Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
bandcamp-fetch
Advanced tools
A JS library for scraping Bandcamp content; inspired by bandcamp-scraper.
npm i bandcamp-fetch --save
const bcfetch = require('bandcamp-fetch');
bcfetch.discover(...).then( results => {
...
});
Each function returns a Promise which resolves to the fetched data.
discover([params], [options])
Fetches albums through Bandcamp Discover.
params
(optional) - object specifying params to be passed to Bandcamp Discover
All properties are optional. Possible values for each property can be obtained with the getDiscoverOptions()
function.
params
passed to this function will be sanitized with sanitizeDiscoverParams()
. A copy of the sanitized params can obtained through the params
property of the returned result.
options
(optional) - object specifying options to be used when formulating results:
All properties are optional. Image formats can be obtained with the getImageFormats()
function.
getDiscoverOptions()
Fetches Bandcamp Discover options that can be passed back to discover()
.
sanitizeDiscoverParams(params)
Sanitizes params
by setting default values for omitted params and removing irrelevant ones.
You don't have to call this function on params passed to discover()
- they will be sanitized automatically.
getImageFormats([filter])
Fetches the list of image formats used in Bandcamp.
filter
(optional) - 'bio' (for artist / profile-type images)* or 'album'. If specified, narrows down the result to include only formats applicable to the specified value.The 'artist' filter value is deprecated. Use 'bio' instead.
getImageFormat(idOrName)
Fetches the image format that matches Id or name. If none is found, the result will be null
.
getArtistOrLabelInfo(artistOrLabelUrl, [options])
Fetches information about an artist or label.
artistOrLabelUrl
options
(optional)
This function tries to fetch the most complete set of data by scraping the following pages (returning immediately at any point the data becomes complete):
artistOrLabelUrl
artistOrLabelUrl/music
)Sometimes, the label could not be fetched successfully for artists. If you know the labelId
of the label that the artist belongs to, you can specify it in options
. This will ensure that label
will not be null
in the artist info. If you pass a label URL to this function, you can find the labelId
in the result.
getLabelArtists(labelUrl, [options])
Fetches the list of artists belonging to a label.
labelUrl
options
(optional)
getDiscography(artistOrLabelUrl, [options])
Fetches the list of albums and standalone tracks belonging to an artist or label.
artistOrLabelUrl
options
(optional)
getAlbumInfo(albumUrl, [options])
Fetches information about an album.
albumUrl
options
(optional)
Following Bandcamp's removal of description and image URL from artist metadata, artist.description
and artist.imageUrl
of the returned object are now set to to the same values as publisher.description
and publisher.imageUrl
, respectively. This is for backward comaptibility and the artist.description
and artist.imageUrl
properties might be removed in a future release.
Furthermore, if the artist URL is not found in the scraped data, then artist.url
will be set to the same value as publisher.url
. This behavior might be subject to change in the future.
getTrackInfo(trackUrl, [options])
Fetches information about a track.
trackUrl
options
(optional)
Following Bandcamp's removal of description and image URL from artist metadata, artist.description
and artist.imageUrl
of the returned object are now set to to the same values as publisher.description
and publisher.imageUrl
, respectively. This is for backward comaptibility and the artist.description
and artist.imageUrl
properties might be removed in a future release.
Furthermore, if the artist URL is not found in the scraped data, then artist.url
will be set to the same value as publisher.url
. This behavior might be subject to change in the future.
getAlbumHighlightsByTag(tagUrl, [options])
Fetches album highlights for the tag referred to by tagUrl
. The result is an array of album collections, with each collection corresponding to a highlight category such as 'new and notable' and 'all-time best selling'.
tagUrl
Tag URLs can be obtained with the getTags()
function.
options
(optional)
getTags()
Fetches Bandcamp tags. The result is an object with the following properties:
tags
: non-location tagslocations
: location tagssearch(params, [options])
Searches for params.query
.
params
options
(optional)
getAllShows([options])
Fetches all Bandcamp shows. Each entry in the returned array contains basic information about a show. To retrieve details of a show, pass the url
property of the entry to getShow()
.
options
(optional)
getShow(showUrl, [options])
Get show details for the given showUrl
.
options
(optional)
getArticleCategories()
Fetches the list of Bandcamp Daily article categories. Categories are grouped into sections.
getArticleList([params], [options])
Fetches the list of Bandcamp Daily articles under the category specified by params.categoryUrl
(or all categories if not specified).
params
(optional)
options
(optional)
getArticle(articleUrl, [options])
Fetches the contents of the Bandcamp Daily article at articleUrl
.
articleUrl
options
(optional)
getTagInfo(tagUrl)
Fetches information about the tag referred to by tagUrl
.
getReleasesByTag(tagUrl, [params], [options])
Fetches releases matching the tag referred to by tagUrl
.
