Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
##Expedia API Small client interface for the Expedia EAN api. Provides an interface for the following methods:
##Installation
Install with npm:
npm install expedia
##Initialization Usage requires a Expedia Api key and CID. For development use you can use the CIN 55505. You can obtain your api key from the Expedia EAN api documentation.
var options = {
cid : "YOUR CID",
apiKey : "YOUR EAN API KEY",
locale : "en_US", // optional defaults to en_US
currencyCode :"USD" // optional defaults to USD
};
var expedia = require("expedia")(options);
##Usage Expedia requires that you pass in a customer ip, unique session identifier, and browser agent. The remaining parameters are defined in the Expedia EAN api documentation. Please see the example directory for more options.
var options = {
"customerSessionId" : "thisisauniqueID",
"customerIpAddress" : "127.0.0.1",
"customerUserAgent" : "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_4) AppleWebKit/537.36 (KHTML, like Gecko)",
"LocationInfoRequest": {
"locale": "en_US",
"destinationString": "Seattle, WA"
}
};
expedia.geoSearch(options, function(err, res){
if(err)throw new Error(err);
console.log(res);
});
FAQs
simple wrapper around the expedia EAN api
We found that expedia demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.