Security News
MCP Community Begins Work on Official MCP Metaregistry
The MCP community is launching an official registry to standardize AI tool discovery and let agents dynamically find and install MCP servers.
By Sarah Gooding - May 09, 2025
🚀 Big News: Socket Acquires Coana to Bring Reachability Analysis to Every Appsec Team.Learn more →
request-hash
Advanced tools
request-hash
Generate a hash from an express Request or http.IncomingMessage
Features
- Highly configurable
- Options to hand-pick / filter which headers and cookies to use in order to create the hash
- BYO serialization, encoding and hashing algorithm with sane defaults
- Works with any http.IncomingMessage or express.Request
Installation
$ npm install --save request-hash
Usage
Here's a simple example using an express app:
const requestHash = require('request-hash');
const express = require('express')
const app = express()
const port = 3000
// Initialize hash method using custom options
const hash = requestHash({ serializer: JSON.stringify, algorithm: 'md5' });
app.get('/', (req, res) => res.send(hash(req)))
app.listen(port, () => console.log(`Example app listening on port ${port}!`))
API
The API exposes an initialization function which receives the options in order to customize the hash, this main funciton returns another function that actually performs the hashing.
requestHash(options)
const requestHash = require('request-hash');
requestHash({
algorithm: 'sha256',
encoding: 'hex',
expand: false,
cookies: undefined, // undefined means all cookies are going to be used as-is
headers: undefined, // undefined means all headers are going to be used as-is
serializer: undefined // undefined means custom serialize function is going to be used
});
Options
- algorithm:
<string>Defines which hash algorithm to use, possible values depends on the supported OpenSSL version in the platform. Examples aresha256,sha512,md5, etc. - digest:
<string>Defines a custom encoding to be used, possible values are:hex,latin1,base64. - serializer
<function>An object serialization function to be used, if undefined uses a custom implementation - expand:
<boolean>Allows you to bypass the hash algorithm, just returns the concatenated elements - cookies:
<array>List of cookie keys to be used to create the unique hash, defaults to using all elements - headers:
<array>List of header keys to be used to create the unique hash, defaults to using all elements
hash(request:http.IncomingMessage)
const requestHash = require('request-hash');
const hash = requestHash();
hash(req);
Alternatives
License
MIT © Ruy Adorno
FAQs
Generate a hash from an express Request or http.IncomingMessage
The npm package request-hash receives a total of 15 weekly downloads. As such, request-hash popularity was classified as not popular.
We found that request-hash demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 01 Dec 2022
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Security News
Malicious npm Packages Use Telegram to Exfiltrate BullX Credentials
Socket uncovers an npm Trojan stealing crypto wallets and BullX credentials via obfuscated code and Telegram exfiltration.
By Kush Pandya - May 08, 2025
Research
Security News
Backdooring the IDE: Malicious npm Packages Hijack Cursor Editor on macOS
Malicious npm packages posing as developer tools target macOS Cursor IDE users, stealing credentials and modifying files to gain persistent backdoor access.
By Kirill Boychenko - May 07, 2025