Security News
tea.xyz Spam Plagues npm and RubyGems Package Registries
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
Readme
Simple SOAP client for NodeJS. This module was created because none of the existing SOAP modules (most modules depend of https://www.npmjs.org/package/soap) would work with a third-party partner WSDL. As SOAP is just a POST request over HTTP, foam bypasses the WSDL discovery and just posts the data to the endpoint (which anyhow performs better than using the WSDL).
foam process the message and serialize it in a SOAP envelope and body, and parse the XML response into a Javascript object.
npm install foam --save
var operation = 'CelsiusToFahrenheit'
, namespace = 'http://www.w3schools.com/webservices/'
, action = "http://www.w3schools.com/webservices/CelsiusToFahrenheit"
, message = {'Celsius': '23'}
, uri = namespace + 'tempconvert.asmx'
;
var foam = require('foam');
foam(uri, operation, action, message, {namespace: namespace},
function (err, result) {
console.log(result.CelsiusToFahrenheitResponse.CelsiusToFahrenheitResult);
}
);
uri
- endpoint of the SOAP serviceoperation
- SOAP operationaction
- Soapaction
http headermessage
- a Javascript object that will be serialised to XMLoptions
- an options objectheader
- optional SOAP headernamespace
- optional xmlns namespace for the operation
namespaces
- optional additional namespaces for the Envelope
elementbenchmark
- set to true to log the request timing to the console, defaults falserejectUnauthorized
- set to false to accept invalid certificatessecureProtocol
- set to specific ssl protocol e.g. SSLv3_method
FAQs
A simple soap client
The npm package foam receives a total of 7 weekly downloads. As such, foam popularity was classified as not popular.
We found that foam demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
Security News
As cyber threats become more autonomous, AI-powered defenses are crucial for businesses to stay ahead of attackers who can exploit software vulnerabilities at scale.
Security News
UnitedHealth Group disclosed that the ransomware attack on Change Healthcare compromised protected health information for millions in the U.S., with estimated costs to the company expected to reach $1 billion.