Security News
The Hidden Blast Radius of the Axios Compromise
The Axios compromise shows how time-dependent dependency resolution makes exposure harder to detect and contain.
By Ahmad Nassri - Apr 01, 2026
New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
edge-location
Advanced tools
Approximates the current location of the Edge browser across platforms.
edge-location 
- By default checks only
stable. Optionally can cascade tobeta/dev/canary. - Supports macOS / Windows / Linux
- Works both as an ES module or CommonJS
New in this version:
- Honors environment override:
EDGE_BINARY - Optional helper to throw with a friendly install guide when nothing is found
- Install guidance uses Playwright for Edge:
npx playwright install msedge
Support table
This table lists the default locations where Edge is typically installed for each supported platform and channel. By default, only the Stable channel is checked. When fallback is enabled, the package checks these paths (in order) and returns the first one found.
| Platform | Channel | Paths checked |
|---|---|---|
 macOS | Edge (Stable) |
|
| Edge Beta |
| |
| Edge Dev |
| |
| Edge Canary |
| |
 Windows | Edge (Stable) |
|
| Edge Beta |
| |
| Edge Dev |
| |
| Edge Canary |
| |
 Linux/other | Edge (Stable) |
|
| Edge Beta |
| |
| Edge Dev |
| |
| Edge Canary |
|
Returns the first existing path found (given selected channels), or null if none are found.
Usage
Via Node.js (strict by default):
import edgeLocation from 'edge-location'
// Strict (Stable only)
console.log(edgeLocation())
// => "/Applications/Microsoft Edge.app/Contents/MacOS/Microsoft Edge" or null
// Enable fallback (Stable / Beta / Dev / Canary)
console.log(edgeLocation(true))
// => first found among Stable/Beta/Dev/Canary or null
// Throw with a friendly, copy-pasteable guide when not found
import {locateEdgeOrExplain, getInstallGuidance} from 'edge-location'
try {
const path = locateEdgeOrExplain({allowFallback: true})
console.log(path)
} catch (e) {
console.error(String(e))
// Or print getInstallGuidance() explicitly
}
Via CLI:
npx edge-location
# Strict (Stable only)
npx edge-location --fallback
# Enable cascade (Stable / Beta / Dev / Canary)
# Respect environment overrides
EDGE_BINARY=/custom/path/to/msedge npx edge-location
# If not found, install Edge via Playwright and re-run
npx playwright install msedge
Environment overrides
If this environment variable is set and points to an existing binary, it takes precedence:
EDGE_BINARY
When nothing is found
The helper returns actionable guidance:
We couldn't find a Microsoft Edge browser on this machine.
Here's the fastest way to get set up:
1) Install Edge via Playwright (recommended for CI/dev)
npx playwright install msedge
Then re-run your command — we'll detect it automatically.
Alternatively, install Microsoft Edge from the official site and re-run.
API
-
default export locateEdge(allowFallback?: boolean): string | null- Returns the first existing path among the selected channels or
null. - When
allowFallbackistrue, checks Stable → Beta → Dev → Canary.
- Returns the first existing path among the selected channels or
-
locateEdgeOrExplain(options?: boolean | { allowFallback?: boolean }): string- Returns a path if found, otherwise throws an
Errorwith a friendly installation guide.
- Returns a path if found, otherwise throws an
-
getEdgeVersion(bin: string, opts?: { allowExec?: boolean }): string | null- Cross-platform version resolver that does not execute the browser by default.
- Windows: reads PE file metadata via PowerShell (no GUI spawn).
- macOS: reads
Info.plist(no GUI spawn). - Linux/other: returns
nullunlessallowExecistrue, then tries--version.
-
getInstallGuidance(): string- Returns the same guidance text used by
locateEdgeOrExplain().
- Returns the same guidance text used by
Related projects
License
MIT (c) Cezar Augusto.
FAQs
Approximates the current location of the Edge browser across platforms.
The npm package edge-location receives a total of 1,742 weekly downloads. As such, edge-location popularity was classified as popular.
We found that edge-location demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 01 Apr 2026
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Supply Chain Attack on Axios Pulls Malicious Dependency from npm
A supply chain attack on Axios introduced a malicious dependency, plain-crypto-js@4.2.1, published minutes earlier and absent from the project’s GitHub releases.
By Socket Research Team - Mar 31, 2026
Research
TeamPCP Compromises Telnyx Python SDK to Deliver Credential-Stealing Malware
Malicious versions of the Telnyx Python SDK on PyPI delivered credential-stealing malware via a multi-stage supply chain attack.
By Socket Research Team - Mar 27, 2026