
Research
Malicious npm Packages Impersonate Flashbots SDKs, Targeting Ethereum Wallet Credentials
Four npm packages disguised as cryptographic tools steal developer credentials and send them to attacker-controlled Telegram infrastructure.
openpaths-api
Advanced tools
A Node.js module for the OpenPaths API.
This module was inspired by node-openpaths, but this one has posting functionality, and works with parameters.
You also need an OpenPaths account.
$ npm install openpaths-api
View the examples on the examples/
directory for getting and posting geo points, or the examples below.
You can find more information over at OpenPaths' official API documentation. Since it's still pretty simple, what you need to know:
var OpenPathsAPI = require( 'openpaths-api' ),
openPaths = new OpenPathsAPI({
key: 'YOUR_KEY',
secret: 'YOUR_SECRET'
});
// Params are optional, you can call .getPoints with the callback as the first argument
var params = {
start_time: 0, // Unix timestamp
end_time: Math.round( new Date().getTime() / 1000 ), // Unix timestamp
num_points: 100 // Default, allowed 0 - 2000
};
openPaths.getPoints( params, function( error, response, points ) {
if ( error ) {
throw new Error( JSON.stringify(error) );
}
console.log( points );
});
var points = [
{
lat: 40.678238, // Latitude
lon: -73.945789, // Longitude
alt: 18.914, // Altitude (in meters)
t: 1410213632 // Unix timestamp
}
];
openPaths.postPoints( points, function( error, response, data ) {
if ( error ) {
throw new Error( JSON.stringify(error) );
}
console.log( data );// { success: 'true' }
});
FAQs
A Node.js module for the OpenPaths API <https://openpaths.cc/api>
The npm package openpaths-api receives a total of 0 weekly downloads. As such, openpaths-api popularity was classified as not popular.
We found that openpaths-api demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Four npm packages disguised as cryptographic tools steal developer credentials and send them to attacker-controlled Telegram infrastructure.
Security News
Ruby maintainers from Bundler and rbenv teams are building rv to bring Python uv's speed and unified tooling approach to Ruby development.
Security News
Following last week’s supply chain attack, Nx published findings on the GitHub Actions exploit and moved npm publishing to Trusted Publishers.