Security News
The Hidden Blast Radius of the Axios Compromise
The Axios compromise shows how time-dependent dependency resolution makes exposure harder to detect and contain.
By Ahmad Nassri - Apr 01, 2026
New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
@verifai/websdk
Advanced tools
Verifai WebSDK
Install
# with npm
npm install @verifai/websdk --save
# or with yarn
yarn add @verifai/websdk
Usage
HTML
<div id="verifai-mount"></div>
ES modules
import WebSDK from '@verifai/websdk'
const config = {
// For the token look at: https://docs.verifai.com/sdk/web/
token: '<OTP_TOKEN>',
onSuccess: sessionID => {
// Here you can get the Verifai result.
// And also clear the Verifai session.
},
onCanceled: sessionID => {
// Here your customer canceled the Verifai flow
// And you can clear the Verifai session
}
}
// Get the element Verifai should be mounted on
const elem = document.getElementById('verifai-mount')
// Create a WebSDK object
const webSDK = new WebSDK(config, elem)
// Start the SDK
webSDK.start()
UMD
Load the SDK UMD
<script src="verifaiSDK/umd/verifai-websdk.js"></script>
By loading the UMD script the Verifai global is made available
Now you can create the config and start the SDK
See ES Modules for an example config object
const config = {...}
const elem = document.getElementById('verifai-mount')
// Create a WebSDK object
const webSDK = new Verifai.WebSDK(config, elem)
// Start the SDK
webSDK.start()
WebSDK methods
Constructor
WebSDK(config: Object, elem: DOMElement)
Creates instance of the webSDK
Example:
See ES Modules for an example config object
const config = {...}
const elem = document.getElementById('verifai-mount')
const webSDK = new WebSDK(config, elem)
setConfig
setConfig(config: Object)
Shallow merges the given config with the already set config on the sdk instance.
Example:
const webSDK = new WebSDK({
onSuccess: sessionID => console.info(sessionID),
onCanceled: sessionID => console.warn(sessionID)
}, elem)
webSDK.setConfig({
token: '<OTP_TOKEN>'
})
webSDK.start()
start
start()
Starts the sdk flow (opens modal)
Example:
See ES Modules for an example config object
const config = {...}
const elem = document.getElementById('verifai-mount')
const webSDK = new WebSDK(config, elem)
webSDK.start()
More documentation
For more configuration and options you can see the documentation.
Demo
Want to try it out first? There is a demo available at: demo.websdk.verifai.com.
About Verifai
Please visit our website for more information about this and our other products: verifai.com.
FAQs
Verifai Web SDK
We found that @verifai/websdk demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 6 open source maintainers collaborating on the project.
Package last updated on 13 Jun 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Supply Chain Attack on Axios Pulls Malicious Dependency from npm
A supply chain attack on Axios introduced a malicious dependency, plain-crypto-js@4.2.1, published minutes earlier and absent from the project’s GitHub releases.
By Socket Research Team - Mar 31, 2026
Research
TeamPCP Compromises Telnyx Python SDK to Deliver Credential-Stealing Malware
Malicious versions of the Telnyx Python SDK on PyPI delivered credential-stealing malware via a multi-stage supply chain attack.
By Socket Research Team - Mar 27, 2026