Security News
Inside Lodash’s Security Reset and Maintenance Reboot
Lodash 4.17.23 marks a security reset, with maintainers rebuilding governance and infrastructure to support long-term, sustainable maintenance.
By Sarah Gooding - Jan 31, 2026
Latest Socket ResearchMalicious Chrome Extension Performs Hidden Affiliate Hijacking.Details →
shopify-api
Advanced tools
shopify-api v0.2.3 
shopify-api is a node library for working with the Shopify API. It is designed to abstract away requests while returning unmodified responses. It should be used as a building block for other modules/packages which can handle any additional abstraction needed based on the API resource that they are working with.
Install
npm install shopify-api --save
You can also use npm install https://github.com/ctalkington/node-shopify-api/archive/master.tar.gz to test upcoming versions.
Usage
This module is meant to be wrapped internally by other modules and therefore lacks any frontend interface.
Every resource is accessed via your shopify instance:
var shopify = require('shopify-api')(options);
// shopify.{ RESOURCE_NAME }.{ METHOD_NAME }
Every resource method accepts an optional callback as the last argument:
shopify.asset.create(
{ key: '...', value: '...' },
function(err, asset) {
if (err) {
throw err;
}
console.log(asset);
}
);
Additionally, every resource method returns a promise, so you don't have to use the regular callback. E.g.
shopify.asset.create({
key: '...',
value: '...'
}).then(function(customer) {
// do something
}, function(err) {
// Deal with an error
});
Instance Options
auth
The auth for requests to use.
This must be set either via option or setter method.
host
The host for requests to use.
This must be set either via option or setter method.
port
The port for requests to use. Default: 443
timeout
The time in ms to wait for requests before timing out. Default: 120000ms (2 minutes)
Instance Methods
setAuth(key, passwd)
Sets the internal auth property.
setHost(host[, port])
Sets the internal host/port properties.
setPort(port)
Sets the internal port property.
setTimeout(msec)
Sets the internal timeout property.
Resources
The resources that are currently supported by this library. Please submit PR if your need others.
asset
create(themeid, props)
destroy(themeid, key)
list(themeid)
retrieve(themeid, key)
update(themeid, props)
assetLegacy
create(props)
destroy(key)
list()
retrieve(key)
update(props)
theme
create(props)
destroy(id)
list()
retrieve(id)
update(id, props)
Things of Interest
Credits
Structured after the stripe package.
FAQs
Shopify API SDK for node.
We found that shopify-api demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 24 Feb 2014
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
n8n Tops 2025 JavaScript Rising Stars as Workflow Platforms Gain Momentum
n8n led JavaScript Rising Stars 2025 by a wide margin, with workflow platforms seeing the largest growth across categories.
By Sarah Gooding - Jan 29, 2026
Security News
Federal Government Rescinds Software Supply Chain Mandates, Makes SBOMs Optional
The U.S. government is rolling back software supply chain mandates, shifting from mandatory SBOMs and attestations to a risk-based approach.
By Sarah Gooding - Jan 28, 2026