
Research
/Security News
Chrome and Firefox Extensions Posing as Free VPNs Add Clipboard Stealers via Malicious Updates
Malicious Chrome and Firefox extensions posed as free VPNs while stealing clipboard data through later extension updates.
@trustcomponent/trustcaptcha-nodejs
Advanced tools
TrustCaptcha – Privacy-first CAPTCHA solution for Node.js and TypeScript. GDPR-compliant, bot protection made in Europe.
Protect websites and apps against bots and spam with a privacy-first, EU-hosted CAPTCHA solution.
TrustCaptcha combines proof-of-work, an AI bot-score and custom security rules to stop automated bot abuse — without image marking or puzzles
Key perks:
Read the full TrustCaptcha product overview for technical details and the security concept.
Need a walkthrough? See the Node.js integration guide.
npm i @trustcomponent/trustcaptcha-nodejs@^3.0.0
import { TrustCaptcha } from "@trustcomponent/trustcaptcha-nodejs";
// Retrieving the verification result
let verificationResult;
try {
verificationResult = await TrustCaptcha.getVerificationResult("<your_api_key>", "<verification_token_from_your_client>");
} catch (error) {
// Fetch verification result failed - handle error
}
// Act on the verification result
if (!verificationResult.verificationPassed || verificationResult.score > 0.5) {
console.log("Verification failed or bot score > 0.5 – possible automated request.");
}
Congratulations — you have successfully validated the result of the CAPTCHA!
For detailed implementation instructions, read the Node.js integration guide.
TrustCaptcha ships ready-made integrations for popular stacks:
Discover all our pre-built Integrations on our website.
Questions? We will be happy to help!
FAQs
TrustCaptcha – Privacy-first CAPTCHA solution for Node.js and TypeScript. GDPR-compliant, bot protection made in Europe.
We found that @trustcomponent/trustcaptcha-nodejs demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Research
/Security News
Malicious Chrome and Firefox extensions posed as free VPNs while stealing clipboard data through later extension updates.

Research
/Security News
Miasma Mini Shai-Hulud hits @immobiliarelabs Backstage plugins, targeting GitLab and LDAP auth packages on npm.

Security News
Rolldown paused Rust React Compiler integration after a 5MB binary size increase raised concerns about shipping React-specific code to all Vite users.