Security News
tea.xyz Spam Plagues npm and RubyGems Package Registries
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
cloudflare-scraper
Advanced tools
Readme
Chrome is used to retrieve cloudflare cookies then got is used to perform requests making this solution reliable but also pretty fast.
Version 2 is a complete rewrite:
- it doesn't use puppeteer but vanilla chromium,
- request package was replaced by got ,
- headless support only works on linux out of the box but should be doable on windows or mac os with the help of docker or wsl.
- extra features were removed (captcha bypass, etc..)
npm install cloudflare-scraper
Make sure you alse have xfvb linux package installed
# for ubuntu users
sudo apt-get install xvfb
import got from 'cloudflare-scraper';
(async () => {
try {
const response = await got.get('https://nowsecure.nl');
console.log(response.body);
} catch (error) {
console.log(error);
}
})();
Check got documenatation
By default, chromium is downloaded but on npm install
command but you can skip the installation by enabling this variable.
export NODE_CHROMIUM_SKIP_INSTALL=true
Specify a chrome executable
export CHROME_EXECUTABLE_PATH=/path/to/chrome
Enable/disable headless mode (enabled by default)
Note: headless mode uses "xfvb" and is only available on linux
export CF_SCRAPER_HEADLESS=false
FAQs
A package to bypass Cloudflare's protection
The npm package cloudflare-scraper receives a total of 274 weekly downloads. As such, cloudflare-scraper popularity was classified as not popular.
We found that cloudflare-scraper demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
Security News
As cyber threats become more autonomous, AI-powered defenses are crucial for businesses to stay ahead of attackers who can exploit software vulnerabilities at scale.
Security News
UnitedHealth Group disclosed that the ransomware attack on Change Healthcare compromised protected health information for millions in the U.S., with estimated costs to the company expected to reach $1 billion.