@voxmedia/identity-library
Advanced tools
This is a small JavaScript library used to send a salted hash of a user's UID to partners. It takes a privacy-first approach to ensure we can safely share sets of user data between trusted third parties, while preventing the possibility of the sets being
This is a small JavaScript library used to send a salted hash of a user's UID to partners. It takes a privacy-first approach to ensure we can safely share sets of user data between trusted third parties, while preventing the possibility of the sets being matched between partners or the source of the data.
You can import identity-library into a project using module bundling like Webpack, or into a Node.js project:
yarn add @voxmedia/identity-library
# or:
npm install @voxmedia/identity-library
Import the package and call the default export:
import identityFor from '@voxmedia/identity-library';
async function sendIdentityToPartner() {
const privateId = fetchUserPrivateId(); // e.g. from a cookie
const shareableId = await identityFor('<PARTNER_NAME>', privateId);
}
You can also use this directly in browser with a script tag:
<script src="https://unpkg.com/@voxmedia/identity-library@latest/dist/identity-library.umd.js"></script>
<script>
async function sendIdentityToPartner() {
const privateId = fetchUserPrivateId(); // e.g. from a cookie
const shareableId = await identityFor('<PARTNER_NAME>', privateId);
}
</script>
This library requires Promise support, i.e. it will not work out of the box on IE11. You can add a Promise polyfill if you want to support this library.
yarn dev
If you want to symlink the development version of this library into another local project, run the following inside this project's repo:
yarn link
Then, follow the instructions to use it in a different project.
This project is automatically released with semantic-release within GitHub Actions. A couple notes:
package.json manuallysemantic-release prefixes in your commit messages.
fix: If you are making a patch change which merits a patch version bumpfeat: If you are making a minor change which merits a minor version bumpBREAKING CHANGE: If you are making a breaking change which merits a major version bumpchore, docs, test, refactor, etc: If you are making a change which does not require any version changealpha and beta. Use these to push changes which will not increment the overall version - great for working on big new features.FAQs
This is a small JavaScript library used to send a salted hash of a user's UID to partners. It takes a privacy-first approach to ensure we can safely share sets of user data between trusted third parties, while preventing the possibility of the sets being
We found that @voxmedia/identity-library demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 7 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.
Security News
Sonar’s acquisition of Tidelift highlights a growing industry shift toward sustainable open source funding, addressing maintainer burnout and critical software dependencies.