New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details →
Socket
Book a DemoSign in
Socket
Book a DemoSign in

@thefirstspine/messaging

Package Overview
Dependencies
Maintainers
1
Versions
18
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@thefirstspine/messaging

Javascript and Typescript service to interact with the messaging net service.

latest
Source
npmnpm
Version
2.1.5
Version published
Maintainers
1
Created
Source

📦 dependency-messaging // @thefirstspine/messaging

Javascript and Typescript service to interact with the messaging net service.

More information here: https://github.com/thefirstspine/messaging

Install

npm i @thefirstspine/messaging@latest

Configuration

As part of TFS Platform, this dependency will use environment variable.

Environement keySummary
MESSAGING_URLMessaging net service URL
MESSAGING_PUBLIC_KEYPublic key to interact with the messaging net service

Documentation

MessagingService

Main service to interact with the messaging net service.

sendMessage

Sends a message in a subject to the clients connected to the service.

Synopsis: async sendMessage(to: number[]|'*', subject: string|'*', message: any): Promise<IMessagingResponse>

Params:

  • to: number[]|'*' The list of the users that will receive the message. * is for all users.
  • subject: string|'*' The subject concerned by the message.
  • message: any The message to send.

getMessagingNetServiceUrl

Get the messaging net service URL according to the MESSAGING_URL environment variable.

Synopsis: getMessagingNetServiceUrl(): string

How to use

Build

npm run build

Lint

npm run lint

Publish on NPM

npm publish

License

TFS Platform is NOT licensed. You are free to download, view, run the repository. You are NOT allowed to redistribute this project for both commercial and non-commercial use. Deal with it.

FAQs

Package last updated on 31 Jan 2026

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Supply Chain Attack on Axios Pulls Malicious Dependency from npm

Research

Supply Chain Attack on Axios Pulls Malicious Dependency from npm

A supply chain attack on Axios introduced a malicious dependency, plain-crypto-js@4.2.1, published minutes earlier and absent from the project’s GitHub releases.

By Socket Research Team  -  Mar 31, 2026