@vyng/truecaller-node
Advanced tools
truecaller-node is an npm module to verify Truecaller user profiles from the server.
npm install @vyng/truecaller-node
const truecaller = require('@vyng/truecaller-node');
// Truecaller profile object from the mobile SDK
var profile = {
payload: <base64 encoded string>,
signature: <string>,
signatureAlgorithm: <string>, // SHA512withRSA
};
// Options (defaults shown)
var options = {
url: <url to fetch public keys>, // https://api4.truecaller.com/v1/key
ttl: 1000 * 60 * 10, // Allow request time to be maximum of 10 minutes in the past. If ttl is 0, no check is done.
publicKeys: undefined, // Explicitly specifies public keys. Useful in case truecaller changes their fetch.
};
...
const profile = await truecaller.verifyProfile(profile, options);
if (profile.verifiedSignature) {
// Server side verification of profile succeeded!
}
...
If publicKeys are not explicitly specified, then truecaller-node will fetch and cache public keys for 24 hours.
FAQs
Node Truecaller profile verification
We found that @vyng/truecaller-node demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
PyPI confirms no security flaws were exploited in the Ultralytics supply chain attack and highlights improvements for safer package publishing.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.