Security News
tea.xyz Spam Plagues npm and RubyGems Package Registries
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
network-avatar-picker
Advanced tools
Readme
A npm module that returns a user's avatar from his social networks as Buffer or as URL. You can choose among Facebook, Twitter, Instagram, Tumblr, Vimeo, Github, Gmail and Youtube provider. Then, you just need to pass a username without the need of token or API keys and retrieve user's social network profile picture!
First, install network-avatar-picker
as a dependency:
npm install --save network-avatar-picker
You should require the dependency in order to be able use it:
const NetworkAvatarPicker = require('network-avatar-picker');
const avatarPicker = new NetworkAvatarPicker();
In 1.4.0 we have introduced support to cache results with Redis! Just pass redis config as param to the NetworkAvatarPicker and it will create a new redis client. Then, we will store the images and avatar's URL to redis.
const NetworkAvatarPicker = require('network-avatar-picker');
const avatarPicker = new NetworkAvatarPicker({
redis: {
host: '127.0.0.1', // required
port: '6379', // required
password : 'your password', // optional: replace with your password
ttl: 3600, // optional: Add your expiration caching time in seconds. Default value: 3600
}
});
This way we create a local Redis client with expiration caching time 3600sec.
Use the async
methods of the avatarPicker
instance to fetch user avatars:
A) getAvatar: Fetch avatar image as Buffer
avatarPicker.facebook.getAvatar(username)
avatarPicker.twitter.getAvatar(username)
avatarPicker.instagram.getAvatar(username)
avatarPicker.tumblr.getAvatar(username)
avatarPicker.vimeo.getAvatar(username)
avatarPicker.github.getAvatar(username)
avatarPicker.youtube.getAvatar(username)
avatarPicker.gmail.getAvatar(email)
B) getAvatarUrl: Fetch avatar image as URL
avatarPicker.facebook.getAvatarUrl(username)
avatarPicker.twitter.getAvatarUrl(username)
avatarPicker.instagram.getAvatarUrl(username)
avatarPicker.tumblr.getAvatarUrl(username)
avatarPicker.vimeo.getAvatarUrl(username)
avatarPicker.github.getAvatarUrl(username)
avatarPicker.youtube.getAvatarUrl(username)
avatarPicker.gmail.getAvatarUrl(email)
Buffer:
(async () => {
try {
const res = await avatarPicker.twitter.getAvatar('cnn');
} catch (e) {
// Deal with the fact the chain failed
}
})();
URL:
(async () => {
try {
const res = await avatarPicker.twitter.getAvatarUrl('cnn');
} catch (e) {
// Deal with the fact the chain failed
}
})();
Buffer:
(async () => {
try {
const res = await avatarPicker.facebook.getAvatar('zuck');
} catch (e) {
// Deal with the fact the chain failed
}
})();
URL:
(async () => {
try {
const res = await avatarPicker.facebook.getAvatarUrl('zuck');
} catch (e) {
// Deal with the fact the chain failed
}
})();
Buffer:
(async () => {
try {
const res = await avatarPicker.instagram.getAvatar('cnn');
} catch (e) {
// Deal with the fact the chain failed
}
})();
URL:
(async () => {
try {
const res = await avatarPicker.instagram.getAvatarUrl('cnn');
} catch (e) {
// Deal with the fact the chain failed
}
})();
In order to run tests you have to run:
npm run tests
FAQs
A picker for user's networks profile image.
The npm package network-avatar-picker receives a total of 3 weekly downloads. As such, network-avatar-picker popularity was classified as not popular.
We found that network-avatar-picker demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
Security News
As cyber threats become more autonomous, AI-powered defenses are crucial for businesses to stay ahead of attackers who can exploit software vulnerabilities at scale.
Security News
UnitedHealth Group disclosed that the ransomware attack on Change Healthcare compromised protected health information for millions in the U.S., with estimated costs to the company expected to reach $1 billion.