Security News
Opengrep Emerges as Open Source Alternative Amid Semgrep Licensing Controversy
Opengrep forks Semgrep to preserve open source SAST in response to controversial licensing changes.
By Sarah Gooding - Jan 28, 2025
New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
hapi-boombox
Advanced tools
Hapi-Boombox 
Hapi error conversion and logging
What
Boombox logs errors and is able to transform errors. Current version targets hapi 16.
How
Provide Boombox with custom errors (see here for an example) when registering and it will convert errors with messages that match a key in errors and will return a new Boom error.
const Errors = require('./test/config/errors.json'); //Look here for an example!
await server.register({
plugin: require('hapi-boombox'),
options: { errors: Errors }
}, callback);
E.g. you return new Error('RESOURCE_NOT_FOUND') and the config states that this should return a Boom.notFound (404). Boombox will do that for you instead of returning an internal server error.
Look at the test example to see what the config night look like.
Boombox also provides a server and request method (server.boombox(), request.boombox()) so you can transform your errors on the go.
Returns undefined when matching fails.
const matched = server.boombox(new Error('RESOURCE_NOT_FOUND'));
/*
* matched
*{
* message: 'Custom error message for RESOURCE_NOT_FOUND',
* type: 'notFound'
*}
*/
You can disable the logging part by setting disableLog to true.
const Errors = require('./test/config/errors.json'); //Look here for an example!
await server.register({
plugin: require('hapi-boombox'),
options: { errors: Errors, disableLog: true }
}, callback);
Logging
Boombox will do a request.log with hapi-boombox and error as tags and the result as data.
errorthe output of the errorstackthe stacktracerequestadditional info about the requestpath,query,method,payload,headers,request.info,credentialscredentials: if present this will be an object that includes 2 properties fromrequest.auth.credentials.id.- These are properties required by the author for his project. If you want more or something customizable make an issue or PR.
Test
100% test coverage! Also look in the tests for more examples.
Notes
Personally I use this in a hapi server to use generic keys as errors in my code but to give the end user a decent error message and to easily match errors with the right error code. Maybe in the future this can also return localized errors.
FAQs
Boom error wrapper
The npm package hapi-boombox receives a total of 7 weekly downloads. As such, hapi-boombox popularity was classified as not popular.
We found that hapi-boombox demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 25 Nov 2020
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Node.js EOL Versions CVE Dubbed the "Worst CVE of the Year" by Security Experts
Critics call the Node.js EOL CVE a misuse of the system, sparking debate over CVE standards and the growing noise in vulnerability databases.
By Sarah Gooding - Jan 24, 2025
Security News
cURL Project and Go Security Teams Reject CVSS as Broken
cURL and Go security teams are publicly rejecting CVSS as flawed for assessing vulnerabilities and are calling for more accurate, context-aware approaches.
By Sarah Gooding - Jan 24, 2025