tagUrl
params
(optional)
tagUrl
.All properties are optional. For omitted properties, default values obtained from tagUrl
will be used. Possible filter values can be obtained by calling getReleasesByTagFilterOptions()
. For filters.location
and filters.tag
, you may look up additional values not returned by getReleasesByTagFilterOptions()
through searchLocation()
and searchTag()
, respectively.
options
(optional)
true
, use hardcoded default values for filters not specified in params.filters
. If false
or unspecified, default filter values will be obtained by calling getReleasesByTagFilterOptions()
(extra query means slower performance).getReleasesByTagFilterOptions(tagUrl)
Fetches the list of possible filter values for getReleasesByTag()
. For location
and tag
filters, this function does not return a conclusive list of values. You may use searchLocation()
and searchTag()
to look up additional values.
tagUrl
: the URL of the tag for which filter values should be returnedsearchLocation(params)
Fetches the list of locations matching params.q
. Results include both partial and full matches. Each item in the returned array corresponds to a matching location, and its value
property can be used for setting the location
filter in getReleasesByTag()
.
params
:
searchTag(params)
Fetches the list of tags matching params.q
. Results include both partial and full matches. Each item in the returned array corresponds to a matching tag, and its value
property can be used for setting the tags
filter in getReleasesByTag()
.
params
:
getFanInfo(username, [options])
Fetches information about a fan.
username
options
(optional)
getFanCollection(usernameOrContinuationToken, [options])
Fetches the list of albums / tracks in a fan's collection.
usernameOrContinuationToken
: if username is provided, returns the first batch of items in the collection. To obtain further items, call the function again but, instead of username, pass continuationToken
from the result of the first call. If there are no further items available, continuationToken
will be null
.options
(optional)
getFanWishlist(usernameOrContinuationToken, [options])
Fetches the list of albums / tracks added to a fan's wishlist.
usernameOrContinuationToken
: if username is provided, returns the first batch of wishlist items. To obtain further items, call the function again but, instead of username, pass continuationToken
from the result of the first call. If there are no further items available, continuationToken
will be null
.options
(optional)
getFanFollowingArtistsAndLabels(usernameOrContinuationToken, [options])
Fetches the list of artists and labels followed by a fan.
usernameOrContinuationToken
: if username is provided, returns the first batch of artists and labels. To obtain further items, call the function again but, instead of username, pass continuationToken
from the result of the first call. If there are no further items available, continuationToken
will be null
.options
(optional)
getFanFollowingGenres(usernameOrContinuationToken, [options])
Fetches the list of genres followed by a fan. Each genre is actually a Bandcamp tag, so you can, for example, pass its url
value to getReleasesByTag()
.
usernameOrContinuationToken
: if username is provided, returns the first batch of genres. To obtain further items, call the function again but, instead of username, pass continuationToken
from the result of the first call. If there are no further items available, continuationToken
will be null
.options
(optional)
The API functions can be called with rate limiting like this:
bcfetch.limiter.getAlbumInfo(...);
Rate limiting is useful when you need to make a large number of queries and don't want to run the risk of getting rejected by the server for making too many requests within a short time interval. If you get a '429 Too Many Requests' error, then you should consider using the rate limiter.
The library uses Bottleneck for rate limiting. You can configure the rate limiter like this:
bcfetch.limiter.updateSettings({
maxConcurrent: 10, // default: 5
minTime: 100 // default: 200
});
updateSettings()
is just a passthrough function to Bottleneck. Check the Bottleneck doc for the list of options you can set.
The library maintains an in-memory cache for two types of resources:
page
- pages fetched during scrapingconstant
- image formats and discover optionsFunctions related to the cache can be called this way:
const bcfetch = require('bandcamp-fetch');
bcfetch.cache.setTTL('page', 500);
bcfetch.cache.setMaxPages(20);
bcfetch.cache.clear('constant');
cache.setTTL(type, TTL)
Sets the expiry time, in seconds, of cache entries for the given resource type.
type
: 'page' or 'constant'TTL
: expiry time in seconds (default: 300
for 'page' and 3600
for 'constant')cache.setMaxPages(maxPages)
Sets the maximum number of pages that can be stored in the cache. A negative value means unlimited. Default: 10
.
cache.clear([type])
Clears the cache entries for the given resource type.
type
(optional): 'page' or 'constant'. If unspecified, clears the entire cache.0.3.1-b.1
getFanCollection()
function0.3.0-b.1
0.2.2-b.1
itemType
option to search params0.2.1-b.20211020b
getArtistOrLabelInfo()
0.2.1-b.20211020
getArtistOrLabelInfo()
0.2.0-b.20211020
publisher
and label
to data fetched by getAlbumInfo()
and getTrackInfo()
labelId
to data fetched by getArtistOrLabelInfo(labelUrl)
labelId
option to getArtistOrLabelInfo()
for artist URLs...(no changelog for earlier versions due to laziness)
MIT
FAQs
Scrape Bandcamp content
The npm package bandcamp-fetch receives a total of 12 weekly downloads. As such, bandcamp-fetch popularity was classified as not popular.
We found that bandcamp-fetch demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.