Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
By Socket Research Team - Dec 02, 2024
Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More →
fastify-compress
Advanced tools
fastify-compress
Adds compression utils to the Fastify reply object.
Support gzip, deflate and brotli.
Install
npm i fastify-compress --save
Usage
This plugins adds two functionalities to Fastify, a compress utility and a global compression hook.
Currently the following headers are supported:
'deflate''gzip''br''*'
If the 'accept-encoding' header specifies no preferred encoding with an asterisk * the payload will be compressed with gzip.
If an unsupported encoding is received, it will automatically return a 406 error, if the 'accept-encoding' header is missing, it will not compress the payload.
It automatically defines if a payload should be compressed or not based on its Content-Type, if no content type is present, it will assume is application/json.
Global hook
The global compression hook is enabled by default if you want to disable it, pass the option { global: false }.
fastify.register(
require('fastify-compress'),
{ global: false }
)
Remember that thanks to the Fastify encapsulation model, you can set a global compression, but running it only in a subset of routes is you wrap them inside a plugin.
reply.compress
This plugin add a compress function to reply that accepts a stream or a string and compress it based on the 'accept-encoding' header. If a js object is passed in, will be stringified as json.
const fs = require('fs')
const fastify = require('fastify')
fastify.register(require('fastify-compress'), { global: false })
fastify.get('/', (req, reply) => {
reply
.type('text/plain')
.compress(fs.createReadStream('./package.json'))
})
fastify.listen(3000, function (err) {
if (err) throw err
console.log(`server listening on ${fastify.server.address().port}`)
})
Options
Threshold
You can set a custom threshold below which it will not be made compression, default to 1024.
fastify.register(
require('fastify-compress'),
{ threshold: 2048 }
)
Brotli
Brotli compression is not enabled by default, if you need it we recommend to install iltorb and pass it as option.
fastify.register(
require('fastify-compress'),
{ brotli: require('iltorb') }
)
Disable compression by header
You can selectively disable the response compression by using the x-no-compression header in the request.
Note
Please have in mind that in large scale scenarios, you should use a proxy like Nginx to handle response-compression.
Acknowledgements
This project is kindly sponsored by:
License
Licensed under MIT.
FAQs
`fastify-compress@4.1.0` has been deprecated. Please use `@fastify/compress@5.0.0` instead.
We found that fastify-compress demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 17 open source maintainers collaborating on the project.
Package last updated on 19 Apr 2018
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Research
Typosquatting Cryptographic Libraries: Malicious npm Packages Threaten Crypto Developers with Keylogging and Wallet Theft
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
By Kirill Boychenko - Nov 27, 2024
Security News
Weekly Downloads Now Available in npm Package Search Results
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.
By Sarah Gooding - Nov 26, 2024