Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
bfx-api-node-models
Advanced tools
This repo contains model classes for working with the data structures returned by the Bitfinex REST & WebSocket APIs. The models can all be initialized with an array-format payload as returned by an API call, and can be unserialized back to the array format when needed.
Some models, such as Order
and OrderBook
provide higher level methods which operate on the underlying data sets.
All models provide serialize()
and unserialize()
methods, which convert to/from array-format payloads respectively. All model constructors can take either array-format payloads, or objects/other model instances. A helper toJS()
method is also provided for converting models to plain JS objects (POJOs).
OrderBook
)Classes for the following Bitfinex API data types:
npm i --save bfx-api-node-models
const { Order } = require('bfx-api-node-models')
const o = new Order({
cid: Date.now(),
symbol: 'tBTCUSD',
price: 7000.0,
amount: -0.02,
type: Order.type.EXCHANGE_LIMIT
})
// Generate an API-compatible order creation packet for later submit
console.log(o.toNewOrderPacket())
Refer to the docs/ folder for JSDoc-generated API documentation covering each model class.
The order model provides helper methods for order submission, updates, and cancellation. These methods are compatible with version 2.0.0 of bitfinex-api-node
, and return promises which resolve upon receival of the relevant success/error notifications.
Orders are matched with their API packets by one/all of id
, gid
, and cid
.
Example usage:
const { Order } = require('bfx-api-node-models')
const ws = ... // setup WSv2 instance for order updates/submission
// Build new order
const o = new Order({
cid: Date.now(),
symbol: 'tBTCUSD',
price: 7000.0,
amount: -0.02,
type: Order.type.EXCHANGE_LIMIT
}, ws) // note WSv2 client passed in here
let closed = false
// Enable automatic updates
o.registerListeners()
o.on('update', () => {
debug('order updated: %j', o.serialize())
})
o.on('close', () => {
debug('order closed: %s', o.status)
closed = true
})
debug('submitting order %d', o.cid)
o.submit().then(() => {
debug('got submit confirmation for order %d [%d]', o.cid, o.id)
}).catch((err) => {
debug('failed to submit order: %s', err.message)
})
The order book model constructor takes either entire book snapshots as returned by the WSv2 API, or individual update packets with single bids/asks. Once constructed, order books may be updated either with complete snapshots via updateFromSnapshot(snapshot)
or individual update packets via updateWidth(entry)
.
Static helpers are also provided for working with array-format order books, in the form of updateArrayOBWith(ob, entry, raw)
, arrayOBMidPrice(ob, raw)
, and checksumArr(ob, raw)
.
Checksums may be calculated for normal books via checksum()
, for comparison with the checksums reported by the WSv2 API.
Example usage:
const ob = new OrderBook([
[140, 1, 10],
[145, 1, 10],
[148, 1, 10],
[149, 1, 10],
[151, 1, -10],
[152, 1, -10],
[158, 1, -10],
[160, 1, -10]
])
ob.updateWith([145, 3, 15]) // update bid
ob.updateWith([158, 3, -15]) // update ask
console.log(ob.serialize())
git checkout -b my-new-feature
)git commit -am 'Add some feature'
)git push origin my-new-feature
)FAQs
Object models for usage with the Bitfinex node API
The npm package bfx-api-node-models receives a total of 292 weekly downloads. As such, bfx-api-node-models popularity was classified as not popular.
We found that bfx-api-node-models demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.