This module is a client for Google Safe Browsing API v3. It aims to be able to synchronize an offline, encrypted database of URLs pointing to potentially malicious content, and perform fast lookups against that database.

Example

For a taste what the target API is going to look like, check out the very well-commented (but non-functional until the upcoming work lands) example app.

Implementation Progress

Swappable persistence layer implemented on top of Redis.
Request serializers and response parsers for the API's endpoints for:
- data,
- data redirects, and
- full-length hashes.
Fetch methods wrapping the above and the persistence layer to perform synchronization operations.
URL canonicalizer, with proper support for encoding IDNs. Need further tests.
Lookup expression generator, to create the different variants of canonicalized URLs to hash and match against hash prefixes and full-length hashes.
Fetcher class to schedule data fetches from the API. It should automatically fetch data at specified intervals, obey backoff constraints, and where possible batch full-length hash requests. Need further tests.
Matcher and MatchResults classes, to wrap the URL canonicalizer, lookup expression generator, and persistence layer to cleanly perform lookups. Need further tests.

License

MIT.

FAQs

What is safebrowsing?

(Work in progress.) Client for the Google Safe Browsing API v3.

Is safebrowsing well maintained?

We found that safebrowsing demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.

Package last updated on 19 Nov 2014

Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Security News

Fluent Assertions Faces Backlash After Abandoning Open Source Licensing

Fluent Assertions is facing backlash after dropping the Apache license for a commercial model, leaving users blindsided and questioning contributor rights.

By Sarah Gooding - Jan 18, 2025

Malicious PyPI Package ‘pycord-self’ Targets Discord Developers with Token Theft and Backdoor Exploit

Research

Security News

Malicious PyPI Package ‘pycord-self’ Targets Discord Developers with Token Theft and Backdoor Exploit

Socket researchers uncover the risks of a malicious Python package targeting Discord developers.

By Socket Research Team - Jan 16, 2025

Security News

UK Officials Consider Banning Ransomware Payments from Public Entities

The UK is proposing a bold ban on ransomware payments by public entities to disrupt cybercrime, protect critical services, and lead global cybersecurity efforts.

By Sarah Gooding - Jan 15, 2025

Product

Package Alerts
Integrations
Docs
Pricing
FAQ
Roadmap
Changelog

About

About
Love
Blog
Glossary
Discord Community
CareersHiring
Send Feedback
Contact Us
System Status

Packages

npm

Directory
Explore
Random Package
Most Popular
Top Maintainers
Removed Packages

Directory
Explore
Random Package

Maven

Directory
Explore
Random Package

PyPI

Directory
Explore
Random Package

Rubygems

Directory
Explore
Random Package

Stay in touch

Get open source security insights delivered straight into your inbox.

Enter your email

Terms
Privacy
Security

Made with ⚡️ by Socket Inc

safebrowsing

node-safebrowsing

Example

Implementation Progress

License

Related posts

Malicious PyPI Package ‘pycord-self’ Targets Discord Developers with Token Theft and Backdoor Exploit

UK Officials Consider Banning Ransomware Payments from Public Entities