Security News
Another Round of TEA Protocol Spam Floods npm, But It’s Not a Worm
Recent coverage mislabels the latest TEA protocol spam as a worm. Here’s what’s actually happening.
By Philipp Burckhardt - Nov 14, 2025
@openfeature/flipt-provider
Advanced tools
@openfeature/flipt-provider
[Flipt](https://www.flipt.io/) is an open source developer friendly feature flagging solution, that allows for easy management and fast feature evaluation.
Flipt Provider
Flipt is an open source developer friendly feature flagging solution, that allows for easy management and fast feature evaluation.
This provider is an implementation on top of the official Flipt Node Server Side SDK.
Installation
$ npm install @openfeature/flipt-provider
Peer Dependencies
Both the OpenFeature SDK and the Flipt Node Server SDK are required as peer dependencies.
Please make sure to install @flipt-io/flipt at versions >= 1.0.0, as the client API is different in earlier versions.
The peer dependency will also enforce the above version.
Example initialization and usage
To initialize the OpenFeature client with Flipt, you can use the following code snippet:
import { FliptProvider } from '@openfeature/flipt';
const provider = new FliptProvider('namespace-of-choice', { url: 'http://your.upstream.flipt.host' });
OpenFeature.setProvider(provider);
After the provider gets initialized, you can start evaluations of feature flags like so:
const client = OpenFeature.getClient();
const details = await client.getStringDetails('nonExistent', 'default', {
targetingKey: 'myentity',
email: 'john@flipt.io',
});
Evaluation Context Transformation
OpenFeature standardizes the evaluation context to include a targetingKey, and some other additional arbitrary properties that each provider can use fit for their use case.
For Flipt, we translate the targetingKey as the entityId, and the rest of the OpenFeature evaluation context as the context in Flipt vernacular. You can find the meaning of those two words here in our API docs.
For example, an OpenFeature Evaluation context that has this structure:
{
"targetingKey": "my-targeting-id",
"email": "john@flipt.io",
"userId": "this-very-long-user-id"
}
will get transformed to the following for Flipt:
{
"entityId": "my-targeting-id",
"context": {
"email": "john@flipt.io",
"userId": "this-very-long-user-id"
}
}
Building
Run nx package providers-flipt to build the library.
Running unit tests
Run nx test providers-flipt to execute the unit tests via Jest.
FAQs
[Flipt](https://www.flipt.io/) is an open source developer friendly feature flagging solution, that allows for easy management and fast feature evaluation.
We found that @openfeature/flipt-provider demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Package last updated on 10 Apr 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
PyPI Expands Trusted Publishing to GitLab Self-Managed as Adoption Passes 25 Percent
PyPI adds Trusted Publishing support for GitLab Self-Managed as adoption reaches 25% of uploads
By Sarah Gooding - Nov 14, 2025
Research
/Security News
Malicious Chrome Extension Exfiltrates Seed Phrases, Enabling Wallet Takeover
A malicious Chrome extension posing as an Ethereum wallet steals seed phrases by encoding them into Sui transactions, enabling full wallet takeover.
By Kirill Boychenko - Nov 12, 2025