Security News
Crates.io Implements Trusted Publishing Support
Crates.io adds Trusted Publishing support, enabling secure GitHub Actions-based crate releases without long-lived API tokens.
By Sarah Gooding - Jul 16, 2025
You're Invited:Meet the Socket Team at BlackHat and DEF CON in Las Vegas, Aug 4-6.RSVP →
openai-edge
Advanced tools
Template: TypeScript Module 
This is a clonable template repository for authoring a npm module with TypeScript. Out of the box, it:
- Provides minimally-viable
tsconfig.jsonsettings - Scaffolds a silly arithmetic module (
src/index.ts) - Scaffolds test suites for full test coverage (
test/index.ts) - Scaffolds a GitHub Action for Code Integration (CI) that:
- checks if compilation is successful
- runs the test suite(s)
- reports test coverage
- Generates type definitions (
types/*.d.ts) - Generates multiple distribution formats:
- ES Module (
dist/index.mjs) - CommonJS (
dist/index.js) - UMD (
dist/index.min.js)
- ES Module (
All configuration is accessible via the rollup.config.js and a few package.json keys:
name— the name of your modulemain— the destination file for your CommonJS buildmodule— the destination file for your ESM build (optional but recommended)unpkg— the destination file for your UMD build (optional for unpkg.com)umd:name— the UMD global name for your module (optional)
Setup
- Clone this template
- Replace all instances of
TODOwithin thelicenseandpackage.jsonfiles - Create CodeCov account (free for OSS)
- Copy the provided CodeCov token as the
CODECOV_TOKENrepository secret (for CI reporting) - Replace
src/index.tsandtest/index.tswith your own code! 🎉
Commands
build
Builds your module for distribution in multiple formats (ESM, CommonJS, and UMD).
$ npm run build
test
Runs your test suite(s) (/tests/**) against your source code (/src/**).
Doing so allows for accurate code coverage.
Note: Coverage is only collected and reported through the "CI" Github Action (
.github/workflows/ci.yml).
$ npm test
Publishing
Important: Please finish Setup before continuing!
Once all TODO notes have been updated & your new module is ready to be shared, all that's left to do is decide its new version — AKA, do the changes consitute a patch, minor, or major release?
Once decided, you can run the following:
$ npm version <patch|minor|major> && git push origin master --tags && npm publish
# Example:
# npm version patch && git push origin master --tags && npm publish
This command sequence will:
- version your module, updating the
package.json"version" - create and push a
gittag (matching the new version) to your repository - build your module (via the
prepublishOnlyscript) - publish the module to the npm registry
License
MIT © Luke Edwards
FAQs
Use OpenAI's API from an edge runtime, using standard Web APIs only
The npm package openai-edge receives a total of 8,091 weekly downloads. As such, openai-edge popularity was classified as popular.
We found that openai-edge demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 13 Jan 2023
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
/Security News
Tracking Protestware Spread: 28 npm Packages Affected by Payload Targeting Russian-Language Users
Undocumented protestware found in 28 npm packages disrupts UI for Russian-language users visiting Russian and Belarusian domains.
By Olivia Brown - Jul 15, 2025
Research
/Security News
Contagious Interview Campaign Escalates With 67 Malicious npm Packages and New Malware Loader
North Korean threat actors deploy 67 malicious npm packages using the newly discovered XORIndex malware loader.
By Kirill Boychenko - Jul 14, 2025