Security News
The Risks of Misguided Research in Supply Chain Security
Snyk's use of malicious npm packages for research raises ethical concerns, highlighting risks in public deployment, data exfiltration, and unauthorized testing.
@octokit/plugin-paginate-rest
Advanced tools
The @octokit/plugin-paginate-rest npm package is a plugin for Octokit, which is a GitHub API client. It simplifies the process of paginating through REST API responses, allowing users to easily retrieve all items from a list endpoint that supports pagination. This is particularly useful when dealing with GitHub's REST API, which often limits the number of items returned in a single response.
Paginate through REST API responses
This feature allows users to paginate through the issues of a GitHub repository. The code sample demonstrates how to use the plugin with Octokit to retrieve all issues from a specified repository.
const { Octokit } = require('@octokit/core');
const { paginateRest } = require('@octokit/plugin-paginate-rest');
const MyOctokit = Octokit.plugin(paginateRest);
const octokit = new MyOctokit({ auth: 'personal-access-token' });
async function getAllIssues(owner, repo) {
const issues = await octokit.paginate('GET /repos/{owner}/{repo}/issues', {
owner: owner,
repo: repo
});
return issues;
}
Simple-paginator is a package that provides simple pagination functionality. It is not specifically designed for GitHub's REST API or any other API, but it can be used to add pagination to any list of items. Unlike @octokit/plugin-paginate-rest, it does not integrate with Octokit and does not automatically handle API pagination.
Octokit plugin to paginate REST API endpoint responses
Browsers |
Load
|
---|---|
Node |
Install with
|
const MyOctokit = Octokit.plugin(paginateRest);
const octokit = new MyOctokit({ auth: "secret123" });
// See https://developer.github.com/v3/issues/#list-issues-for-a-repository
const issues = await octokit.paginate("GET /repos/{owner}/{repo}/issues", {
owner: "octocat",
repo: "hello-world",
since: "2010-10-01",
per_page: 100,
});
If you want to utilize the pagination methods in another plugin, use composePaginateRest
.
function myPlugin(octokit, options) {
return {
allStars({owner, repo}) => {
return composePaginateRest(
octokit,
"GET /repos/{owner}/{repo}/stargazers",
{owner, repo }
)
}
}
}
octokit.paginate()
The paginateRest
plugin adds a new octokit.paginate()
method which accepts the same parameters as octokit.request
. Only "List ..." endpoints such as List issues for a repository are supporting pagination. Their response includes a Link header. For other endpoints, octokit.paginate()
behaves the same as octokit.request()
.
The per_page
parameter is usually defaulting to 30
, and can be set to up to 100
, which helps retrieving a big amount of data without hitting the rate limits too soon.
An optional mapFunction
can be passed to map each page response to a new value, usually an array with only the data you need. This can help to reduce memory usage, as only the relevant data has to be kept in memory until the pagination is complete.
const issueTitles = await octokit.paginate(
"GET /repos/{owner}/{repo}/issues",
{
owner: "octocat",
repo: "hello-world",
since: "2010-10-01",
per_page: 100,
},
(response) => response.data.map((issue) => issue.title)
);
The mapFunction
gets a 2nd argument done
which can be called to end the pagination early.
const issues = await octokit.paginate(
"GET /repos/{owner}/{repo}/issues",
{
owner: "octocat",
repo: "hello-world",
since: "2010-10-01",
per_page: 100,
},
(response, done) => {
if (response.data.find((issues) => issue.title.includes("something"))) {
done();
}
return response.data;
}
);
Alternatively you can pass a request
method as first argument. This is great when using in combination with @octokit/plugin-rest-endpoint-methods
:
const issues = await octokit.paginate(octokit.issues.listForRepo, {
owner: "octocat",
repo: "hello-world",
since: "2010-10-01",
per_page: 100,
});
octokit.paginate.iterator()
If your target runtime environments supports async iterators (such as most modern browsers and Node 10+), you can iterate through each response
const parameters = {
owner: "octocat",
repo: "hello-world",
since: "2010-10-01",
per_page: 100,
};
for await (const response of octokit.paginate.iterator(
"GET /repos/{owner}/{repo}/issues",
parameters
)) {
// do whatever you want with each response, break out of the loop, etc.
console.log(response.data.title);
}
Alternatively you can pass a request
method as first argument. This is great when using in combination with @octokit/plugin-rest-endpoint-methods
:
const parameters = {
owner: "octocat",
repo: "hello-world",
since: "2010-10-01",
per_page: 100,
};
for await (const response of octokit.paginate.iterator(
octokit.issues.listForRepo,
parameters
)) {
// do whatever you want with each response, break out of the loop, etc.
console.log(response.data.title);
}
composePaginateRest
and composePaginateRest.iterator
The compose*
methods work just like their octokit.*
counterparts described above, with the differenct that both methods require an octokit
instance to be passed as first argument
octokit.paginate()
wraps octokit.request()
. As long as a rel="next"
link value is present in the response's Link
header, it sends another request for that URL, and so on.
Most of GitHub's paginating REST API endpoints return an array, but there are a few exceptions which return an object with a key that includes the items array. For example:
items
)check_runs
)check_suites
)repositories
)installations
)octokit.paginate()
is working around these inconsistencies so you don't have to worry about it.
If a response is lacking the Link
header, octokit.paginate()
still resolves with an array, even if the response returns a single object.
See CONTRIBUTING.md
FAQs
Octokit plugin to paginate REST API endpoint responses
The npm package @octokit/plugin-paginate-rest receives a total of 8,911,462 weekly downloads. As such, @octokit/plugin-paginate-rest popularity was classified as popular.
We found that @octokit/plugin-paginate-rest demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Snyk's use of malicious npm packages for research raises ethical concerns, highlighting risks in public deployment, data exfiltration, and unauthorized testing.
Research
Security News
Socket researchers found several malicious npm packages typosquatting Chalk and Chokidar, targeting Node.js developers with kill switches and data theft.
Security News
pnpm 10 blocks lifecycle scripts by default to improve security, addressing supply chain attack risks but sparking debate over compatibility and workflow changes.