Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
node-ipinfo
Advanced tools
This is the official NodeJS client library for the IPinfo.io IP data API, allowing you to look up your own IP address, or get any of the following details for an IP:
Check all the data we have for your IP address here.
Works with ES5, ES6+ and TypeScript.
You'll need an IPinfo API access token, which you can get by signing up for a free account at https://ipinfo.io/signup.
The free plan is limited to 50,000 requests per month, and doesn't include some of the data fields such as IP type and company data. To enable all the data fields and additional request volumes see https://ipinfo.io/pricing.
npm install node-ipinfo
yarn add node-ipinfo
IPinfoWrapper
with your token.const { IPinfoWrapper } = require("node-ipinfo");
const ipinfoWrapper = new IPinfoWrapper("MY_TOKEN");
[!TIP] If you are using ESM instead of CommonJS you can use
import
.import { IPinfoWrapper } from "node-ipinfo";
const ipinfo = await ipinfoWrapper.lookupIp("1.1.1.1");
ipinfo.js
with the following code, then replace MY_TOKEN
with
your token.const { IPinfoWrapper } = require("node-ipinfo");
const ipinfoWrapper = new IPinfoWrapper("MY_TOKEN");
const ipAddress = process.argv[2] || "1.1.1.1";
ipinfoWrapper.lookupIp(ipAddress).then((ipinfo) => console.log(ipinfo));
ipinfo.js
(without an IP) to lookup 1.1.1.1.node ipinfo.js
{
ip: '1.1.1.1',
// ...
ipinfo.js
with an IP to lookup, like 2.2.2.2
8.8.8.8
or
your IP.node ipinfo.js 2.2.2.2
{
ip: '2.2.2.2',
// ...
Each lookup
method will throw an error when the lookup does not complete
successfully. A program that performs a lookup should catch errors unless it is
desirable for the error to bubble up. For example, if your program is performing
a lookup to find the country code of an IP you can return "N/A" when catching an
error.
const countryCode = ipinfoWrapper
.lookupIp("1.1.1.1")
.then((ipinfo) => ipinfo.countryCode)
.catch((error) => "N/A");
This library uses an LRU cache (deletes the least-recently-used items).
If you prefer a different caching methodology, you may use the IPCache
interface through TypeScript and implement your own caching system around your own infrastructure.
The default cache length is 1 day and the default max number of items allowed in the cache is 5000. This can be changed by passing an Option
to the LruCache
constructor.
const { IPinfoWrapper, LruCache } = require("node-ipinfo");
const cacheOptions = {
max: 5000,
ttl: 24 * 1000 * 60 * 60
};
const cache = new LruCache(cacheOptions);
const ipinfoWrapper = new IPinfoWrapper("MY_TOKEN", cache);
The client constructor accepts a timeout
parameter in milliseconds that
controls the timeout of requests. It defaults to 5000
i.e. 5 seconds.
A timeout of 0
disables the timeout feature.
const { IPinfoWrapper } = require("node-ipinfo");
const timeout = 10 * 1000; // 10 seconds
const ipinfoWrapper = new IPinfoWrapper("MY_TOKEN", undefined, timeout);
When looking up an IP address, the response object includes response.country
will return the country name, response.countryCode
can be used to fetch the country code, Additionally response.isEU
will return true
if the country is a member of the European Union (EU), response.countryFlag
will return the emoji and Unicode of the country's flag, response.countryFlagURL
will return a public link to the country's flag image as an SVG which can be used anywhere, response.countryCurrency
will return the code and symbol of the country's currency and response.continent
will return the continent of the IP. It is possible to return the country name in other languages, change the EU countries, countries flags, countries currencies, and continents by setting the countries
, euCountries
, countriesFlags
, countriesCurrencies
and continents
settings when creating the IPinfo object.
const { IPinfoWrapper } = require("node-ipinfo");
const internationalization = {
countries: {
US: "United States",
FR: "France",
BD: "Bangladesh"
// ...
},
countriesFlags: {
US: { emoji: "🇺🇸", unicode: "U+1F1FA U+1F1F8" },
AD: { emoji: "🇦🇩", unicode: "U+1F1E6 U+1F1E9" },
AE: { emoji: "🇦🇪", unicode: "U+1F1E6 U+1F1EA" }
// ...
},
countriesCurrencies: {
US: { code: "USD", symbol: "$" },
AD: { code: "EUR", symbol: "€" },
AE: { code: "AED", symbol: "د.إ" }
// ...
},
continents: {
US: { code: "NA", name: "North America" },
BD: { code: "AS", name: "Asia" },
BE: { code: "EU", name: "Europe" }
// ...
},
euCountries: ["FR", "ES", "BE"]
};
const ipinfoWrapper = new IPinfoWrapper(
"MY_TOKEN",
undefined,
undefined,
internationalization
);
ipinfoWrapper.lookupIp("8.8.8.8").then((response) => console.log(response));
{
ip: "8.8.8.8",
// ...
countryCode: 'US',
countryFlag: { emoji: '🇺🇸', unicode: 'U+1F1FA U+1F1F8' },
countryFlagURL: 'https://cdn.ipinfo.io/static/images/countries-flags/US.svg',
countryCurrency: { code: 'USD', symbol: '$' },
continent: { code: 'NA', name: 'North America' },
isEU: false
}
response.loc
will return a composite string of latitude and longitude values in the "latitude,longitude"
format.
const { IPinfoWrapper } = require("node-ipinfo");
const ipinfoWrapper = new IPinfoWrapper("MY_TOKEN");
ipinfoWrapper.lookupIp("1.1.1.1").then(response => {
// '34.0522,-118.2437'
console.log(response.loc);
});
A world map can be generated with locations of all input IPs using getMap
. It returns the URL of the map in the response.
const { IPinfoWrapper } = require("node-ipinfo");
const ipinfoWrapper = new IPinfoWrapper("MY_TOKEN");
const ips = ["1.1.1.1", "8.8.8.8", "1.2.3.4"];
ipinfoWrapper.getMap(ips).then(response => {
console.log(response);
});
Looking up a single IP at a time can be slow. It could be done concurrently from the client side, but IPinfo supports a batch endpoint to allow you to group together IPs and let us handle retrieving details for them in bulk for you.
const { IPinfoWrapper } = require("node-ipinfo");
const ipinfoWrapper = new IPinfoWrapper("MY_TOKEN");
const ips = ["1.1.1.1", "8.8.8.8", "1.2.3.4/country"];
ipinfoWrapper
.getBatch(ips)
.then(batch => console.log(batch));
The input size is not limited, as the interface will chunk operations for you behind the scenes.
Please see the official documentation for more information and limitations.
Get great code completion for this package using the integrated typescript typings. It includes the complete typings of the IPinfo API too, so you'll know how to navigate both the API as well as the response you are getting.
In order to run the tests, run:
$ npm run test
There are official IPinfo client libraries available for many languages including PHP, Python, Go, Java, Ruby, and many popular frameworks such as Django, Rails, and Laravel. There are also many third-party libraries and integrations available for our API.
https://ipinfo.io/developers/libraries
Founded in 2013, IPinfo prides itself on being the most reliable, accurate, and in-depth source of IP address data available anywhere. We process terabytes of data to produce our custom IP geolocation, company, carrier, privacy detection (VPN, proxies, Tor), hosted domains, and IP type data sets. Our API handles over 40 billion requests a month for 100,000 businesses and developers.
FAQs
Official Node client library for IPinfo
The npm package node-ipinfo receives a total of 10,924 weekly downloads. As such, node-ipinfo popularity was classified as popular.
We found that node-ipinfo demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.