Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
apollo-errors
Advanced tools
Machine-readable custom errors for Apollostack's GraphQL server
Install the package:
npm install apollo-errors
Create some errors:
import { createError } from 'apollo-errors';
export const FooError = createError('FooError', {
message: 'A foo error has occurred'
});
Hook up formatting:
import express from 'express';
import bodyParser from 'body-parser';
import { formatError } from 'apollo-errors';
import { graphqlExpress } from 'apollo-server-express';
import schema from './schema';
const app = express();
app.use('/graphql',
bodyParser.json(),
graphqlExpress({
formatError,
schema
})
);
app.listen(8080)
Throw some errors:
import { FooError } from './errors';
const resolverThatThrowsError = (root, params, context) => {
throw new FooError({
data: {
something: 'important'
},
internalData: {
error: `The SQL server died.`
}
});
}
Witness glorious simplicity:
POST /graphql (200)
{
"data": {},
"errors": [
{
"message":"A foo error has occurred",
"name":"FooError",
"time_thrown":"2016-11-11T00:40:50.954Z",
"data":{
"something": "important"
}
}
]
}
The internalData
property is meant for data you want to store on the error object (e.g. for logging), but not send out to your end users.
You can utilize this data for logging purposes.
import { isInstance as isApolloErrorInstance, formatError as formatApolloError } from 'apollo-errors';
function formatError(error) {
const { originialError } = error;
if (isApolloErrorInstance(originalError)) {
// log internalData to stdout but not include it in the formattedError
console.log(JSON.stringify({
type: `error`,
data: originalError.data,
internalData: originalError.internalData
}));
}
return formatApolloError(error)
}
Creates a new ApolloError object. Note that ApolloError
in this context refers
to an error class created and returned by createError
documented below. Error can be
initialized with a custom time_thrown
ISODate (default is current ISODate), data
object (which will be merged with data specified through createError
, if it exists), internalData
object (which will be merged with internalData specified trough createError
) and message
(which will override the message specified through createError
).
Creates and returns an error class with the given name
and message
, optionally initialized with the given data
, internalData
and options
. data
and internalData
passed to createError
will later be merged with any data passed to the constructor.
showPath
(false): Preserve the GraphQLError path
data.showLocations
(false): Preserve the GraphQLError locations
data.If the error is a known ApolloError, returns the serialized form of said error.
Otherwise, if strict is not truthy, returns the original error passed into formatError.
Otherwise, if strict is truthy, returns null.
Returns true if the error is an instance of an ApolloError. Otherwise, returns false
FAQs
Machine-readable custom errors for Apollostack's GraphQL server
The npm package apollo-errors receives a total of 4,128 weekly downloads. As such, apollo-errors popularity was classified as popular.
We found that apollo-errors demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.