Launch Week Day 2: Introducing Reports: An Extensible Reporting Framework for Socket Data.Learn More
Socket
Book a DemoSign in
Socket
Book a DemoSign in

@xxskyy/microbundle

Package Overview
Dependencies
Maintainers
1
Versions
82
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@xxskyy/microbundle

Includes also helpers like ReCaptcha validator, env variables or pre-configured shield rules for trivial permission management. Works great with cloudflare.

latest
npmnpm
Version
1.3.33
Version published
Maintainers
1
Created
Source

Personal bundle to create GraphQL Microservices and Gateways in matter of minutes

Includes also helpers like ReCaptcha validator, env variables or pre-configured shield rules for trivial permission management. Works great with cloudflare.

Stack:

  • Typescript
  • Fastify
  • Mercurius
  • GraphQL Shield
  • JWT Authentication
  • MongoDB Client
  • Rate Limiter
  • Redis Client
  • Fastify Cors

Features:

  • Generated gateway config from YAML file
  • ReCaptcha V2 & V3 validator
  • Schema -> TS Types generation
  • Automatic schema + resolvers merge
  • Executable service sdl schema
  • JWT Verification
  • Switchable logger
  • Queries/Mutations over Websocket
  • Restricting Query/Mutation only over HTTP or Websocket
  • Flexible rate limiting for HTTP and Websocket requests
  • Custom types for maximum Typescript support
  • Automatic headers rewrite with Cloudflare support
  • Every setting ENV controlled

Default ENV settings

export const PRODUCTION = process.env.NODE_ENV === "production"
export const TEST = process.env.NODE_ENV === "test"
export const LOGGER = +process.env.LOGGER === 1

export const NAME = process.env.APP_NAME || null
export const PORT = +process.env.APP_PORT || 3000
export const HOST = process.env.APP_HOST || "localhost"

export const JWT_SECRET = process.env.JWT_SECRET

export const MONGO_HOST = process.env.MONGO_HOST || null
export const MONGO_DBNAME = process.env.MONGO_DBNAME || null

export const REDIS_HOST = process.env.REDIS_HOST || null
export const REDIS_PORT = process.env.REDIS_PORT || null
export const REDIS_PASSWORD = process.env.REDIS_PASSWORD || null
export const REDIS_DB = process.env.REDIS_DB || 1

export const RECAPTCHA_KEY_V2 = process.env.RECAPTCHA_KEY_V2 || null
export const RECAPTCHA_KEY_V3 = process.env.RECAPTCHA_KEY_V3 || null

export const CORS_ORIGIN = process.env.CORS_ORIGIN || "*"

export const RATE_LIMIT_MAX = +process.env.RATE_LIMIT_MAX || 200
export const RATE_LIMIT_TIME_WINDOW =
  process.env.RATE_LIMIT_TIME_WINDOW || "1 minute"

export const DISABLE_CODEGEN = +process.env.DISABLE_CODEGEN === 1

FAQs

Package last updated on 19 Jul 2022

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Namastex.ai npm Packages Hit with TeamPCP-Style CanisterWorm Malware

Research

Namastex.ai npm Packages Hit with TeamPCP-Style CanisterWorm Malware

Malicious Namastex.ai npm packages appear to replicate TeamPCP-style Canister Worm tradecraft, including exfiltration and self-propagation.

By Socket Research Team  -  Apr 22, 2026
Socket for Jira Is Now Available

Product

Socket for Jira Is Now Available

Socket for Jira lets teams turn alerts into Jira tickets with manual creation, automated ticketing rules, and two-way sync.

By Jeppe Hasseriis  -  Apr 20, 2026