Research
Security News
Threat Actor Exposes Playbook for Exploiting npm to Build Blockchain-Powered Botnets
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Fastify is a fast and low overhead web framework for Node.js. It is highly performant and provides an extensive plugin architecture, making it suitable for building a wide range of server-side applications and services.
Web Server
Fastify allows you to create a web server that can handle HTTP requests and send responses. The above code demonstrates setting up a simple server that responds with JSON when the root route is accessed.
const fastify = require('fastify')({ logger: true });
fastify.get('/', async (request, reply) => {
return { hello: 'world' };
});
fastify.listen(3000, (err, address) => {
if (err) throw err;
fastify.log.info(`server listening on ${address}`);
});
Route Shorthand Methods
Fastify provides shorthand methods for different HTTP methods like GET, POST, etc. This makes it easy to define routes for various request types.
fastify.get('/example', (request, reply) => {
reply.send({ message: 'This is a GET request' });
});
fastify.post('/example', (request, reply) => {
reply.send({ message: 'This is a POST request' });
});
Schema Validation
Fastify supports schema validation for request payloads, query strings, and parameters using JSON Schema. This ensures that the data received is in the expected format.
const schema = {
body: {
type: 'object',
required: ['name'],
properties: {
name: { type: 'string' },
age: { type: 'number' }
}
}
};
fastify.post('/user', { schema }, (request, reply) => {
// Handle request knowing that the body has been validated against the schema
});
Plugins
Fastify has a powerful plugin system that allows you to extend its core functionality. Plugins can add new features, routes, services, and decorators to the Fastify instance.
const myPlugin = async (fastify, options) => {
fastify.decorate('utility', () => {
return 'something useful';
});
};
fastify.register(myPlugin);
// Now you can use fastify.utility() in your application
Lifecycle Hooks
Fastify provides lifecycle hooks that can be used to execute code at various stages of the request/response cycle, such as onRequest, preHandler, onResponse, etc.
fastify.addHook('onRequest', (request, reply, done) => {
// Perform some operations before the request handler is executed
done();
});
Express is one of the most popular web frameworks for Node.js. It is known for its simplicity and minimalism. Compared to Fastify, Express has a larger ecosystem and community but may not be as performant due to its less optimized architecture.
Koa is a web framework designed by the creators of Express, aiming to be a smaller, more expressive, and more robust foundation for web applications and APIs. Koa uses async functions to eliminate callbacks and improve error handling. It is less opinionated than Fastify and has a smaller footprint.
Hapi is a rich framework for building applications and services, known for its powerful plugin system. It is designed to be more configurable and to provide a richer set of features out of the box compared to Fastify, which can make it heavier and potentially slower.
Restify is a Node.js web service framework optimized for building semantically correct RESTful web services ready for production use at scale. Restify is similar to Fastify in terms of performance but is more focused on API creation than being a general-purpose web framework.
An efficient server implies a lower cost of the infrastructure, a better responsiveness under load and happy users. How can you efficiently handle the resources of your server, knowing that you are serving the highest number of requests as possible, without sacrificing security validations and handy development?
Enter Fastify. Fastify is a web framework highly focused on providing the best developer experience with the least overhead and a powerful plugin architecture. It is inspired by Hapi and Express and as far as we know, it is one of the fastest web frameworks in town.
npm i fastify --save
// Require the framework and instantiate it
const fastify = require('fastify')()
// Declare a route
fastify.get('/', function (request, reply) {
reply.send({ hello: 'world' })
})
// Run the server!
fastify.listen(3000, '127.0.0.1', function (err) {
if (err) throw err
console.log(`server listening on ${fastify.server.address().port}`)
})
with async-await:
const fastify = require('fastify')()
fastify.get('/', async (request, reply) => {
reply.type('application/json').code(200)
return { hello: 'world' }
})
fastify.listen(3000, '127.0.0.1', function (err) {
if (err) throw err
console.log(`server listening on ${fastify.server.address().port}`)
})
Do you want to know more? Head to the Getting Started
.
.listen
binds to the local host, 127.0.0.1
, interface by default. See the documentation for more information.
Machine: Intel Xeon E5-2686 v4 @ 2.30GHz (4 cores, 8 threads), 16GiB RAM (Amazon EC2 m4.xlarge)
Method:: autocannon -c 100 -d 40 -p 10 localhost:3000
* 2, taking the second average
Framework | Version | Router? | Requests/sec |
---|---|---|---|
micro (microrouter ) | 9.1.0 (microrouter@3.1.1 ) | ✓ | 18,314 |
hapi | 17.2.1 | ✓ | 18,402 |
Express | 4.16.2 | ✓ | 19,401 |
spirit (spirit-router ) | 0.6.1 (spirit-router@0.5.0 ) | ✓ | 20,923 |
total.js | 2.9.4 | ✓ | 21,992 |
Restify | 6.3.4 | ✓ | 22,039 |
Koa (koa-router ) | 2.5.0 (koa-router@7.4.0 ) | ✓ | 22,737 |
Koa | 2.5.0 | ✗ | 23,115 |
take-five | 1.3.4 | ✓ | 23,597 |
connect (router ) | 3.6.6 (router@1.3.2 ) | ✓ | 27,066 |
spirit | 0.6.1 | ✗ | 31,013 |
Fastify | 1.0.0 | ✓ | 31,634 |
micro | 9.1.0 | ✗ | 31,793 |
connect | 3.6.6 | ✗ | 31,925 |
- | |||
http.Server | 8.9.4 | ✗ | 34,680 |
Benchmarks taken using https://github.com/fastify/benchmarks. This is a synthetic, "hello world" benchmark that aims to evaluate the framework overhead. The overhead that each framework has on your application depends on your application, you should always benchmark if performance matters to you.
Getting Started
Server Methods
Routes
Logging
Middlewares
Hooks
Decorators
Validation and Serialization
Lifecycle
Reply
Request
Content Type Parser
Plugins
Testing
Benchmarking
Plugins Guide
HTTP2
Fastify is the result of the work of a great community. Team members are listed in alphabetical order.
Fastify's support schedule is detailed in the LTS document.
This project is kindly sponsored by:
Licensed under MIT.
FAQs
Fast and low overhead web framework, for Node.js
The npm package fastify receives a total of 1,207,451 weekly downloads. As such, fastify popularity was classified as popular.
We found that fastify demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Security News
NVD’s backlog surpasses 20,000 CVEs as analysis slows and NIST announces new system updates to address ongoing delays.
Security News
Research
A malicious npm package disguised as a WhatsApp client is exploiting authentication flows with a remote kill switch to exfiltrate data and destroy files.