Security News
Supply Chain Attack Detected in Solana's web3.js Library
A supply chain attack has been detected in versions 1.95.6 and 1.95.7 of the popular @solana/web3.js library.
minimal-request-promise
Advanced tools
A+ Promise interface to Node.js HTTPS request, with no dependencies
This is a wrapper for the standard HTTPS Node Request object, that provides an A+ Promise interface to request execution and automates the process of assembling the response body as a string. It can handle posting body contents, and automatically rejects the promise if the response code is not between 200 and 399.
The intent of this library is to wrap requests into a promise interface with minimal overhead, with no dependencies, and just expose the standard Node.js arguments. It's not trying to be a fully-featured replacement for complex workflows, streaming etc. For more complex libraries that can provide all kind of workflows like that, see request-promise and got.
Install using NPM:
npm install minimal-request-promise
You can use the standard Node HTTPS Request Options, with the following additional options:
body
: string
, the content to include in the request body when postingresolveErrors
: boolean
, if true, HTTP error response codes will result in a resolved promise (instead of rejected). Only network errors will result in a rejected promise. If false (default), network errors and successful HTTP requests with an error response code will cause the promise to be rejected.timeout
: number
, Integer containing the number of milliseconds to wait for a
server to send response headers (and start the response body) before aborting
the request. Note that if the underlying TCP connection cannot be established,
the OS-wide TCP connection timeout will overrule the timeout
option ([the
default in Linux can be anywhere from 20-120 seconds][linux-timeout]).If you want to execute a FORM POST, remember to add the Content-Length
header as well. This library intentionally does not automatically add that, to keep the interface in line with standard Node.JS requests.
var requestPromise = require('minimal-request-promise'),
options = {
method: 'POST',
hostname: 'graph.facebook.com',
path: '/v2.6/me/messages?access_token=' + fbAccessToken,
port: 443,
headers: {
'Content-Type': 'application/json'
},
body: JSON.stringify({
recipient: {
id: recipient
},
message: message
})
};
requestPromise(options).then(
function (response) {
console.log('got response', response.body, response.headers);
},
function (response) {
console.log('got error', response.body, response.headers, response.statusCode, response.statusMessage);
}
);
In addition to using the standard Node.js request parameters, you can also generate basic parameters from URLS for GET and POST using the helper methods. The helper methods are .get
, .post
, .put
and .delete
and they expect the following arguments:
url
: string
, a URL to GET, POST, PUT or DELETE tooptions
: (optional) object
, key-value map of additional options, described in the Usage sectionPromise
: (optional) Function
, an alternate Promise implementation. See Using with a different Promise library.Example:
var requestPromise = require('minimal-request-promise'),
options = {
headers: {
'Content-Type': 'application/json'
},
body: JSON.stringify({
recipient: {
id: recipient
},
message: message
})
};
requestPromise.post('https://graph.facebook.com/v2.6/me/messages?access_token=' + fbAccessToken, options).then(
function (response) {
console.log('got response', response.body, response.headers);
},
function (response) {
console.log('got error', response.body, response.headers, response.statusCode, response.statusMessage);
}
);
By default, this library uses the built-in Promise
from Node.js. If you'd like to use a different A+ Promise library, just pass it in as the second argument. For example:
var bluebird = require('bluebird'),
requestPromise = require('minimal-request-promise'),
options = {
// some options here ...
};
requestPromise(options, bluebird).then(report);
MIT
FAQs
A+ Promise interface to Node.js HTTPS request, with no dependencies
The npm package minimal-request-promise receives a total of 5,862 weekly downloads. As such, minimal-request-promise popularity was classified as popular.
We found that minimal-request-promise demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
A supply chain attack has been detected in versions 1.95.6 and 1.95.7 of the popular @solana/web3.js library.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.