Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
node-axosoft
Advanced tools
A node.js client for the Axosoft API
This library is built to support v6 of the Axosoft REST API and has been tested with both axosoft.com hosted accounts and Axosoft installed on premise. Any questions can be sent to api@axosoft.com.
Here's a link to our full documentation for the Axosoft REST API.
Install with the node package manager npm:
$ npm install --save node-axosoft
var nodeAxosoft = require('node-axosoft');
var credentials = {};
var axosoftUrl = 'https://example.axosoft.com;
//Populate Credentials (See Below)
var axo = nodeAxosoft(axosoftUrl, credentials);
####Via User Name and Password
credentials.client_id = 'your client id';
credentials.client_secret = 'your client secret';
credentials.grant_type = 'password';
credentials.username = 'your username';
credentials.password = 'secret';
credentials.client_id = 'your client id';
credentials.client_secret = 'your client secret';
credentials.grant_type = 'authorization_code';
credentials.redirect_uri = 'https://exampleredirect.com';
var axo = nodeAxosoft(axosoftUrl, credentials);
axo.Api.getLoginUrl(function(url) {
// open browser using authorizationUrl and get code parameter from redirected Url after login
var code = 'code received from redirect';
axo.Api.exchangeCodeForToken(code);
});
//Create Non Expiring Token by logging into Axosoft account, Clicking on Tools/System Options/Axosoft API Settings/Manage Tokens, and make non-expiring token.
credentials.access_token = 'your non-expiring token';
var axo = nodeAxosoft(axosoftUrl, credentials);
//optional parameters
var params = {columns: 'name'};
axo.Features.get(params, function(error, response){
console.log(response.data);
});
params = {};
item = {};
item.project = {id: 1}; //required
item.name = 'Test Item Name';
params.item = item;
//create new feature
axo.Features.add(params, function(error, response){
console.log(response);
});
node-axosoft also offers promise versions of its API functions. To use them, just require node-axosoft/promise
instead of node-axosoft
.
var nodeAxosoft = require('node-axosoft/promise');
var axo = nodeAxosoft(axosoftUrl, credentials);
// get items
axo.Features.get()
.then(function(response) {
console.log(response);
});
Test features on our RunKit. Just Clone the notebook and update the Axosoft Url and Access Token to test calls with your account.
FAQs
A node.js client for accessing the Axosoft API
The npm package node-axosoft receives a total of 7 weekly downloads. As such, node-axosoft popularity was classified as not popular.
We found that node-axosoft demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.