Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
openai-edge
Advanced tools
A TypeScript module for querying OpenAI's API using fetch
(a standard Web API)
instead of axios
. This is a drop-in replacement for the official openai
module (which has axios
as a dependency).
As well as reducing the bundle size, removing the dependency means we can query OpenAI from edge environments. Edge functions such as Next.js Edge API Routes are very fast and, unlike lambda functions, allow streaming data to the client.
The latest version of this module has feature parity with the official v3.3.0
.
Update July 2023: The official
openai
library will usefetch
in v4, hopefully makingopenai-edge
redundant. You can try it in beta now, more info here: https://github.com/openai/openai-node/discussions/182
yarn add openai-edge
or
npm install openai-edge
Every method returns a promise resolving to the standard fetch
response i.e.
Promise<Response>
. Since fetch
doesn't have built-in support for types in
its response data, openai-edge
includes an export ResponseTypes
which you
can use to assert the correct type on the JSON response:
import { Configuration, OpenAIApi, ResponseTypes } from "openai-edge"
const configuration = new Configuration({
apiKey: "YOUR-API-KEY",
})
const openai = new OpenAIApi(configuration)
const response = await openai.createImage({
prompt: "A cute baby sea otter",
size: "512x512",
response_format: "url",
})
const data = (await response.json()) as ResponseTypes["createImage"]
const url = data.data?.[0]?.url
console.log({ url })
To use with Azure OpenAI Service you'll need to include an api-key
header and
an api-version
query parameter:
const config = new Configuration({
apiKey: AZURE_OPENAI_API_KEY,
baseOptions: {
headers: {
"api-key": AZURE_OPENAI_API_KEY,
},
},
basePath: `https://YOUR_RESOURCE_NAME.openai.azure.com/openai/deployments/YOUR_DEPLOYMENT_NAME`,
defaultQueryParams: new URLSearchParams({
"api-version": AZURE_OPENAI_API_VERSION,
}),
})
This module has zero dependencies and it expects fetch
to be in the global
namespace (as it is in web, edge and modern Node environments). If you're
running in an environment without a global fetch
defined e.g. an older version
of Node.js, please pass fetch
when creating your instance:
import fetch from "node-fetch"
const openai = new OpenAIApi(configuration, undefined, fetch)
This module also expects to be in an environment where FormData
is defined. If
you're running in Node.js, that means using v18 or later.
cancelFineTune
createAnswer
createChatCompletion
(including support for functions
)createClassification
createCompletion
createEdit
createEmbedding
createFile
createFineTune
createImage
createImageEdit
createImageVariation
createModeration
createSearch
createTranscription
createTranslation
deleteFile
deleteModel
downloadFile
listEngines
listFiles
listFineTuneEvents
listFineTunes
listModels
retrieveEngine
retrieveFile
retrieveFineTune
retrieveModel
Here are some sample
Next.js Edge API Routes
using openai-edge
.
gpt-3.5-turbo
Note that when using the stream: true
option, OpenAI responds with
server-sent events.
Here's an example
react hook to consume SSEs
and here's a full NextJS example.
import type { NextRequest } from "next/server"
import { Configuration, OpenAIApi } from "openai-edge"
const configuration = new Configuration({
apiKey: process.env.OPENAI_API_KEY,
})
const openai = new OpenAIApi(configuration)
const handler = async (req: NextRequest) => {
const { searchParams } = new URL(req.url)
try {
const completion = await openai.createChatCompletion({
model: "gpt-3.5-turbo",
messages: [
{ role: "system", content: "You are a helpful assistant." },
{ role: "user", content: "Who won the world series in 2020?" },
{
role: "assistant",
content: "The Los Angeles Dodgers won the World Series in 2020.",
},
{ role: "user", content: "Where was it played?" },
],
max_tokens: 7,
temperature: 0,
stream: true,
})
return new Response(completion.body, {
headers: {
"Access-Control-Allow-Origin": "*",
"Content-Type": "text/event-stream;charset=utf-8",
"Cache-Control": "no-cache, no-transform",
"X-Accel-Buffering": "no",
},
})
} catch (error: any) {
console.error(error)
return new Response(JSON.stringify(error), {
status: 400,
headers: {
"content-type": "application/json",
},
})
}
}
export const config = {
runtime: "edge",
}
export default handler
import type { NextRequest } from "next/server"
import { Configuration, OpenAIApi, ResponseTypes } from "openai-edge"
const configuration = new Configuration({
apiKey: process.env.OPENAI_API_KEY,
})
const openai = new OpenAIApi(configuration)
const handler = async (req: NextRequest) => {
const { searchParams } = new URL(req.url)
try {
const completion = await openai.createCompletion({
model: "text-davinci-003",
prompt: searchParams.get("prompt") ?? "Say this is a test",
max_tokens: 7,
temperature: 0,
stream: false,
})
const data = (await completion.json()) as ResponseTypes["createCompletion"]
return new Response(JSON.stringify(data.choices), {
status: 200,
headers: {
"content-type": "application/json",
},
})
} catch (error: any) {
console.error(error)
return new Response(JSON.stringify(error), {
status: 400,
headers: {
"content-type": "application/json",
},
})
}
}
export const config = {
runtime: "edge",
}
export default handler
import type { NextRequest } from "next/server"
import { Configuration, OpenAIApi, ResponseTypes } from "openai-edge"
const configuration = new Configuration({
apiKey: process.env.OPENAI_API_KEY,
})
const openai = new OpenAIApi(configuration)
const handler = async (req: NextRequest) => {
const { searchParams } = new URL(req.url)
try {
const image = await openai.createImage({
prompt: searchParams.get("prompt") ?? "A cute baby sea otter",
n: 1,
size: "512x512",
response_format: "url",
})
const data = (await image.json()) as ResponseTypes["createImage"]
const url = data.data?.[0]?.url
return new Response(JSON.stringify({ url }), {
status: 200,
headers: {
"content-type": "application/json",
},
})
} catch (error: any) {
console.error(error)
return new Response(JSON.stringify(error), {
status: 400,
headers: {
"content-type": "application/json",
},
})
}
}
export const config = {
runtime: "edge",
}
export default handler
FAQs
Use OpenAI's API from an edge runtime, using standard Web APIs only
The npm package openai-edge receives a total of 14,105 weekly downloads. As such, openai-edge popularity was classified as popular.
We found that openai-edge demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.