Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
@types/superagent
Advanced tools
TypeScript definitions for superagent
The @types/superagent package provides TypeScript type definitions for the superagent library, which is a lightweight, progressive AJAX API crafted for flexibility, readability, and a low learning curve. This package doesn't add any new functionality to superagent itself but allows TypeScript developers to use superagent in their projects with type checking, autocompletion, and other TypeScript benefits.
Making GET requests
This feature allows you to make GET requests to retrieve data from a specified resource. The code sample demonstrates how to make a simple GET request to '/api/pets' and log the response body.
import request from 'superagent';
request.get('/api/pets').then(res => {
console.log(res.body);
});
Posting data
This feature enables you to send data to a server using POST requests. The code sample shows how to post data to '/api/pets', sending an object with the name and species of a pet, and then logging the response body.
import request from 'superagent';
request.post('/api/pets')
.send({ name: 'Milo', species: 'cat' })
.then(res => {
console.log(res.body);
});
Setting headers
This feature allows you to set custom headers for your requests. In the code sample, a GET request is made to '/api/pets' with a custom 'API-Key' header.
import request from 'superagent';
request.get('/api/pets')
.set('API-Key', 'foobar')
.then(res => {
console.log(res.body);
});
Axios is a promise-based HTTP client for the browser and Node.js. It provides a simple API for making XMLHttpRequests and http requests. Compared to @types/superagent, Axios supports request and response interceptors, automatic transforms for JSON data, and client-side protection against XSRF.
node-fetch is a lightweight module that brings the Fetch API to Node.js. It aims to provide a consistent API with the browser's fetch API. Unlike @types/superagent, which is designed for use with superagent, node-fetch is more focused on mimicking the fetch API in Node.js environments.
Got is a human-friendly and powerful HTTP request library for Node.js. It supports retries, streams, and pagination out-of-the-box. Compared to @types/superagent, Got offers more advanced features like request retries, more comprehensive stream support, and built-in caching mechanisms.
npm install --save @types/superagent
This package contains type definitions for superagent (https://github.com/visionmedia/superagent).
Files were exported from https://github.com/DefinitelyTyped/DefinitelyTyped/tree/master/types/superagent.
These definitions were written by Nico Zelaya, Michael Ledin, Shrey Jain, Alec Zopf, Adam Haglund, Lukas Elmer, Jesse Rogers, Chris Arnesen, Anders Kindberg, LuckyWind_sck, and David Tanner.
FAQs
TypeScript definitions for superagent
The npm package @types/superagent receives a total of 4,149,204 weekly downloads. As such, @types/superagent popularity was classified as popular.
We found that @types/superagent demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.