
Research
/Security News
11 Malicious NuGet Tools Pose as Game Cheats to Drop a Windows Host-Surveillance Payload
11 malicious NuGet tools pose as game cheats to deploy Windows payloads, track hosts, and use Google Sheets for telemetry and control.
@useatlas/sdk
Advanced tools
TypeScript SDK for the Atlas text-to-SQL agent API.
bun add @useatlas/sdk
import { createAtlasClient } from "@useatlas/sdk";
const atlas = createAtlasClient({
baseUrl: "https://api.example.com",
apiKey: "my-key",
});
const result = await atlas.query("How many users signed up last week?");
console.log(result.answer);
console.log(result.sql); // SQL queries the agent executed
console.log(result.data); // Raw query results ({ columns, rows }[])
Pass either apiKey (simple key auth) or bearerToken (BYOT / managed auth):
// Simple API key
const atlas = createAtlasClient({ baseUrl: "...", apiKey: "my-key" });
// Bearer token (JWT from your auth provider)
const atlas = createAtlasClient({ baseUrl: "...", bearerToken: "eyJ..." });
| Method | Description |
|---|---|
atlas.query(question, opts?) | Run a synchronous query. Returns { answer, sql, data, steps, usage } |
atlas.chat(messages, opts?) | Start a streaming chat session. Returns a raw Response with SSE body (AI SDK Data Stream Protocol) |
| Method | Description |
|---|---|
atlas.conversations.list(opts?) | List conversations (paginated) |
atlas.conversations.get(id) | Get a conversation with messages |
atlas.conversations.delete(id) | Delete a conversation |
atlas.conversations.star(id) | Star a conversation |
atlas.conversations.unstar(id) | Unstar a conversation |
| Method | Description |
|---|---|
atlas.scheduledTasks.list(opts?) | List scheduled tasks (paginated) |
atlas.scheduledTasks.get(id) | Get a task with recent runs |
atlas.scheduledTasks.create(input) | Create a scheduled task |
atlas.scheduledTasks.update(id, input) | Update a scheduled task |
atlas.scheduledTasks.delete(id) | Delete a scheduled task |
atlas.scheduledTasks.trigger(id) | Trigger immediate execution |
atlas.scheduledTasks.listRuns(id, opts?) | List past runs |
| Method | Description |
|---|---|
atlas.admin.overview() | Dashboard overview data |
atlas.admin.semantic.entities() | List semantic layer entities |
atlas.admin.semantic.entity(name) | Get entity detail |
atlas.admin.semantic.metrics() | List metrics |
atlas.admin.semantic.glossary() | Get glossary |
atlas.admin.semantic.catalog() | Get catalog |
atlas.admin.semantic.stats() | Aggregate semantic stats |
atlas.admin.connections() | List datasource connections |
atlas.admin.testConnection(id) | Test connection health |
atlas.admin.audit(opts?) | Query audit log |
atlas.admin.auditStats() | Aggregate audit stats |
atlas.admin.plugins() | List installed plugins |
atlas.admin.pluginHealth(id) | Check plugin health |
All methods throw AtlasError on failure:
import { AtlasError } from "@useatlas/sdk";
try {
await atlas.query("...");
} catch (err) {
if (err instanceof AtlasError) {
console.error(err.code); // e.g. "rate_limited", "auth_error"
console.error(err.status); // HTTP status code
console.error(err.message); // Human-readable message
if (err.code === "rate_limited") {
// Retry after the suggested delay
await sleep(err.retryAfterSeconds! * 1000);
}
}
}
MIT
FAQs
TypeScript SDK for the Atlas text-to-SQL agent API
The npm package @useatlas/sdk receives a total of 347 weekly downloads. As such, @useatlas/sdk popularity was classified as not popular.
We found that @useatlas/sdk demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Research
/Security News
11 malicious NuGet tools pose as game cheats to deploy Windows payloads, track hosts, and use Google Sheets for telemetry and control.

Research
/Security News
4 compromised asyncapi packages deliver miasma botnet loader on macOS, Linux and Windows.

Research
/Security News
A compromised jscrambler npm release added a malicious preinstall hook that runs hidden native binaries on Linux, macOS, and Windows.