Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
flickr-sdk
Advanced tools
Almost certainly the best Flickr API client in the world for node and the browser
Almost certainly the best Flickr API client in the world for node and the browser
This SDK provides methods and type definitions for all methods listed on https://www.flickr.com/services/api/
To use this SDK, sign up for an API key here
$ npm install flickr-sdk
import { createFlickr } from "flickr-sdk"
const { flickr } = createFlickr("<your Flickr API key>")
const res = await flickr("flickr.photos.getInfo", {
photo_id: '12345',
})
import { createFlickr } from "flickr-sdk"
import { resolve } from "node:path"
const { upload } = createFlickr({
consumerKey: "<your API key>",
consumerSecret: "<your API secret>",
oauthToken: "<the oauth token>",
oauthTokenSecret: "<the oauth token secret>",
})
const id = await upload(resolve("example.png"), {
title: "Works on MY machine!",
})
The Flickr SDK currently supports the following auth methods:
This is the simplest way to use the SDK. Just provide your API key as a string:
const { flickr } = createFlickr("<your API key>")
OAuth lets users grant your application access and then you may act on their behalf. The OAuth flow is described here.
const { upload } = createFlickr({
consumerKey: "<your API key>",
consumerSecret: "<your API secret>",
oauthToken: "<the oauth token>",
oauthTokenSecret: "<the oauth token secret>",
})
💡 Use
examples/oauth.mjs
to quickly set up an OAuth flow and obtain a set of credentials
Previous versions of this SDK depended on superagent for http
requests. This version of the SDK uses node's native fetch
instead, so you now
only receive the response body back from an API call. This means the return
value of an API call will only be the response body, not a superagent Request
Migrating existing code looks like this:
// old
const res = await flickr.test.login()
console.log(res.body)
// new
const body = await flickr('flickr.test.login', {})
console.log(body)
import { createFlickr, FetchTransport } from 'flickr-sdk'
const transport = new FetchTransport({
headers: {
'user-agent': 'foo',
}
})
const { flickr } = createFlickr('<your API key>', transport)
import { createFlickr, MockTransport, NullAuth } from 'flickr-sdk'
import * as assert from 'node:assert'
// mock transport returns the response you pass in the constructor
const transport = new MockTransport({
stat: 'ok',
foo: 'bar'
})
// null auth does nothing
const auth = NullAuth()
const { flickr } = createFlickr(auth, transport)
// makes no network request
const res = await flickr('flickr.photos.getInfo', {
photo_id: '12345',
})
assert.deepStrictEqual(res, { stat: 'ok', foo: 'bar' })
FAQs
Almost certainly the best Flickr API client in the world for node and the browser
The npm package flickr-sdk receives a total of 1,137 weekly downloads. As such, flickr-sdk popularity was classified as popular.
We found that flickr-sdk demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.