Security News
tea.xyz Spam Plagues npm and RubyGems Package Registries
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
google-recaptcha
Advanced tools
Readme
A simple and framework agnostic way to verify Google Recaptcha data. This package currently supports Google Recaptcha V2.
$ yarn add google-recaptcha
const GoogleRecaptcha = require('google-recaptcha')
const googleRecaptcha = new GoogleRecaptcha({secret: 'RECAPTCHA_SECRET_KEY'})
// Some pseudo server code:
http.on('POST', (request, response) => {
const recaptchaResponse = request.body['g-recaptcha-response']
googleRecaptcha.verify({response: recaptchaResponse}, (error) => {
if (error) {
return response.send({isHuman: false})
}
return response.send({isHuman: true})
})
})
Creates an instance of the Google Recaptcha verifier. Here are the options:
secret
(required): Your Google Recaptcha secret key.apiUrl
: The API URL to verify with. This option defaults to
GoogleRecaptcha.DEFAULT_API_URL
.logger
: Any console.log
compatible logger. Defaults to using
the debug package. The debug
namespace is
recaptcha
.Runs a verification of the Recaptcha response. Here are the options:
response
(required): The Recaptcha response token.remoteIp
: The user's IP address.The callback can take an Error error
as its first parameter and a Object
body as its second parameter. The body is a raw response from the Recaptcha
verification.
Specific details can be found here.
The default API URL to verify with. The value is https://www.google.com/recaptcha/api/siteverify.
Copyright (c) 2016 Martin Experiments LLC
FAQs
A simple and framework agnostic way to verify Google Recaptcha data.
The npm package google-recaptcha receives a total of 613 weekly downloads. As such, google-recaptcha popularity was classified as not popular.
We found that google-recaptcha demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
Security News
As cyber threats become more autonomous, AI-powered defenses are crucial for businesses to stay ahead of attackers who can exploit software vulnerabilities at scale.
Security News
UnitedHealth Group disclosed that the ransomware attack on Change Healthcare compromised protected health information for millions in the U.S., with estimated costs to the company expected to reach $1 billion.