerful large language models (LLMs) like ChatGPT into your web app or website. With just a few lines of code, you can add conversational AI capabilities and interact with your favourite LLM.
<AiChat />
for UI and useChatAdapter
hook for easy integration.ChatGPT
/ LangChain
🦜 LangServe / HuggingFace
🤗 Inference.For developer documentation, examples, and API reference ― you can visit: docs.nlkit.com/nlux
FAQs
The LangChain adapters for nlux, the javascript library for building conversational AI interfaces.
The npm package @nlux/langchain receives a total of 752 weekly downloads. As such, @nlux/langchain popularity was classified as not popular.
We found that @nlux/langchain demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.