Research
Security News
Malicious npm Packages Use Telegram to Exfiltrate BullX Credentials
Socket uncovers an npm Trojan stealing crypto wallets and BullX credentials via obfuscated code and Telegram exfiltration.
By Kush Pandya - May 08, 2025
🚀 Big News: Socket Acquires Coana to Bring Reachability Analysis to Every Appsec Team.Learn more →
What is p-try?
The p-try npm package is used to start a promise chain and execute a function asynchronously. It is a simple utility that allows you to attempt to execute a function and return a Promise that resolves with the function's result or rejects if the function throws an error.
What are p-try's main functionalities?
Asynchronous function execution
This feature allows you to execute a function asynchronously and handle the result or error using promise chaining.
const pTry = require('p-try');
pTry(() => {
return 'result';
}).then(result => {
console.log(result); // 'result'
}).catch(error => {
console.error(error);
});Other packages similar to p-try
bluebird
Bluebird is a full-featured promise library with a focus on innovative features and performance. It includes utilities for converting callback-based APIs to promises, advanced error handling, and concurrency helpers. Compared to p-try, Bluebird is more feature-rich and can be used for a wider range of promise-related tasks.
q
Q is one of the earliest promise libraries for JavaScript. It provides a robust set of features for creating and managing promises. While Q is more comprehensive than p-try, it is also larger in size and may be more complex for simple use cases where p-try would suffice.
es6-promise
ES6-Promise is a polyfill for the ES6 Promise specification. It provides the basic functionality needed to work with promises in environments that do not support them natively. Unlike p-try, which is a utility for starting promise chains, ES6-Promise is focused on implementing the standard Promise API.
p-try
Start a promise chain
Install
npm install p-try
Usage
import pTry from 'p-try';
try {
const value = await pTry(() => {
return synchronousFunctionThatMightThrow();
});
console.log(value);
} catch (error) {
console.error(error);
}
API
pTry(fn, ...arguments)
Returns a Promise resolved with the value of calling fn(...arguments). If the function throws an error, the returned Promise will be rejected with that error.
Support for passing arguments on to the fn is provided in order to be able to avoid creating unnecessary closures. You probably don't need this optimization unless you're pushing a lot of functions.
fn
The function to run to start the promise chain.
arguments
Arguments to pass to fn.
Related
Get professional support for this package with a Tidelift subscription
Tidelift helps make open source sustainable for maintainers while giving companies
assurances about security, maintenance, and licensing for their dependencies.
Tidelift helps make open source sustainable for maintainers while giving companies
assurances about security, maintenance, and licensing for their dependencies.
FAQs
`Start a promise chain
The npm package p-try receives a total of 36,931,057 weekly downloads. As such, p-try popularity was classified as popular.
We found that p-try demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 04 Oct 2021
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Security News
Backdooring the IDE: Malicious npm Packages Hijack Cursor Editor on macOS
Malicious npm packages posing as developer tools target macOS Cursor IDE users, stealing credentials and modifying files to gain persistent backdoor access.
By Kirill Boychenko - May 07, 2025
Security News
AI Slop Is Polluting Bug Bounty Platforms with Fake Vulnerability Reports
AI-generated slop reports are making bug bounty triage harder, wasting maintainer time, and straining trust in vulnerability disclosure programs.
By Sarah Gooding - May 06, 2025