Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
The MarkLogic Node.js Client API provides access to the MarkLogic database from Node.js applications.
You can install the marklogic package as a dependency for your Node.js project using npm:
npm install marklogic --save
With the marklogic package installed, the following inserts two documents in a collection into the Documents database using MarkLogic's built-in REST server at port 8000:
var marklogic = require('marklogic');
var db = marklogic.createDatabaseClient({
host: 'localhost',
port: '8000',
database: 'Documents',
user: 'admin',
password: 'admin',
authType: 'DIGEST'
});
db.createCollection(
'/books',
{author: 'Beryl Markham', ...},
{author: 'WG Sebald', ...}
)
.result(function(response) {
console.log(JSON.stringify(response,null,2));
}, function (error) {
console.log(JSON.stringify(error,null,2));
});
The Node.js Client API ships with code examples to supplement the examples in the online resources. To run the examples, follow the instructions here:
examples/1readme.txt
After installing the project dependencies (including the gulp build system), you can build the reference documentation locally from the root directory of the marklogic package:
gulp doc
The documentation is generated in a doc subdirectory. The documentation can also be accessed online here.
To set up the database and REST server for tests, execute the following command from the root directory for the marklogic package:
node etc/test-setup.js
After setup, you can run tests for the Node.js Client API with the following command:
gulp test
To tear down the test database and REST server, execute the following:
node etc/test-teardown.js
The MarkLogic Node.js Client API is maintained by MarkLogic Engineering. It is designed for use in production applications with MarkLogic Server. Everyone is encouraged to file bug reports, feature requests, and pull requests through GitHub. This input is critical and will be carefully considered, but we can’t promise a specific resolution or timeframe for any request. In addition, MarkLogic provides technical support for release tags of the Node.js Client API to licensed customers under the terms outlined in the Support Handbook. For more information or to sign up for support, visit help.marklogic.com.
FAQs
The official MarkLogic Node.js client API.
The npm package marklogic receives a total of 395 weekly downloads. As such, marklogic popularity was classified as not popular.
We found that marklogic demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.