Research
Security News
The Growing Risk of Malicious Browser Extensions
Socket researchers uncover how browser extensions in trusted stores are used to hijack sessions, redirect traffic, and manipulate user behavior.
By Kush Pandya - Jun 13, 2025
🚀 Big News: Socket Acquires Coana to Bring Reachability Analysis to Every Appsec Team.Learn more →
paypal-node-api
Advanced tools
Paypal Node API
A wrapper around paypal's REST API, featuring events, promise support and auto auth.
Only supports subscriptions for now, others will be added per request.
THIS IS NOT AN OFFICIAL API
Installation
NPM:
npm i kik-paypal-api
Usage
Requests
Getting Started
You can use the API by creating an instance of PaypalClient.
const PaypalClient = require("paypal-node-api");
paypal = new PaypalClient({
env: "sandbox",
clientId: "id",
secret: "secret",
config: {}
});
env: one of either "sandbox" or "live"
clientId: your app's client id
secret: your app's secret
config: a config object
Sharing a paypal instance:
const PaypalClient = require("paypal-node-api");
const clientId = "yourApp'sId";
const secret = "yourApp'sSecret";
const paypal = new PaypalClient("sandbox", clientId, secret);
//event handlers go here
paypal.on("auth", () => {
console.log("Paypal token refreshed");
});
module.exports = paypal;
Getting Started
The Extras Object
All required parameters are supplied directly to the functions,
non required parameters can be supplied via the extras parameter, this
object is merged into the request's payload
Requests
Subscriptions
Create
await paypal.subscriptions.create(planId, extras);
planId: the plan associated with this subscription
Details
await paypal.subscriptions.details(subscriptionId);
subscriptionId: the subscription id to retrieve
returns the subscription object
Webhooks
Verify
await paypal.webhooks.verify(authAlgo, certUrl, transmissionId, transmissionSig, transmissionTime, webhookId, webhookEvent)
returns true if verified, false if not
License
FAQs
Unofficial API to make working with paypal bearable
The npm package paypal-node-api receives a total of 3 weekly downloads. As such, paypal-node-api popularity was classified as not popular.
We found that paypal-node-api demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 18 Oct 2019
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Security News
2025 Blockchain and Cryptocurrency Threat Report: Malware in the Open Source Supply Chain
An in-depth analysis of credential stealers, crypto drainers, cryptojackers, and clipboard hijackers abusing open source package registries to compromise Web3 development environments.
By Kirill Boychenko - Jun 12, 2025
Security News
pnpm 10.12 Introduces Global Virtual Store and Expanded Version Catalogs
pnpm 10.12.1 introduces a global virtual store for faster installs and new options for managing dependencies with version catalogs.
By Sarah Gooding - Jun 11, 2025