Research
Security News
Threat Actor Exposes Playbook for Exploiting npm to Build Blockchain-Powered Botnets
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
@outreach/client-addon-sdk
Advanced tools
<!-- omit in toc --> # Outreach client extensibility SDK
This document contains all the information a developer needs to create an Outreach addon.
If you have any questions/comments/concerns about the client's extensibility, please email us at cxt-sdk@outreach.io.
NOTE: This document is an early preview of the client extensibility framework whose primary purpose is to speed up the collaboration and scenario exploration with potential addon creators. It will be changing at a rapid pace until the official release of the platform.
Table of content
When an Outreach user goes to a specific part of the Outreach application (e.g., opportunity page), the application will check if that user has installed addons for that part of the app and if yes:
The client extensibility framework supports a few integration methods with different coding requirements and provides a different integration level with Outreach. Each one of the methods requires one or more steps to be implemented based on the addon requirements.
Every addon needs to have an addon web page, which will Outreach users see loaded as a source of addon iframe. This page implementation has to follow a very small set of requirements.
During the development phase, addon creators can skip this requirement and use only a Locally hosted addon page without the need to have a publicly available page.
Every addon also needs to create and upload a manifest file. That manifest file contains things like the URL where the addon web page is located, contextual information which addon needs from Outreach, details about Outreach API access, etc.
If your addon is stateless (e.g., currency exchange calculator addon) or your addon has independent initialization (e.g., initialize itself based on its cookie), there is no need for any additional work to be done.
Go to manifest file page to learn more.
All stateful addons would need contextual information from Outreach to initialize themselves in the proper state. For that, they need to parse from the URL a set of contextual information (e.g., opportunity id, prospect email, etc.) sent by Outreach.
Go to host url parameters parsing page to learn more.
Most of the addons would want to have deeper integration with the Outreach application (e.g., to notify Outreach user about some addon event), and for that, the addon will need to integrate the Outreach client sdk.
Go to Outreach client SDK page to learn more.
Some of the addons will need to have client access to Outreach API, and for that, they will need to add support on the addon server required for obtaining and refreshing access tokens. This will include implementing additional endpoints, server to server calls to Outreach API, token caching, etc.
Go to Outreach API access page to learn more about API access requirements.
If you have any questions/comments/concerns about the extensibility, please check the FAQ or email us at cxt-sdk@outreach.io.
There are two types of addons you can create with the Outreach client sdk: application addon and tab addon.
Application addon is a type of addon where the addon creator wants to bring its all app to Outreach.
This type of app has an icon in the left side menu at the same level as other Outreach icons. Clicking on that icon will load an iframe taking the whole space and showing the addon host page defined in the manifest.
Application addon can receive only user and organisation contextual information.
Application addon can define a special notifications endpoint, which will enable it to implement things as unread notifications badge decoration, show informational toast, etc., even before Outreach user interacted with the addon.
Tab addon is an addon that enables you to load your application in a context of a specific account, prospect, or opportunity. Your application is being loaded as an additional tab beside other standard Outreach tabs.
Tab addons are loaded after the tab is being opened. In addition to the organization and user context available to application addons, they can receive current account context (account tab), current prospect context (prospect tab), and current opportunity context (opportunity tab).
Tab addons do not support the notification feature application addons have.
FAQs
<!-- omit in toc --> # Outreach client extensibility SDK
The npm package @outreach/client-addon-sdk receives a total of 15 weekly downloads. As such, @outreach/client-addon-sdk popularity was classified as not popular.
We found that @outreach/client-addon-sdk demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 204 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Security News
NVD’s backlog surpasses 20,000 CVEs as analysis slows and NIST announces new system updates to address ongoing delays.
Security News
Research
A malicious npm package disguised as a WhatsApp client is exploiting authentication flows with a remote kill switch to exfiltrate data and destroy files.