Research
Security News
Threat Actor Exposes Playbook for Exploiting npm to Build Blockchain-Powered Botnets
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
google-gax
Advanced tools
The google-gax (Google API Extensions) package is a set of libraries for making Google API client libraries. It provides functionality such as automatic retries, page iteration, and request bundling. It is mainly used internally by Google's auto-generated client libraries for Node.js.
Automatic Retries
This feature allows developers to specify retry logic for failed requests. The RetryOptions class can be used to define backoff settings for retries.
const {RetryOptions} = require('google-gax');
const retryOptions = new RetryOptions(
[100, 200, 400, 800, 1600],
RetryOptions.createRetryPolicy()
);
Page Iteration
This feature simplifies the process of iterating over multiple pages of API response data. The createApiCall function can be configured to handle pagination automatically.
const {createApiCall} = require('google-gax');
const apiCall = createApiCall(
promiseFunc,
{autoPaginate: true}
);
const resources = [];
apiCall({},
(err, response, nextPageRequest, rawResponse) => {
resources.push(...response);
if (nextPageRequest) {
// More results to fetch
}
}
);
Request Bundling
Request bundling allows developers to combine multiple API calls into a single request to reduce network overhead. The BundleDescriptor and BundleExecutor classes are used to define and execute bundled requests.
const {BundleDescriptor, BundleExecutor} = require('google-gax');
const descriptor = new BundleDescriptor(
'bundled_field',
['field1', 'field2'],
'bundled_field',
1024
);
const executor = new BundleExecutor({descriptor});
The grpc package provides a framework for implementing RPC (Remote Procedure Call) systems, which can be used to create client and server applications. It is similar to google-gax in that it is often used for communication with Google APIs, but it is a more general-purpose library that is not specific to Google.
Axios is a promise-based HTTP client for the browser and Node.js. It offers features like intercepting requests and responses, automatic transforms for JSON data, and client-side support for protecting against XSRF. While it does not provide the same API-specific extensions as google-gax, it is a popular choice for making HTTP requests in general.
The AWS SDK for JavaScript allows developers to interact with AWS services from Node.js. Similar to google-gax, it provides a set of tools for working with a specific cloud provider's APIs, but it is focused on Amazon Web Services rather than Google Cloud.
Google API Extensions for Node.js (gax-nodejs) is a set of modules which aids the development of APIs for clients and servers based on gRPC and Google API conventions.
Application code will rarely need to use most of the classes within this library directly, but code generated automatically from the API definition files in Google APIs can use services such as page streaming and request bundling to provide a more convenient and idiomatic API surface to callers.
$ npm install google-gax
This library uses grpc-js package for communicating with API server, and it uses HTTP/2 functionality that is only available in Node.js v8.13.0 or newer. If you need to use this library with older versions of Node.js, you need to make your code depend on a legacy gRPC library (grpc) and pass the instance of gRPC to the client constructor:
const grpc = require('grpc');
const client = new APIClient({ grpc }); // APIClient is the client class you use, e.g. SpeechClient, etc.
Contributions to this library are always welcome and highly encouraged. See the CONTRIBUTING documentation for more information on how to get started.
For detailed documentation of the modules in gax-nodejs, please check out the docs.
BSD - See LICENSE for more information.
FAQs
Google API Extensions
The npm package google-gax receives a total of 5,384,208 weekly downloads. As such, google-gax popularity was classified as popular.
We found that google-gax demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Security News
NVD’s backlog surpasses 20,000 CVEs as analysis slows and NIST announces new system updates to address ongoing delays.
Security News
Research
A malicious npm package disguised as a WhatsApp client is exploiting authentication flows with a remote kill switch to exfiltrate data and destroy files.