New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details →
Socket
Book a DemoSign in
Socket
Book a DemoSign in

ng-error-tracker

Package Overview
Dependencies
Maintainers
0
Versions
2
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

ng-error-tracker

Angular library for securely capturing and sending logs.

latest
npmnpm
Version
1.0.1
Version published
Maintainers
0
Created
Source

NG Error Tracker

NG Error Tracker is an Angular package that securely captures and sends error logs to a configurable endpoint. It encrypts logs before sending, avoids duplicates, and temporarily stores logs in localStorage if the connection is unavailable.

📌 Features

  • 🚀 Automatic error capturing in Angular
  • 🔐 AES-256-GCM + RSA-OAEP-SHA-256 encryption of logs before sending
  • 🔄 Prevents duplicates and reduces log spam
  • 💾 Local storage of logs when offline, auto-retries later
  • Batch sending every 30 seconds if new errors arrive
  • 🔍 User action tracking before an error occurs

📦 Installation

npm install ng-error-tracker

🚀 Usage in Angular

1️⃣ Import and Configure in main.ts

import { HTTP_INTERCEPTORS, provideHttpClient, withInterceptorsFromDi } from '@angular/common/http';
import { provideErrorTracker, ErrorLoggerInterceptor } from 'ng-error-tracker';

bootstrapApplication(AppComponent, {
  providers: [
    provideHttpClient(withInterceptorsFromDi()),
    
    { provide: HTTP_INTERCEPTORS, useClass: ErrorLoggerInterceptor, multi: true },
    provideErrorTracker({
      enableLogging: true,
      apiUrl: 'https://my-api-logs.com/errors',
      apiKey: 'abcdef-12345',
      publicKeyUrl: 'https://my-api-logs.com/public-key',
      appName: 'MyApp',
      appEnv: 'production',
      appBuildId: 'abcdef123456'
    }),
  ],
});

2️⃣ Capture Custom Errors

If you want to manually capture errors:

import { ErrorLoggerService } from 'ng-error-tracker';

constructor(private errorLogger: ErrorLoggerService) {}

try {
  throw new Error('Testing error');
} catch (error) {
  this.errorLogger.handleError(error);
}

🔑 Configuration Parameters

Below is a refined parameters table that clearly explains when a public key is required, which RSA format is expected (DER), and other details for an AES-256-GCM + RSA-OAEP-SHA-256 encryption scenario. In short, AES-256-GCM handles large data, and RSA-OAEP-SHA-256 secures the AES key. You must provide a public key if you want encryption.

OptionDescriptionRequired
enableLoggingEnables or disables logging (boolean).Yes
apiUrlEndpoint where the logs are sent.Yes
apiKeyAuthentication key for the API.No
publicKeyRSA public key (BASE64(DER format)) to encrypt logs. If this is not provided, you must specify publicKeyUrl.No
(Required if publicKeyUrl is not provided)
publicKeyUrlURL returning your RSA public key in BASE64(DER format). The library fetches it to encrypt logs. If omitted, you must directly supply publicKey.No
appNameName of the application generating the logs.Yes
appEnvEnvironment or build configuration (e.g., dev, staging, prod).Yes
appBuildIdUnique build identifier for the application. If not provided, the library will attempt to generate it automatically using a hash of application main file. In web environments, it will fetch main file and extract portions of its content for hashing. If none of these methods succeed, a default value of 'unknown-build-id' will be used.No (Auto-generated if omitted)

Notes

  • AES-256-GCM + RSA-OAEP-SHA-256:
    The library encrypts large logs with AES-256-GCM to avoid the “Message too long for RSA” limitation.
    It then encrypts the AES key itself using an RSA public key (via Web Crypto API).

  • DER Format:
    The RSA public key must be a DER encoding.

  • publicKey vs publicKeyUrl:

  • If you already have the public key as a string, use publicKey.
  • If you prefer to host the key at an endpoint, specify publicKeyUrl.
  • You must provide at least one if you want encryption.
  • If Neither is Provided:
    Encryption will not happen (unless your code enforces it). However, the library can still log errors in plaintext. Ensure you handle that scenario according to your security requirements.

🔒 Security and Privacy

  • Removes sensitive data such as emails, IDs, and phone numbers before sending logs.
  • Logs are encrypted via AES-256-GCM + RSA-OAEP-SHA-256 before being sent to the API.

❓ FAQs

🔹 What if the logging API is unavailable?
➡️ The logs are stored in localStorage and resent when the app restarts or upon navigation.

🔹 How do I disable log capturing?
➡️ Set enableLogging: false in the initialization provider.

🔹 Can I send logs manually?
➡️ Yes, just call this.errorLogger.handleError(error) from anywhere in your code.

📝 License

This project is licensed under the MIT License. See the LICENSE file for more information.

🚀 Developed by Dyango Rodríguez | 💡 Contributions and improvements welcome.

Keywords

angular
angular-library
logs
logger
encryption
secure

FAQs

Package last updated on 20 Mar 2025

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Attackers Are Hunting High-Impact Node.js Maintainers in a Coordinated Social Engineering Campaign

Security News

Attackers Are Hunting High-Impact Node.js Maintainers in a Coordinated Social Engineering Campaign

Multiple high-impact npm maintainers confirm they have been targeted in the same social engineering campaign that compromised Axios.

By Sarah Gooding  -  Apr 03, 2026