Security News
Cloudflare Adds Security.txt Setup Wizard
Cloudflare has launched a setup wizard allowing users to easily create and manage a security.txt file for vulnerability disclosure on their websites.
native-fetch
Advanced tools
Returns native fetch/Request/Headers if available or the
undici
module if not
An (almost) drop-in replacement for the undici
module that returns the native fetch if available or the polyfill if not.
Some environments such as the Electron Renderer process straddle the node/browser divide with features from both APIs available. In these cases the webpack approach of always using the browser
field in your package.json
to override requires is too heavy-handed as sometimes you want to use the node version of an API.
Instead we can check for the availability of a given API and return it, rather than the node-polyfill for that API.
node-fetch is the OG fetch implementation for node, but it uses Node.js streams instead of WHATWG streams. This means the APIs are not the same which leads to all sorts of weird shenanigans with types.
undici is the new kid on the block and uses WHATWG streams so all of the APIs now live in glorious harmony.
If you are trying to write polymorphic code with strong typing this is a big deal.
You must install a version of undici
alongside this module to be used if a native implementation is not available.
$ npm install --save native-fetch undici
const { fetch } = require('native-fetch')
fetch('https://github.com/')
.then(res => res.text())
.then(body => console.log(body))
FAQs
Returns native fetch if available or the undici module if not
The npm package native-fetch receives a total of 98,052 weekly downloads. As such, native-fetch popularity was classified as popular.
We found that native-fetch demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Cloudflare has launched a setup wizard allowing users to easily create and manage a security.txt file for vulnerability disclosure on their websites.
Security News
The Socket Research team breaks down a malicious npm package targeting the legitimate DOMPurify library. It uses obfuscated code to hide that it is exfiltrating browser and crypto wallet data.
Security News
ENISA’s 2024 report highlights the EU’s top cybersecurity threats, including rising DDoS attacks, ransomware, supply chain vulnerabilities, and weaponized AI.