Security News
NVD Quietly Sweeps 100K+ CVEs Into a “Deferred” Black Hole
NVD now marks all pre-2018 CVEs as "Deferred," signaling it will no longer enrich older vulnerabilities, further eroding trust in its data.
By Sarah Gooding - Apr 04, 2025
New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
cordova-fetch
Advanced tools
cordova-fetch
This package can be used to install and uninstall Node.js packages using npm.
Usage
fetch
Installs a module from:
npmregistrygiturltarball- url
- file on local file system
folderpath on local system
Returns a Promise resolving to the absolute path of the installed package.
const fetch = require('cordova-fetch');
fetch(spec, dest, opts).then(pathToInstalledPackage => {
// Do something
});
Fetch Parameters
| Parameter | Description |
|---|---|
spec | A spec for the package to be installed (anything supported by npm install) |
dest | Location where to install the package |
opts | Additional options (optional) |
Fetch Options
| Option | Default | Description |
|---|---|---|
save | false | Adds the package as dependency to package.json iff true |
uninstall
Uninstalls a package from the given directory. Returns a Promise that resolves when removal has finished.
const { uninstall } = require('cordova-fetch');
uninstall(packageName, dest, opts).then(() => {
// Do something
});
Uninstall Parameters
| Parameter | Description |
|---|---|
packageName | Name of the package to be uninstalled |
dest | Location from where to uninstall the package |
opts | An Object with additional options |
Uninstall Options
| Option | Default | Description |
|---|---|---|
save | false | Removes dependency from package.json iff true |
FAQs
Apache Cordova fetch module. Fetches from git and npm.
The npm package cordova-fetch receives a total of 40,806 weekly downloads. As such, cordova-fetch popularity was classified as popular.
We found that cordova-fetch demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 18 open source maintainers collaborating on the project.
Package last updated on 13 Apr 2023
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Security News
Lazarus Expands Malicious npm Campaign: 11 New Packages Add Malware Loaders and Bitbucket Payloads
Lazarus-linked threat actors expand their npm malware campaign with new RAT loaders, hex obfuscation, and over 5,600 downloads across 11 packages.
By Kirill Boychenko - Apr 04, 2025
Security News
Safari 18.4 Ships 3 New JavaScript Features from the TC39 Pipeline
Safari 18.4 adds support for Iterator Helpers and two other TC39 JavaScript features, bringing full cross-browser coverage to key parts of the ECMAScript spec.
By Sarah Gooding - Apr 03, 2025